Privacy Policy
Last updated: January 10, 2026
1. Introduction
At Sentinel, we believe privacy is a fundamental right, not a feature. Our platform is designed with a zero-knowledge architecture that minimizes data collection and maximizes your control over your information.
This Privacy Policy explains how Sentinel ("we," "us," or "our") collects, uses, and protects your information when you use our platform at sentinelseed.dev and related services.
2. Data We Collect
We follow the principle of data minimization. We only collect what is absolutely necessary to provide our services.
Wallet Address
Your Solana wallet address serves as your pseudonymous identity. Wallet addresses are public by nature on the blockchain.
Agent Configurations
The agents you build, including node configurations and flow data. This data is encrypted and associated with your wallet address.
Usage Analytics
Aggregated, anonymized usage metrics to improve our platform. This includes page views, feature usage, and error rates (never individual user behavior).
Subscription Status
If you subscribe to a paid plan, we track your subscription tier and status for access control purposes.
3. Data We Don't Collect
Unlike traditional platforms, Sentinel is designed to not collect sensitive personal information. We eliminate entire categories of data risk.
- ✕ Passwords
- ✕ Email addresses
- ✕ Phone numbers
- ✕ Real names
- ✕ Physical addresses
- ✕ Government IDs
- ✕ Credit card data
- ✕ Bank account info
- ✕ SSN/Tax IDs
- ✕ Biometric data
- ✕ Location tracking
- ✕ Device fingerprints
By not collecting this data, we eliminate 100% of traditional PII risk and the entire PCI-DSS compliance scope.
4. How We Use Your Data
The limited data we collect is used exclusively for:
- Providing and maintaining our services
- Authenticating your access to your agents and data
- Processing your subscription and access tier
- Improving platform performance and reliability
- Preventing fraud and abuse
- Complying with legal obligations
We never sell your data, use it for advertising, or share it with third parties for their marketing purposes.
5. Data Security
We implement industry-leading security measures to protect your data:
Zero-Knowledge API Key Storage
Your LLM API keys (OpenAI, Anthropic, etc.) are encrypted client-side before leaving your browser. We never see your plaintext API keys. They are encrypted using a key derived from your wallet signature with AES-256-GCM, and only decrypted on your device when needed.
- All data encrypted in transit (TLS 1.3)
- All data encrypted at rest (AES-256)
- Row-level security (RLS) in our database
- Regular security audits and penetration testing
- SOC 2 Type II certification (in progress)
6. Your Rights
Under GDPR and similar regulations, you have the following rights:
Right to Access
Request a copy of all data we hold about you.
Right to Portability
Export your data in a machine-readable format (JSON).
Right to Erasure
Request deletion of all your data. Note: Some data may be retained for legal compliance (e.g., transaction records for tax purposes).
To exercise these rights, contact us at privacy@sentinelseed.dev
7. Data Retention
We retain your data only as long as necessary:
- Account data: Until you request deletion
- Agent configurations: Until you delete them or your account
- Usage analytics: Aggregated data retained indefinitely (non-personal)
- Transaction records: 7 years (legal requirement)
- Deletion audit logs: Retained for GDPR compliance proof
8. Third-Party Services
We use the following third-party services to operate our platform:
- Cloudflare: CDN, DDoS protection, and edge computing
- Supabase: Database and authentication infrastructure
- Modal: Agent runtime execution (isolated containers)
- Solana: Blockchain for authentication and payments
When you use LLM providers (OpenAI, Anthropic, etc.) through your agents, your prompts and responses are subject to their respective privacy policies. We recommend reviewing their policies before use.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.
10. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us:
We aim to respond to all privacy-related inquiries within 30 days.