Apetopia
Sign inGet started

Privacy Policy

Last updated: May 16, 2026

1. Overview

Apetopia ("we", "us") is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information. By using the Service, you agree to the practices described in this policy.

Because Apetopia integrates with Web3 infrastructure, some of the data we work with is already public on the Solana and Ethereum blockchains. We treat wallet addresses and on-chain activity as pseudonymous public data.

2. Information We Collect

Information you provide directly

  • Solana wallet address(es) used to sign in or linked to your account
  • Discord account data obtained via Discord OAuth login: user ID, username, avatar, and Discord email address (if provided by Discord)
  • Community profile fields: name, description, logo, website URL, Twitter URL, Discord invite link
  • Collection details: name, symbol, description, logo, website, social links
  • Discord server and channel IDs entered in the Discord integration settings

Information we collect automatically

  • On-chain data: NFT ownership, holder snapshots, transaction signatures, floor prices, sales data
  • NFT purchase history from secondary marketplaces (for plan verification)
  • Usage data: pages visited, features used, timestamps — collected via Google Analytics 4 (see Section 7)
  • Session tokens stored in cookies (HttpOnly, not accessible to JavaScript)
  • Affiliate referral data: referral link clicks, conversion events, attributed sign-ups

Information we do NOT collect

  • Private keys or seed phrases — we never ask for these
  • Payment card details — payments are processed directly through PayPal

3. How We Use Your Information

  • To authenticate you via Discord OAuth or Solana wallet and maintain your session
  • To verify collection ownership via on-chain update authority
  • To provide holder snapshots, analytics, giveaways, raffles, and community tools
  • To verify USD payments and activate or maintain your subscription
  • To operate the Discord bot according to your configuration
  • To display your community on its public hub page (apetopia.co/hub/your-slug)
  • To power Silverback AI features by processing community data via the Claude API (Anthropic)
  • To track affiliate referrals and calculate commissions
  • To detect and prevent fraud (e.g. wash-trade detection, affiliate fraud)
  • To improve the platform based on aggregate, anonymized usage patterns via Google Analytics

4. Public Data & Blockchain Transparency

Wallet addresses and on-chain transactions are public by nature of the Solana and Ethereum blockchains. Holder snapshot data (wallet addresses and NFT counts) is stored in our database to power analytics features.

Your community hub page (apetopia.co/hub/your-slug) is publicly accessible to anyone with the URL and is indexed by search engines. It displays your community name, description, logo, and social links. Public raffle pages and public mint pages are similarly accessible without login.

We do not sell or publish holder wallet lists to third parties. Holders of your collection can request removal from publicly displayed data by contacting us.

5. AI Data Processing

Silverback AI features (chat, server reports, community digests, alerts, insights, and campaign builder) are powered by the Claude API provided by Anthropic, PBC. When you use these features, your prompts, community context data, and conversation history are sent to Anthropic's API for processing.

We do not use your data to train AI models. Anthropic processes data in accordance with their Privacy Policy and API usage terms. AI-generated content is not guaranteed to be accurate and should always be reviewed before acting on it.

6. Data Sharing

We do not sell your personal information. We share data only with:

  • Anthropic — Claude API provider powering Silverback AI features; receives prompts and community context data
  • Helius — blockchain data API used for on-chain queries and transaction verification
  • Supabase — database hosting provider where your account and community data is stored
  • Vercel — hosting provider for the web application
  • Upstash / Redis — in-memory data store used for caching and rate limiting
  • PayPal — payment processor for USD subscriptions; receives billing information you provide directly to PayPal
  • Discord — when you log in via Discord OAuth or configure our bot, we interact with Discord's API using your account data and server IDs
  • Google Analytics 4 — analytics provider that collects anonymized usage data via cookies (see Section 7)

All third-party providers are bound by their own privacy policies and data processing agreements.

7. Cookies & Tracking

Session cookie

We use a single session cookie (apetopia_token) to keep you signed in. This cookie is HttpOnly, Secure, and SameSite-strict. It contains only a session identifier and no personal data.

Analytics cookies (Google Analytics 4)

We use Google Analytics 4 to understand how users interact with the platform. GA4 sets the following cookies: _ga (2-year expiry) and _ga_XXXXXXX (2-year expiry). These cookies collect anonymized data including pages visited, session duration, and general geographic region. No personally identifiable information is sent to Google. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

Affiliate tracking cookie

When you visit Apetopia through an affiliate referral link, we set a cookie to attribute your account to the referring affiliate. This cookie lasts 30 days and contains only the affiliate's referral code. It is used solely for commission calculation purposes.

8. Data Retention

We retain your account data and community information for as long as your account is active. Holder snapshot data is retained indefinitely to power historical analytics features. AI conversation history (Silverback AI chats) is retained to provide context in future sessions and may be deleted upon request. If you delete your collection or account, we will remove your personal profile data within 30 days, though some anonymized aggregated data may be retained.

9. Your Rights

You have the right to:

  • Access the data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Export your collection and holder data in CSV format (available in-app)
  • Request deletion of your Silverback AI conversation history
  • Opt out of Google Analytics tracking via the opt-out browser add-on
  • Opt out of any non-essential data processing

To exercise any of these rights, visit our contact page.

10. Security

We implement industry-standard security measures including encrypted connections (HTTPS), HttpOnly session cookies, access controls, and secure database hosting via Supabase. However, no system is completely secure. We encourage you to protect your Discord account and wallet, and never share your private key or seed phrase with anyone, including us.

11. Children's Privacy

The Service is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of significant changes by posting a notice on the platform. Continued use of the Service after changes are posted constitutes acceptance of the updated policy.

13. Contact

For any privacy-related questions or requests, visit our contact page.