Privacy.

We try to collect as little as possible. We do not run our own analytics tracker. We do not sell your data. We need your wallet address to let you buy packs and we need your email if — and only if — you sign up for the newsletter. Everything else is either standard server logging or data that lives on the public blockchain.

• Wallet address. When you connect a wallet, we read its public address so we can show your collection, accept payment, and route purchased packs to you. We never see your private keys.
• Email address. Only if you submit one through the newsletter form. We use it to send drop announcements and tournament updates. You can unsubscribe at any time using the link in any email.
• Server logs. Like most websites, our hosting provider records request metadata — IP address, user agent, requested path, response code, timestamp — for short-term debugging and abuse prevention.
• On-chain activity. Pack purchases, pack openings, card mints, transfers, marketplace listings and sales are all recorded on Base. They are public, permanent, and not controlled by us.

We do not run a third-party advertising or behavioural analytics tracker. We do not fingerprint your browser. We do not ask for your name, address, or government ID. We have no interest in profiling you across other sites.

Tifo uses a small number of strictly necessary cookies and browser storage entries — to remember your selected wallet connector, the active blockchain network, and your colour scheme. We do not set advertising or tracking cookies. You can clear them at any time from your browser settings.

Some features only work because we hand off to a third party. Each one has its own privacy policy.

• Wallet providers (Coinbase Wallet, MetaMask, WalletConnect, and any other connector you choose) handle the signing of transactions. They see your interactions with the connected site.
• Base / Ethereum RPC providers serve the blockchain reads and writes the site needs. They see request metadata associated with those reads.
• Hosting and CDN providers serve the site itself and process the server logs described above.
• Email delivery handles the newsletter list if you subscribe. They see your email address and engagement with the messages they deliver.

Every pack purchase, pack opening, card mint, transfer, listing, and sale is recorded on the Base blockchain. That record is permanent and is visible to anyone with a block explorer. If your wallet address is ever linked to your real identity — through an exchange, a public profile, an ENS name — that link extends to your Tifo activity. We cannot delete on-chain data and neither can you.

Server logs are kept for as long as our hosting provider retains them by default — typically a few weeks. Newsletter subscriptions are kept until you unsubscribe. On-chain data is permanent by design.

• Disconnect your wallet. Use your wallet's interface to disconnect from Tifo at any time.
• Unsubscribe. Every newsletter email includes a one-click unsubscribe link.
• Clear local state. Clear cookies and local storage from your browser settings to wipe the small set of preferences we keep client-side.
• Ask us anything. If you want to know what we have on file, or want it removed, email us at the address below.

Tifo is not directed to anyone under the age of 18. We do not knowingly collect data from minors. If you believe a minor has used the service, contact us and we will remove any associated off-chain data.

We will update this page as the product changes. The "Last updated" date at the top of the page reflects the most recent revision. Material changes will be announced through the newsletter or on the site itself.

Questions, requests, or corrections — write to hello@tifo.cards.