Soleer
Effective Date: November 21, 2024
At Soleer, the security and privacy of our users' data are of utmost importance. This Data Safety Policy explains the measures and practices we implement to protect your personal information and data when using the Soleer platform.
1. Data Collection and Privacy
- Soleer collects only the information necessary to operate and improve our platform. This includes:
- Personal Information: Such as your name, email address, cryptocurrency wallet address, and profile details.
- Non-Personal Information: Device information, IP address, and usage data.
- Transaction Data: Recorded on the Solana blockchain, which is public and immutable.
- Data Minimization: We collect the minimum amount of personal data necessary to provide our services.
2. Data Encryption
We use encryption to protect sensitive information:
- In-Transit Encryption: Data transferred between your device and our servers is encrypted using SSL/TLS protocols, safeguarding against unauthorized interception.
- At-Rest Encryption: Sensitive information stored in our databases is encrypted with advanced encryption standards to prevent unauthorized access.
3. Blockchain Security
Transactions and key operations are recorded on the Solana blockchain, which provides security through its decentralized and transparent nature:
- Immutable Records: Transactions on the blockchain cannot be altered or deleted.
- Public Visibility: Blockchain transactions, including wallet addresses and amounts, are publicly accessible, although users can maintain pseudonymity.
4. Smart Contracts and Automation
Soleer uses Solana-based smart contracts for various platform operations, including escrow, reputation management, and dispute resolution. These smart contracts:
- Automate secure transactions between freelancers and clients, reducing the need for manual intervention.
- Minimize fraud risks through automated escrow systems that release funds only when both parties fulfill their agreements.
Smart Contract Audits: We conduct regular audits by third-party blockchain security firms to maintain the integrity of our smart contracts.
5. Smart Contracts and Automation
We implement strict access controls to protect sensitive platform data:
- User Authentication: Access is secured through password-protected accounts and cryptocurrency wallets. We recommend enabling two-factor authentication (2FA) for enhanced security.
- Role-Based Access Control (RBAC): Access to internal data is restricted based on roles, ensuring sensitive information is only accessible to authorized personnel.
6. Data Storage and Retention
Soleer securely stores data using cloud infrastructure with industry-standard security measures:
- Regular Backups: We regularly back up important data to prevent loss during system failures.
- Data Retention Policy: We retain personal data only as long as necessary for the purposes it was collected. However, blockchain transaction data remains permanently due to its immutable nature.
7. Vulnerability Management and Security Audits
Soleer regularly monitors its systems to identify and address vulnerabilities:
- Vulnerability Scanning: We scan for known vulnerabilities in the platform’s code and infrastructure.
- Security Patches: We promptly apply updates and patches to address any identified vulnerabilities.
- Third-Party Security Audits: External cybersecurity experts conduct periodic audits to ensure compliance with industry data protection standards.
8. Incidence Response Plan
Soleer regularly monitors its systems to identify and address vulnerabilities:
- Immediate Identification and Containment to minimize potential damage.
- Investigation to determine the scope and impact of the breach.
- User Notification in compliance with legal requirements if personal information is compromised.
- Corrective Actions such as updating security measures and conducting post-incident reviews.
9. User Responsibilities
To enhance the safety of your data, Soleer users are advised to:
- Protect login credentials: Use strong passwords and enable two-factor authentication (2FA) if available.
- Safeguard cryptocurrency wallets: Keep private keys and recovery phrases secure. Soleer does not store or request private keys.
- Be cautious of phishing attempts: Avoid responding to messages requesting wallet information. Soleer will never ask for private keys or passwords.
10. Third-Party Integrations
Soleer may integrate with third-party services to improve platform functionality:
- Protect login credentials: Use strong passwords and enable two-factor authentication (2FA) if available.
- We ensure that these third parties comply with data protection and privacy standards.
- Any shared data is subject to strict agreements to ensure confidentiality and security.
11. Compliance with Data Protection Regulations
Soleer complies with global data protection regulations, including:
- GDPR (General Data Protection Regulation) for European users, ensuring rights like access, rectification, and erasure.
- CCPA (California Consumer Privacy Act) for California residents, ensuring transparency in data collection, use, and sharing.
We regularly update our policies to remain compliant with relevant data protection laws.
12. Reporting Security Vulnerabilities
We encourage responsible disclosure of security vulnerabilities. If you discover a vulnerability, please report it to contact@soleer.xyz We will investigate and take action as necessary.