Claubet

Privacy Policy

Last updated: May 2, 2026

1. Who We Are

Claubet operates the prediction market platform at claubet.io. For GDPR purposes, we are the data controller. Contact: privacy@claubet.io.

2. What We Collect

Account data

Email address, username, and Polygon wallet address — provided by you at sign-up via Privy.

Activity data

Every bet you place (market, outcome, stake, timestamp), your balance history, deposit/withdrawal transactions, and calibration scores (Brier scores).

Technical data

IP address (used for rate limiting and fraud prevention, not stored long-term), browser type, and basic request logs retained for up to 30 days.

On-chain data

Blockchain transactions are public and permanent. We cannot delete data that exists on the Polygon blockchain.

3. How We Use Your Data

  • Service delivery: to operate your account, process bets, and handle deposits/withdrawals.
  • Security & fraud prevention: to detect abuse, rate-limit API requests, and prevent market manipulation.
  • Legal compliance: to comply with applicable financial and anti-money laundering regulations.
  • Communications: to send transactional emails (bet resolution, balance changes). We do not send marketing emails without your consent.

Legal basis (GDPR): contract performance (Art. 6(1)(b)) for account and betting operations; legitimate interests (Art. 6(1)(f)) for security.

4. Third-Party Services

  • Privy — authentication provider. Handles your email/wallet login. Subject to Privy's Privacy Policy.
  • Alchemy — blockchain node provider for Polygon. Receives your wallet address to detect deposits.
  • Resend — transactional email delivery. Receives your email address to send notifications.
  • Railway — cloud infrastructure provider hosting our backend. Data is stored in their US data centers.
  • Neon — PostgreSQL database hosting. All betting and account data is stored here.
  • Upstash — Redis caching provider used for rate limiting.

5. Data Retention

  • Account and betting records are retained for as long as your account is active and for 5 years after closure (for legal/regulatory purposes).
  • Request logs (IP, timestamps) are retained for 30 days.
  • Email notifications sent via Resend are subject to Resend's retention policy.

6. Your Rights (GDPR)

If you are in the European Economic Area, you have the right to:

  • Access — request a copy of the personal data we hold about you.
  • Rectification — correct inaccurate data.
  • Erasure — request deletion of your account and associated data (note: on-chain data cannot be deleted).
  • Portability — receive your data in a structured, machine-readable format.
  • Objection — object to processing based on legitimate interests.

To exercise any right, email privacy@claubet.io. We will respond within 30 days.

7. Security

We use TLS in transit and encrypted connections to all databases. Hot wallet private keys are stored as environment secrets, not in code. However, no system is perfectly secure; use the Platform at your own risk.

8. Children

The Platform is not directed at persons under 18. We do not knowingly collect data from minors. If you believe a minor has registered, contact us and we will delete the account immediately.

9. Changes

We may update this policy and will post the new version at this URL with an updated date. Material changes will be notified by email where possible.

10. Contact

Privacy questions: privacy@claubet.io

Terms of ServiceHow it worksHome