Legal
Privacy Policy
This Privacy Policy explains how ThetaNext collects, uses, and handles data in connection with your use of the Platform at thetanext.io, user.thetanext.io, thetanext.com, and associated subdomains (collectively, the 'Platform').
ThetaNext is a sole proprietorship (eenmanszaak) registered with the Dutch Chamber of Commerce under KvK number 11060546, with its principal place of business at Papaverweg 34 unit B100, 1032KJ Amsterdam, the Netherlands. ThetaNext is the data controller for any personal data processed under this Policy.
This Policy forms part of the ThetaNext Terms of Service and should be read alongside them. This Privacy Policy is available at thetanext.io/privacy at all times, with a ‘Print / Save as PDF’ option available on the page.
1. What Data We Collect and Why
1.1 User Dashboard Data Processing (user.thetanext.io)
ThetaNext tracks staking rewards and history for all wallet addresses delegated to ThetaNext nodes, in order to provide accurate reward data through the user dashboard. This tracking begins automatically once a wallet address delegates to a ThetaNext node, because the wallet address and associated staking data are already publicly visible on the Theta blockchain at that point.
To view this data, you can access the dashboard at any time by entering your Theta wallet address into the dashboard interface. No wallet connection, wallet signing, or Web3 provider integration is required or used , you simply view data that ThetaNext already tracks for your address.
ThetaNext retrieves and stores the following data derived from the Theta blockchain and associated smart contracts:
- Wallet address
- Stake amounts and node associations
- Stake history, including dates and amounts of all staking transactions
- Unstaking history, including dates, amounts, and cooldown periods
- Lock amounts and lock periods, including start date, duration, and associated node
- Staking reward history by day and by token
- Lock reward distributions and payouts by token
- Token balances
- Transaction history
1.2 Email Contact
If you contact ThetaNext directly by email, ThetaNext will receive the personal data contained in your message, including your name and email address. This data is used solely to respond to your enquiry.
1.3 Browser Local Storage
Any personal labels or tags applied within the dashboard are stored in your browser’s local storage only and are never transmitted to ThetaNext. See §1.1 above.
1.4 Node Reward Interval Checker
Where a user submits a wallet address or node address to the node reward interval checker, ThetaNext retrieves and processes publicly visible historical on-chain reward data associated with that address. This data is used solely to calculate reward intervals and assess whether nodes are receiving rewards within expected historical ranges.
The same legal bases, retention periods, and user rights described in §1.1 apply. All data processed is already publicly visible on the Theta blockchain at the time of retrieval.
2. What We Do Not Collect
ThetaNext does not use cookies, tracking scripts, analytics tools, or any third-party data collection services (including but not limited to Google Analytics or similar platforms) on the Platform. ThetaNext does not actively collect or process IP addresses or device identifiers for identification or tracking purposes. Standard technical logs generated by hosting or infrastructure providers may incidentally record connection data as part of normal server operation; ThetaNext does not use such logs to identify individual users.
3. How We Store and Protect Data
Blockchain data is stored in a database operated by ThetaNext. ThetaNext applies reasonable technical measures to protect this data. Because the stored blockchain information originates from a public blockchain ledger, a database breach would generally not expose sensitive personal information such as names, addresses, passwords, payment details, or private keys.
Email correspondence is handled through ThetaNext’s email inbox. Support and enquiry emails are retained for two years from the last message in the thread. Emails containing specific representations, commitments, or recovery requests are retained for five years. No email data is stored in any database or third-party service.
4. Data Sharing
ThetaNext does not sell, share, or transfer any data to third parties for commercial purposes. Data may only be disclosed if required by applicable Dutch or EU law or by a binding order from a competent authority.
5. International Data Transfers
ThetaNext uses third-party service providers that may be located outside the European Economic Area. The table below lists each processor, the service provided, the data transferred, and the applicable transfer mechanism.
| Processor | Service | Data transferred | Location | Transfer Mechanism |
|---|---|---|---|---|
| Google LLC (Gmail) | Email communications | Name, email address, message content | USA | EU-US DPF; SCCs (EU 2021/914) |
| GitHub, Inc. (Microsoft) | Code repository and version control | Development and test data including public blockchain addresses from the Theta Network. Repository is private and access-controlled. | USA | EU-US DPF; SCCs (EU 2021/914) |
| Google LLC (Firebase / Firestore) | Database and hosting | Blockchain data (wallet addresses, staking data) | USA | EU-US DPF; SCCs (EU 2021/914) |
All three processors are certified under the EU-US Data Privacy Framework (adequacy decision of 10 July 2023). Standard Contractual Clauses under Commission Decision (EU) 2021/914 are in place as a concurrent safeguard.
In the event that the EU-US Data Privacy Framework adequacy decision is suspended or invalidated, ThetaNext will rely on Standard Contractual Clauses (Commission Decision (EU) 2021/914, Module 2: Controller to Processor) as the transfer mechanism for transfers to US-based processors, supplemented by a Transfer Impact Assessment. ThetaNext monitors the validity of applicable transfer mechanisms and will update this section if any mechanism changes.
ThetaNext’s private code repositories contain public blockchain addresses used for development and testing purposes. These addresses are sourced from the public Theta blockchain and are not associated with any additional personal identifiers held by ThetaNext. Repositories are strictly private and access-controlled.
6. Your Rights Under GDPR
To the extent any personal data is processed by ThetaNext, you have the following rights under applicable Dutch and EU data protection law:
- Access, you may request a copy of any personal data ThetaNext holds about you.
- Correction, you may request correction of inaccurate data.
- Erasure, you may request deletion of locally stored copies of your data where there is no lawful basis for continued processing. Where data originates from a public blockchain, ThetaNext can delete locally stored copies under its control but cannot alter or remove information recorded on the Theta Network blockchain itself, which is immutable by design.
- Objection, you may object to processing based on legitimate interest. ThetaNext will cease processing unless ThetaNext can demonstrate compelling legitimate grounds that override your interests.
- Restriction, you may request that ThetaNext restrict processing of your data in certain circumstances.
To exercise any of these rights, contact ThetaNext using the details in Section 8. ThetaNext will respond within the period required by applicable law, normally within one month.
If you believe your data has been handled unlawfully, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl.
7. Changes to This Policy
ThetaNext may update this Privacy Policy from time to time. The current version will always be available at thetanext.io/privacy. Material changes will be announced through ThetaNext’s official community channels with reasonable advance notice.
8. Contact
For any questions about this Privacy Policy or to exercise your data rights, contact: