Data controller: MonteCore Solutions ("Operator," "we," "us").

For privacy questions, please contact us via the Contacts section on UnIQum.io.

2.1. This Policy explains how we process your personal data when you use UnIQum.io and related services (the "Service").

2.2. For authentication via Firebase Authentication, passwords are stored by Firebase (Google). We do not store users' passwords.

2.3. We act as a data controller for the activities described below. Certain providers (e.g., Firebase, our payment provider, Google Analytics) act as independent controllers and/or processors under their own terms and privacy notices.

3.1. Data you provide when registering/using the Service:

• e-mail address;
• nickname;
• first and last name;
• phone number (optional);
• accounts on X (Twitter), Telegram, Discord (if you link them);
• sign-in data via Facebook (relevant identifiers/tokens provided by that provider);
• sign-in data via Apple ID (relevant identifiers/tokens provided by that provider);
• any other personally identifiable information that may be requested by the Operator from time to time through the website and/or app, or by a specific data processor, for the purpose of providing the Service and its functionality to you.

3.2. Data collected automatically: IP address, user-agent/device and browser identifiers, cookies, event/error logs, technical performance metrics, and aggregated product analytics (page views, clicks, traffic sources, etc.).

3.3. Data from third-party services at your initiative: metadata about your integrations (e.g., connection status to exchanges/wallets, public keys/addresses, API-key permissions/status), and payment status data from our payment provider.

3.4. We do not request or store your private keys, seed phrases, or other secrets that allow control over funds.

7.1. Recipients (only as needed and under data-processing agreements): hosting/database providers, Firebase (authentication), Google Analytics (analytics), the payment provider, anti-fraud/logging and similar service vendors, and other providers required to operate the Service.

7.2. Your data may be transferred outside your country, including to jurisdictions that may not offer an equivalent level of data protection. Where applicable, we rely on appropriate safeguards (e.g., standard contractual clauses and supplementary technical/organizational measures).

• Logs: retained for 1–3 months, then deleted or anonymized.
• Account data (e-mail, profile, linked X/Telegram/Discord accounts, social sign-in identifiers): retained without a fixed term until you delete your account or we receive your deletion/objection request.
• Invoices/accounting records: retained for 1 year, or longer where required by law.

We apply organizational and technical safeguards (access controls, encryption in transit, monitoring). However, no system can be guaranteed to be 100% secure.

Subject to applicable law (including Montenegro law and, where applicable, GDPR-equivalent standards), you may:

• request access to your data and obtain a copy;
• request rectification of inaccurate data;
• request deletion of your data (including account deletion);
• request restriction of processing;
• object to processing based on legitimate interests and to marketing;
• withdraw consent at any time without affecting the lawfulness of processing before withdrawal;
• exercise data portability where applicable.

Submit requests via the Contacts section on UnIQum.io. We will respond without undue delay, generally within 1 month.

Processing of personal data is governed by the laws of Montenegro.

For privacy matters, contact us via the Contacts section on UnIQum.io.