Privacy Policy
What data Sippy collects, how it is used, and your rights.
Last updated: March 2026. This privacy policy establishes the framework for Sippy's data practices. Full legal privacy terms are being finalized and will replace this document.
What Sippy Collects
When you use Sippy, we collect the minimum data necessary to operate the service:
- Phone number -- used to create and authenticate your wallet
- Wallet address -- your on-chain address on Arbitrum, generated during setup
- Email address (if provided) -- used for account recovery and optional notifications
- Transaction history -- records of transfers sent and received through Sippy (this data also exists publicly on-chain)
- Language and country preference -- inferred from your phone number to provide localized responses
What Sippy Does Not Collect
- Message content beyond commands -- Sippy processes your messages to understand instructions (e.g., "send 10 to Maria") but does not store conversation content beyond what is needed for transaction processing
- Location data -- we do not request or track your GPS location
- Contact lists -- we do not access your phone's contacts
- Browsing activity -- the web wallet does not use tracking cookies or third-party analytics
How Your Data Is Used
Your data is used strictly to operate Sippy:
- Authentication -- verifying your identity when you interact with the service
- Transaction processing -- executing transfers you authorize
- Notifications -- confirming transactions and alerting you to account activity
- Support -- resolving issues you report
We do not sell your data. We do not use your data for advertising. We do not share your data for marketing purposes.
Third Parties
Sippy relies on trusted infrastructure partners to deliver the service:
- Coinbase CDP -- provides the embedded wallet infrastructure that secures your wallet
- WhatsApp / Meta -- the messaging platform through which you interact with Sippy
- Groq -- processes natural language to interpret your messages (message content is not stored by the LLM provider beyond processing)
- Arbitrum (on-chain) -- transaction data is recorded on a public blockchain and is visible to anyone
Each third party operates under its own privacy policy and data handling practices.
Data Retention
- Account data (phone number, wallet address) is retained as long as your account is active
- Transaction records are retained for compliance purposes and also exist permanently on-chain
- If you request account deletion, we will remove your data from our systems. On-chain transaction history cannot be deleted because it is part of the public blockchain record
Your Rights
You have the right to:
- Access your data -- ask us what data we hold about you
- Correct your data -- request corrections to inaccurate information
- Delete your data -- request removal of your data from our systems (subject to the on-chain limitation above)
- Export your data -- request a copy of your data in a portable format
To exercise any of these rights, contact support@sippy.finance.
Contact
Questions about this privacy policy can be directed to support@sippy.finance.
SIPPY, S.A. DE C.V., incorporated in the Republic of El Salvador.