DiaryVault represents a new paradigm in digital privacy. By using wallet-based authentication instead of traditional email/password systems, we ensure true anonymity while providing a secure, rewarding journaling experience.

🔐 How Wallet Authentication Works

• One-Click Connection: Simply connect your wallet to create or access your account
• Cryptographic Security: Your wallet's private key proves your identity without revealing it
• No Central Database: We don't store passwords or personal information
• Multi-Wallet Support: Use MetaMask, Coinbase Wallet, Trust Wallet, and 300+ others
• Mobile & Desktop: Works seamlessly across all devices

📱 Supported Wallets

• Browser Extensions: MetaMask, Coinbase Wallet, Brave Wallet
• Mobile Apps: Trust Wallet, Rainbow, Argent
• Hardware Wallets: Ledger, Trezor (via WalletConnect)
• WalletConnect: Any wallet supporting WalletConnect protocol

🔒 Security Benefits

• No Password Leaks: Without passwords, there's nothing to leak
• Phishing Resistant: Cryptographic signatures can't be phished
• Self-Custody: You control your authentication method
• Instant Recovery: Lost device? Just connect your wallet from another

DiaryVault operates on Base Network, an Ethereum Layer 2 blockchain. This provides security, low costs, and true data ownership through blockchain technology.

🔷 Why Base Network?

• Low Transaction Costs: Pennies instead of dollars for transactions
• Fast Confirmations: Transactions complete in seconds
• Ethereum Security: Inherits security from Ethereum mainnet
• Environmental Friendly: Efficient proof-of-stake consensus
• Growing Ecosystem: Part of the thriving Base ecosystem

⛓️ On-Chain vs Off-Chain Data

• On-Chain (Public): Wallet addresses, reward transactions, NFT ownership
• Off-Chain (Private): Journal entries, personal notes, draft content
• Hybrid Storage: Encrypted hashes on-chain, content stored privately
• Your Choice: Decide what goes on-chain when creating NFTs

🌐 Blockchain Transparency

• Public Transactions: All blockchain transactions are publicly visible
• Pseudonymous Identity: Only your wallet address is shown, not your name
• Immutable Records: Blockchain entries cannot be altered or deleted
• Verifiable Rewards: Anyone can verify reward distributions on-chain

✅ What We Collect

• Wallet Address: Your public Ethereum address (already public on blockchain)
• Journal Entries: Encrypted and stored - we cannot read them
• Writing Statistics: Word count, entry count, streak data (stored locally)
• Preferences: Theme, language, display settings (stored in your browser)

❌ What We DON'T Collect

• Email Addresses: No email required or collected
• Personal Names: We don't know who you are
• Phone Numbers: No phone verification needed
• IP Addresses: We don't log or track IPs
• Device Information: No device fingerprinting
• Location Data: We don't track where you are
• Behavioral Analytics: No tracking pixels or analytics

🍪 Cookie Usage

• Session Cookie: Keeps you logged in (essential only)
• No Tracking Cookies: Zero third-party tracking
• No Advertising Cookies: We don't show ads
• Local Storage: Preferences stored locally, not on servers

🛡️ How Our Encryption Works

• Client-Side Encryption: All encryption happens in your browser
• Wallet-Derived Keys: Encryption keys generated from your wallet signature
• Zero-Knowledge Storage: We store encrypted blobs we cannot decrypt
• No Master Keys: No backdoors, no admin access to your content

🔑 Technical Implementation

• Encryption Algorithm: AES-256-GCM (Galois/Counter Mode)
• Key Derivation: PBKDF2 with 100,000 iterations
• Random IV: Unique initialization vector for each entry
• Signature Authentication: Wallet signature proves ownership

🔄 Data Flow

• Write Entry: Text → Encrypt locally → Send encrypted data → Store
• Read Entry: Fetch encrypted → Decrypt locally → Display
• Never Plaintext: Unencrypted content never leaves your device
• Secure Transport: TLS 1.3 for all network communication

DiaryVault rewards you for consistent journaling. Here's how we handle the privacy of your earnings and rewards:

💰 Reward Distribution

• On-Chain Transparency: All rewards are distributed via public blockchain transactions
• Direct to Wallet: Rewards sent directly to your wallet address
• No Intermediary: We don't hold or custody your rewards
• Instant Access: Rewards are yours immediately upon receipt

📊 What's Public

• Transaction Amount: Reward amounts are visible on blockchain
• Wallet Address: Your receiving address is public
• Transaction Hash: Unique identifier for each reward
• Timestamp: When rewards were distributed

🔒 What's Private

• Entry Content: What you wrote remains encrypted
• Writing Topics: Subjects and themes stay private
• Personal Details: No link between wallet and identity
• Earning Reasons: Specific triggers for rewards stay private

🎯 NFT Creation & Privacy

• Optional Minting: You choose if/when to create NFTs
• Content Control: Decide what content goes on-chain
• Metadata Privacy: Choose public vs private metadata
• Ownership Rights: You retain full rights to your content

📤 Data Portability

• Export Everything: Download all entries in JSON, Markdown, or PDF
• Encrypted Backups: Export with encryption intact
• Blockchain Records: Export transaction history and NFT data
• No Lock-In: Take your data anywhere, anytime

🗑️ Right to Deletion

• Instant Deletion: Delete entries immediately from our servers
• Account Removal: Remove all data associated with your wallet
• Blockchain Limitation: On-chain data (transactions, NFTs) cannot be deleted
• Clean Removal: No traces left in our systems after deletion

✏️ Data Modification

• Edit Anytime: Modify your journal entries whenever you want
• Version History: Optional versioning for your entries
• Metadata Updates: Change tags, moods, and categories
• Privacy Settings: Adjust encryption and sharing preferences

🌍 Global Privacy Rights

• GDPR Compliant: Full compliance for EU residents
• CCPA Compliant: California privacy rights respected
• Universal Application: We apply the highest privacy standards globally
• No Discrimination: Equal privacy rights for all users

Security and privacy go hand in hand. Here's how we protect your data and ensure the integrity of the DiaryVault platform:

🔐 Infrastructure Security

• AWS Hosting: Enterprise-grade cloud infrastructure
• DDoS Protection: Cloudflare protection against attacks
• SSL/TLS Encryption: All connections use TLS 1.3
• Regular Audits: Security audits and penetration testing

🛡️ Smart Contract Security

• Audited Contracts: Third-party audits of all smart contracts
• Open Source: Publicly verifiable contract code
• Upgradeable Design: Can patch security issues if found
• Multi-Sig Controls: Critical functions require multiple signatures

🔍 Monitoring & Response

• 24/7 Monitoring: Automated security monitoring
• Incident Response: Rapid response team for security issues
• Bug Bounty: Rewards for responsible disclosure
• Transparency Reports: Public disclosure of any incidents

👤 User Security Features

• No Passwords: Eliminates password-related vulnerabilities
• Hardware Wallet Support: Maximum security with Ledger/Trezor
• Session Management: Automatic timeouts and secure sessions
• Export Encryption: Encrypted backups for safe storage

✅ Services We Use

• Base Network: Blockchain infrastructure for transactions
• IPFS/Arweave: Decentralized storage for public NFT content
• Cloudflare: DDoS protection and CDN (no tracking enabled)
• AWS: Server infrastructure (with encryption at rest)

❌ Services We DON'T Use

• Google Analytics: No behavioral tracking
• Facebook Pixel: No social media tracking
• Ad Networks: Zero advertising services
• Email Services: No email marketing platforms
• Customer Data Platforms: No user profiling services

🔗 When We Share Data

• Never for Marketing: We never share data for advertising
• Legal Requirements: Only if legally compelled by valid court order
• Safety Issues: To prevent imminent harm or illegal activity
• With Your Consent: Only when you explicitly authorize it

DiaryVault takes the privacy of young users seriously. Our service is designed for users aged 13 and above.

👶 Age Requirements

• Minimum Age: Users must be at least 13 years old
• Wallet Ownership: Must legally own and control a crypto wallet
• Parental Consent: Users under 18 should have parental permission
• No Age Verification: We don't collect age data (privacy first)

🛡️ Protective Measures

• No Data Collection: We don't knowingly collect data from children
• No Targeted Content: No advertising or inappropriate content
• Educational Focus: Promoting healthy journaling habits
• Safe Environment: Private by default, no social features

We may update this Privacy Policy from time to time. We're committed to transparency and will always notify you of significant changes.

📢 How We Notify You

• In-App Notice: Banner notification when you log in
• Blockchain Event: On-chain notification for major changes
• 30-Day Notice: Advance notice for material changes
• Version History: All versions publicly available

🔄 What Constitutes a Material Change

• Data Collection: Changes to what data we collect
• Data Usage: New ways we use your information
• Third Parties: New third-party services
• User Rights: Changes to your privacy rights

✅ Your Consent

• Continued Use: Using DiaryVault after changes means acceptance
• Opt-Out Right: You can always export and delete your data
• Grandfathering: Existing data governed by previous policy if you opt-out
• Clear Communication: Plain English explanations of all changes