Last updated May 13, 2026
The information in this document is subject to change periodically.
This Privacy Policy (this “Policy”) describes how Cache Technologies Inc., a Delaware corporation ("Cache", "we", "us", or "our"), may access, collect, store, use and/or share (“process”) personal information when you use the Cache mobile application, the website located at cachewallet.com and all of its subdomains, and any related software, smart contracts, and services we provide through or to which this Agreement is linked (collectively, the "Services"), as well as when you engage with us in other ways, including through sales, marketing, or other events.
We encourage you to read this Policy to understand your privacy rights and how we process your personal information. If you do not agree with this Policy, please do not use the Services. If you still have any questions or concerns, please contact us at legal@cachewallet.com.
The information we collect depends on your interactions with us and the Services, the choices you make, and the products and features you use. The information we collect may include the following:
We automatically collect certain information when you visit, use, or navigate the Services which does not reveal your specific identity (like your name or contact information) but may include device and usage information and other technical information. This information is needed to maintain the security and operation of our Services, and for our internal analytics and reporting purposes. The information we collect includes:
When you buy or sell cryptocurrency through the in-app fiat ramp, you transact directly with a third-party fiat aggregator and the underlying licensed money services businesses. Identity verification (“KYC”), payment information, and bank or card data are submitted directly to those parties through their own interfaces, subject to their own privacy practices. Cache does not collect, view, or store your KYC documents, payment instruments, or bank details.
Cache is a non-custodial, self-custody wallet. This means you, and only you, hold the keys to your funds. We want to be explicit about what this means for your privacy and security:
If you lose your device and your seed phrase, Cache cannot recover your funds. The Recovery feature (described in our documentation available at https://cachewallet.com/docs) is an on-chain mechanism you configure in advance and is not a server-side recovery service.
We process your information for a variety of reasons, depending on how you interact with our Services, including:
We may rely on the following legal bases to process your information:
We do not sell your personal information. We share information only in the limited circumstances described below.
We use a small number of third-party service providers to operate the Services. We share with them only what they need to perform their function. Categories include:
The identities of specific third-party providers may change from time to time as we maintain the Services. The categories above describe the kinds of providers we use and the data they receive.
Transactions you submit through Cache are recorded on public blockchains. By design, this information is public, permanent, and outside Cache's control. Anyone can view balances and transaction histories of public addresses.
We may disclose information when we reasonably believe disclosure is necessary to comply with a law, regulation, court order, or other lawful request; to enforce our Terms of Service; to protect the rights, property, or safety of Cache, our users, or third parties; or in connection with a merger, acquisition, financing, or sale of assets, in which case the recipient will be bound by privacy commitments at least as protective as this Policy.
We may share your information with our affiliates, in which case we will require those affiliates to honor this Policy. Affiliates include our parent company and any subsidiaries, joint venture partners, or other companies that we control or that are under common control with us.
We keep personal information only as long as we need it for the purposes described in this Policy.
Server access logs maintained by our hosting and runtime-security providers (which may include IP address and user agent for each API request) are retained by those providers under their own retention policies, typically for periods of up to ninety (90) days, for security, fraud, and abuse investigations. Cache does not extract this information into its primary application database. We may retain extracts longer where required by law or where reasonably necessary to investigate a specific incident.
Account metadata (user identifier, hashed password, device records, wallet addresses, smart-wallet configuration) is retained for as long as your account is active. After you delete your account, we retain account metadata for a limited period to comply with legal obligations, resolve disputes, and prevent abuse, after which it is deleted or anonymized.
Support correspondence is retained for as long as reasonably necessary to provide support and to maintain a record of significant interactions.
On-chain data recorded on public blockchains is permanent and cannot be deleted by Cache.
We use administrative, technical, and physical safeguards designed to protect personal information, including transport-layer encryption (HTTPS/TLS) for data in transit, encryption at rest for our managed database, hashed and salted credentials, scoped access controls for personnel, and runtime application security monitoring. No system is perfectly secure, and we cannot guarantee the security of information transmitted over the internet. You are responsible for safeguarding your device, your seed phrase, and your password; if these are compromised, your funds may be at risk and Cache cannot reverse on-chain transactions.
Cache is based in the United States. The Services are operated using cloud infrastructure located primarily in the United States. If you access the Services from outside the United States, your information will be transferred to and processed in the United States and other jurisdictions where our service providers operate. These jurisdictions may have data protection laws different from those in your country. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) for cross-border transfers of personal information from the European Economic Area, the United Kingdom, and Switzerland.
Depending on where you live, you may have the following rights regarding personal information we hold about you:
To exercise any of these rights, contact us at legal@cachewallet.com. We will respond within the timeframes required by applicable law (generally within thirty (30) days, extendable as permitted by law). We may need to verify your identity before fulfilling certain requests.
California residents have additional rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act, including the right to know what categories of personal information we collect, use, and disclose; the right to request deletion; the right to correct inaccurate information; the right to opt out of the sale or sharing of personal information; and the right to limit the use of sensitive personal information. Cache does not sell personal information and does not share personal information for cross-context behavioural advertising. You may exercise California rights by contacting legal@cachewallet.com. You may also designate an authorized agent to make a request on your behalf, subject to verification.
If you are located in the EEA, the United Kingdom, or Switzerland, the controller of your personal information is Cache Technologies Inc. You may contact us at legal@cachewallet.com or at the address at the end of this Policy. You also have the right to lodge a complaint with your local data protection authority.
The Services are not directed to and are not intended for children under the age of eighteen (18). We do not knowingly collect personal information from children under eighteen. If you believe a child has provided us with personal information, contact us at legal@cachewallet.com and we will take appropriate steps to delete it.
Our marketing website (cachewallet.com) uses only those cookies and similar technologies strictly necessary to deliver the website. Aggregate website analytics are provided by Plausible Analytics, which is cookieless by design: it does not set or read browser cookies, does not track visitors across sites, and does not store personal identifiers. Because no non-essential cookies or trackers are used, no cookie-consent banner is displayed. Where we introduce any non-essential cookies or analytics in the future, we will provide appropriate notice and, where required, obtain consent. The Cache mobile application does not use browser cookies; it uses on-device storage to remember your settings and to securely store the data needed to operate the wallet on your device.
The Services may contain links to, or interact with, third-party websites, smart contracts, decentralized applications, and include embedded content that are hosted by such third parties. We are not responsible for the privacy practices or the content of these other websites or third parties. These third parties may use web measurement and customization technologies (such as cookies) in conjunction with the provision of this content or functionality. We have no control over the information that is submitted to, or collected by, other websites and we are not responsible for the content of any linked site, or any link contained in a linked site, or any changes or updates to such websites or third-party services. Review the policies of any third party before providing them with information.
Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track (“DNT”) feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage, no uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this Policy.
California law requires us to let you know how we respond to web browser DNT signals. Because there currently is not an industry or legal standard for recognizing or honoring DNT signals, we do not respond to them at this time.
We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page indicates when it was last revised. If we make material changes, we will provide additional notice through the Services or by other reasonable means. Continued use of the Services after the effective date constitutes acceptance of the updated Policy.
For privacy questions or to exercise your rights, contact:
Cache Technologies Inc.