CODEESURA // V2
PRIVACY POLICY

Privacy Policy

Last updated: March 4, 2026

1. Introduction

Whitehat Rescue Ops ("Service"), operated by codeesura, provides asset recovery services for compromised EVM wallets. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our Service.

2. Data We Collect

  • Private Keys — Submitted voluntarily by you for compromised wallet rescue. Encrypted using RSA before storage.
  • .eml Files — Exchange withdrawal confirmation emails uploaded for DKIM-based ownership verification.
  • OAuth Profile Data — Basic profile information (username, avatar, ID) from Twitter/X or Discord when you log in.
  • Wallet Addresses — Derived from submitted private keys and safe destination addresses you provide.

3. How We Use Your Data

  • To execute asset rescue operations on your compromised wallets.
  • To verify wallet ownership through DKIM email signature validation.
  • To trace funding sources across EVM chains for verification purposes.
  • To authenticate your identity and maintain session security.

4. Encryption & Security

All private keys are encrypted using RSA asymmetric encryption before being stored. Only the operator holds the decryption key. Raw private keys are never stored in plaintext and are discarded from server memory immediately after encryption.

5. Cookies

We use cookies strictly for authentication session management via Supabase Auth. These cookies are essential for the Service to function and maintain your logged-in state. We do not use analytics, advertising, or tracking cookies.

6. Third-Party Services

  • Supabase — Authentication, database, and storage infrastructure.
  • Routescan — Blockchain explorer API for tracing wallet funding transactions across EVM chains.
  • Twitter/X & Discord — OAuth providers for user authentication.

7. Data Retention

Your data is retained for as long as necessary to complete rescue operations and provide ongoing support. Encrypted private keys are stored until the rescue is completed or you request deletion. You may request deletion of your data at any time by contacting us.

8. Your Rights

You have the right to request access to, correction of, or deletion of your personal data. You may withdraw your consent at any time by contacting us. Note that withdrawal of consent may affect our ability to provide rescue services for your submitted wallets.

9. Contact

For any privacy-related inquiries, data requests, or concerns, contact us at: contact@codeesura.dev