Privacy Policy

Effective Date: May 13, 2026

Welcome to P0 / Project 0, a frontend operated by MRGN, Inc. (“MRGN,” “we,” “our,” or “us”). This Privacy Policy explains how we collect, use, disclose, and protect information when you use app.0.xyz and related services we operate (the “Service”).

1. Information We Collect

Wallet & On-Chain Data

When you use the Service, we may process information related to your use of Solana-based protocols, including:

  • Your public Solana wallet address;
  • Public on-chain interactions made through the Service;
  • Transaction metadata available on public blockchains.

We do not collect your private keys or seed phrases, and we do not have custodial access to your funds.

Analytics & Usage Data

We use analytics tools such as Google Analytics and PostHog to understand how users interact with the Service and to improve performance, usability, and reliability.

This data may include:

  • Device type;
  • Browser type;
  • Approximate region;
  • Referrer;
  • Session duration;
  • Page views;
  • Clicks and other usage events.

Embedded Wallet Sign-Ups

If you create or access an embedded wallet through third-party authentication, such as Google, X/Twitter, or another supported login method, we or our service providers may process information necessary to provision and maintain that wallet.

This may include:

  • Email address;
  • Authentication metadata;
  • Provider user ID or similar account identifiers;
  • Other information required to authenticate you and provide wallet functionality.

We do not access your social media profile beyond what is necessary to support authentication and wallet provisioning.

Cookies & Tracking

  • We use cookies and similar technologies to operate the Service, understand usage, improve performance, and support analytics.
  • You can control cookies through your browser settings or through any cookie preferences we make available. Disabling non-essential cookies may affect certain functionality.

Sensitive Information

We do not intentionally collect sensitive personal information, such as precise geolocation, health data, biometric data, or government-issued identifiers, through the Service.

2. Controller & Legal Bases

MRGN, Inc. is the controller of personal information processed through the Service where applicable data protection laws, including GDPR or UK GDPR, apply.

Depending on the context, our legal bases for processing personal information may include:

  • Performance of a contract, including providing and supporting the Service;
  • Legitimate interests, including security, fraud prevention, analytics, debugging, and improving the Service;
  • Consent, including for non-essential cookies or analytics where consent is required;
  • Compliance with legal obligations, where applicable.

Where we rely on consent, you may withdraw your consent at any time through available cookie settings, browser controls, or by contacting us.

3. How We Use Information

We use information to:

  • Provide, operate, and maintain the Service;
  • Support wallet-related functionality;
  • Secure the Service and prevent fraud or abuse;
  • Troubleshoot, debug, and improve the Service;
  • Understand usage patterns and product performance;
  • Communicate with you, including for support or service-related notices;
  • Comply with applicable laws and enforce our terms.

We do not sell personal information.

4. Information Sharing & Service Providers

We may share information with service providers and processors that help us operate, secure, analyze, and improve the Service. These providers process information on our behalf and are subject to appropriate contractual safeguards.

Our current analytics providers include:

  • Google Analytics;
  • PostHog.

We may also share information with embedded wallet, authentication, infrastructure, hosting, security, customer support, or other operational providers as necessary to provide the Service.

We may disclose information if required by law, legal process, or government request; to protect our rights, users, or the public; or in connection with a merger, acquisition, financing, reorganization, or sale of assets.

We do not rent or sell personal information.

5. Your Privacy Choices

We do not sell personal information. Depending on your jurisdiction and cookie choices, our use of analytics may be deemed “sharing” or “targeted advertising.” We honor Global Privacy Control (GPC) where required by law.

6. Data Retention & Security

Retention

We retain personal information only as long as reasonably necessary for the purposes described or as required by law. Unless stated otherwise, typical retention periods are:

  • Analytics events: up to 14 months
  • Application logs: up to 30 days
  • Support emails/communications: up to 24 months

We delete or anonymize data when it is no longer needed.

Security

We use administrative, technical, and physical safeguards designed to protect information, including encryption in transit, access controls, and least-privilege practices.

No system is completely secure. If you believe you have discovered a vulnerability, please contact us at info@0.xyz.

7. Your Rights

Depending on your location, including if you are located in the EEA, UK, California, or certain other US states, you may have rights regarding your personal information.

These rights may include the right to:

  • Access your personal information;
  • Correct inaccurate personal information;
  • Delete your personal information;
  • Object to or restrict certain processing;
  • Withdraw consent where processing is based on consent;
  • Opt out of “sharing,” targeted advertising, or similar processing where applicable;
  • Appeal a decision we make regarding your privacy request, where required by law.

To exercise your rights, contact us at privacy@0.xyz.

We may need to verify your request before responding. We will respond within the time required by applicable law, including generally within one month under GDPR/UK GDPR and within 45 days under applicable US state privacy laws, unless an extension is permitted.

If we deny your request and applicable law gives you a right to appeal, you may appeal by replying to our decision or emailing privacy@0.xyz with the subject line “Privacy Appeal.”

8. International Data Transfers

Your information may be processed in countries outside your jurisdiction, including the United States.

Where we transfer personal information from the EEA, UK, or other jurisdictions that require transfer safeguards, we rely on appropriate legal mechanisms, such as Standard Contractual Clauses or other lawful transfer mechanisms, and implement additional safeguards where appropriate.

9. Children’s Privacy

The Service is intended for individuals who are at least 18 years old.

We do not knowingly collect personal information from anyone under 18. If you believe a minor has provided us with personal information, please contact us at privacy@0.xyz, and we will take appropriate steps to delete the information.

10. Changes to This Policy

We may update this Privacy Policy from time to time.

If we make changes, we will post the updated Privacy Policy with a revised effective date. Your continued use of the Service after the updated Privacy Policy is posted means the updated Privacy Policy applies to your use of the Service going forward.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

privacy@0.xyz

MRGN, Inc.Project 0 / P0