Last updated: March 19, 2026 · Effective date: March 19, 2026
This Privacy Policy describes how Marko Radisavljevic Preduzetnik BURKO ("we", "us", or "our"), the developer of the Aevox mobile application (the "App"), collects, uses, stores, and discloses information about you when you use our App and related services (collectively, the "Services"). By using the Services, you agree to the practices described in this Privacy Policy.
1. Information We Collect
We collect the following categories of information:
Account Information: When you register, we collect your email address, display name, and encrypted password.
Authentication Tokens: We issue and store access tokens and refresh tokens to maintain your authenticated session securely.
Wallet Addresses: Blockchain wallet addresses you choose to monitor through the App (public addresses only — no private keys are ever collected).
Push Notification Identifiers: A device push subscription ID (OneSignal player ID) used solely to deliver notifications to your device.
Transaction Alert Data: On-chain transaction data associated with wallets you monitor, retrieved from public blockchain sources via Moralis Streams.
Usage and Preference Data: In-app settings such as notification preferences, alert filters, and theme preferences stored locally on your device.
Device Information: Basic device identifiers and operating system information collected automatically for diagnostic and security purposes.
2. How We Use Your Information
We use the information we collect for the following purposes:
To provide, operate, and maintain the Services
To authenticate your identity and maintain the security of your account
To deliver real-time push notifications about blockchain transactions involving wallets you monitor
To personalise your experience based on your in-app preferences
To detect and prevent fraud, abuse, and security incidents
To comply with applicable legal obligations
To respond to your support requests and communications
3. Legal Basis for Processing (GDPR)
If you are located in the European Economic Area (EEA), we process your personal data under the following legal bases:
Performance of a contract: Processing necessary to provide the Services you have requested
Legitimate interests: Security monitoring, fraud prevention, and service improvement
Consent: Where you have explicitly opted in, such as enabling push notifications
Legal obligation: Where processing is required by applicable law
4. Data Sharing and Disclosure
We do not sell, rent, or trade your personal information. We may share your information only in the following limited circumstances:
Service Providers: We use third-party providers to operate our Services, including Neon (database hosting), Fly.io (backend infrastructure), Moralis (blockchain data), and OneSignal (push notification delivery). These providers process data only as necessary to perform services on our behalf and are bound by appropriate data processing agreements.
Legal Requirements: We may disclose information if required to do so by law, court order, or governmental authority.
Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. You will be notified via email and/or a prominent notice within the App.
Protection of Rights: We may disclose information where we believe it is necessary to protect the rights, property, or safety of our users or others.
5. Data Retention
We retain your personal data for as long as your account is active or as necessary to provide the Services. If you delete your account, we will delete or anonymise your personal data within 30 days, except where retention is required by applicable law or for legitimate business purposes such as fraud prevention.
Transaction alert history is retained for a maximum of 12 months and then automatically purged.
6. Data Security
We implement industry-standard security measures to protect your personal data, including:
Encrypted storage of credentials using bcrypt hashing
TLS encryption for all data in transit
JWT-based authentication with short-lived access tokens (15 minutes) and rotating refresh tokens
Database access restricted to authenticated backend services only
No method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.
7. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
Access: Request a copy of the personal data we hold about you
Rectification: Request correction of inaccurate or incomplete data
Erasure: Request deletion of your personal data ("right to be forgotten")
Restriction: Request that we restrict processing of your data
Portability: Request your data in a structured, machine-readable format
Objection: Object to processing based on legitimate interests
Withdraw Consent: Where processing is based on consent, withdraw it at any time
To exercise any of these rights, please contact us at aevox@aevox.xyz. We will respond within 30 days.
8. Children's Privacy
The Services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected information from a minor, please contact us immediately and we will take steps to delete such information.
9. Third-Party Services
The App integrates with the following third-party services, each governed by their own privacy policies:
Google Sign-In — optional authentication via Google OAuth
OneSignal — push notification delivery
Moralis — blockchain data streams
We are not responsible for the privacy practices of these third parties.
10. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence, including the European Union and the United States, where our service providers operate. We ensure appropriate safeguards are in place for such transfers in accordance with applicable data protection laws.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the "Last updated" date at the top of this page and, where appropriate, by sending a notification through the App. Your continued use of the Services after any changes constitutes your acceptance of the updated policy.
12. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: