Legal
Privacy Policy
This policy describes how ValidatorMind collects, uses, and protects your data. Please read it before creating an account.
Account information
When you create an account, we collect your name, email address, and a hashed password. You may choose to provide a company name and billing address for invoice purposes.
Validator infrastructure connection details
To provide monitoring services, you provide connection details for your validator infrastructure. This may include: Prometheus endpoint URLs and job labels, beacon chain RPC endpoints, validator operator addresses, and monitoring thresholds you configure. These details are stored encrypted at rest.
Usage data
We collect anonymized telemetry on how you use the Service — including features accessed, alert volume, and general usage patterns — to improve the product. This data is aggregated and cannot be linked to your account.
Logs
Alert events, remediation action logs, and system diagnostic logs are retained for 30 days. These logs may include anonymized chain identifiers and error codes; they do not contain your private keys or passphrase data.
We use collected information to:
- Provide, maintain, and improve the monitoring and alerting service.
- Send you account-related notifications (alerts, outages, billing).
- Respond to support requests.
- Detect and prevent fraud or abuse of the Service.
- Comply with legal obligations.
We do not sell your personal information to third parties.
ValidatorMind integrates with the following third-party services. Each integration is under a data processing agreement with the respective vendor.
Prometheus & Grafana
We query your Prometheus endpoint to collect infrastructure metrics (CPU, memory, disk). Your Prometheus data remains under your control — we only read the metrics you explicitly expose via the job label you configure.
Datadog
If you connect a Datadog account, we forward alert events to your Datadog dashboard. We do not store your Datadog API key after the initial configuration.
Stripe
Payment processing is handled entirely by Stripe. ValidatorMind does not store your credit card or bank account number. Stripe’s privacy policy governs their handling of your payment data.
Chain data providers
To enrich alert context, we may query public blockchain RPC endpoints (for example, Ethereum beacon chain APIs) using your validator address. This data is public by nature and is not stored beyond the duration of the API call.
- Account data — retained until you delete your account and for 30 days thereafter.
- Infrastructure connection details — deleted within 30 days of account deletion.
- Alert and remediation logs — retained for 30 days.
- Billing records — retained for 7 years per applicable tax and accounting regulations.
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access — request a copy of the personal data we hold about you.
- Correction — request correction of inaccurate or incomplete data.
- Deletion — request deletion of your account and associated data, subject to billing record retention requirements.
- Portability — request a machine-readable export of your account data in JSON format.
- Objection — object to certain processing activities, such as direct marketing.
To exercise any of these rights, email validatormind-2@polsia.app. We respond to all requests within 30 days.
We implement industry-standard technical and organizational measures to protect your data, including encryption in transit (TLS 1.2+), encryption at rest (AES-256), role-based access controls, and regular security audits.
While we strive to protect your data, no system is completely secure. You are responsible for keeping your account credentials confidential and for ensuring your infrastructure access controls are appropriately configured.
In the event of a data breach that affects your data, we will notify you within 72 hours of becoming aware of the breach.
For questions about this Privacy Policy or to report a security concern, contact us at: validatormind-2@polsia.app
We aim to respond to all inquiries within 5 business days.