Effective date: January 2026
Lifo Inc. (DBA Hemera) (together with its affiliates, "Hemera," "we," "us," or "our") operates websites, applications, APIs, dashboards, and other products and services that provide blockchain data, analytics, and related services (collectively, the "Services").
This Privacy Policy explains how we collect, use, disclose, and protect Personal Data when you access or use our Services. By using the Services, you acknowledge that you have read and understood this Privacy Policy.
Your use of the Services is also governed by our Terms of Service, which incorporate this Privacy Policy by reference.
Table of Contents
1. What This Privacy Policy Covers
This Privacy Policy applies to Personal Data we collect when you access or use our Services, communicate with us, or otherwise interact with Hemera.
It does not apply to:
- Information that has been irreversibly anonymized or aggregated.
- Third-party websites, applications, or services that you access through links from our Services.
2. Definitions
"Personal Data" means any information that identifies, relates to, describes, or could reasonably be linked to an identified or identifiable individual, as defined under applicable data protection laws.
"Blockchain Data" refers to public, immutable data recorded on blockchain networks. Public blockchain addresses and transaction data are generally not considered Personal Data unless they can be reasonably linked to an identifiable individual.
3. Categories of Personal Data We Collect
Depending on how you use the Services, we may collect the following categories of Personal Data:
- Account and Contact Information: Name, email, organization, hashed passwords, API keys
- Usage and Technical Data: IP address, device identifiers, browser type, OS, logs, API usage metrics
- Transactional and Service Data: Subscription and billing info via third-party providers, support communications
- Marketing and Communications Data: Preferences for receiving communications, survey responses
- Information You Voluntarily Provide: Messages, forms, or other content you submit
We do not intentionally collect sensitive personal data (e.g., government identifiers, precise geolocation, biometric data) unless necessary and lawful.
4. Sources of Personal Data
We collect Personal Data from:
- Directly from you: account creation, communication, Service usage
- Automatically: cookies, logs, analytics tools
- Service providers: authentication, payments, analytics, support vendors
- Public sources, including public blockchain networks, where applicable
5. How We Use Personal Data
Purposes include:
- Providing and Operating the Services: accounts, blockchain data, APIs, technical support
- Improving and Developing the Services: performance monitoring, internal analytics, new feature development
- Security and Compliance: fraud prevention, enforcement, legal compliance
- Communications and Marketing: service notices, updates, marketing where permitted
No Personal Data is used for automated decisions with legal or similarly significant effects without explicit consent.
Recipients may include:
- Service Providers: hosting, analytics, support, payments
- Business Partners: joint offerings or co-marketing (with safeguards)
- Legal and Compliance: as required by law or to protect rights and safety
- Corporate Transactions: mergers, acquisitions, or asset sales
We do not sell Personal Data.
We use cookies and similar tools to enable core functionality, analyze usage, and remember preferences. Users can manage cookies via browser settings. We also support privacy signals such as Global Privacy Control (GPC) where applicable.
8. Data Security and Retention
We implement technical and organizational measures to protect Personal Data. Retention is limited to what is necessary to provide the Services, comply with legal obligations, resolve disputes, or enforce agreements.
9. International Data Transfers
Personal Data may be processed in jurisdictions outside your country. Where required, we use safeguards like Standard Contractual Clauses or other lawful mechanisms to protect your data.
10. Children's Privacy
The Services are not directed to children under 13. We do not knowingly collect Personal Data from children. Contact us to report any such data for prompt deletion.
11. Your Privacy Rights
Depending on jurisdiction, you may have rights to:
- Access, correct, or delete your Personal Data
- Restrict or object to certain processing
- Withdraw consent
- Exercise data portability
Requests can be submitted via our contact channels. Verification may be required before fulfilling requests.
12. Regional Privacy Disclosures
- California (CCPA/CPRA): Rights to access, delete, correct, and limit use of sensitive Personal Data. Hemera does not sell Personal Data.
- European Economic Area & UK (GDPR): Hemera is a data controller; lawful bases include contract performance, legitimate interests, compliance, and consent.
- India (DPDP 2025): Hemera is a data fiduciary; we provide purpose limitation, grievance mechanisms, and breach notifications per law.
13. Data Breach Notification
We will notify affected users and regulators of data breaches in accordance with applicable laws. Notification will occur without undue delay, typically within 72 hours of discovery where legally required.
14. AI and Automated Processing
If Hemera uses AI/ML in the Services, it is solely for enhancing analytics, improving features, or security monitoring. No automated decisions producing legal or similarly significant effects are made without explicit user consent.
15. Changes to This Privacy Policy
The "Effective date" indicates the last update. Continued use after changes constitutes acceptance of the updated policy.
16. Contact Us
- Email: contact@thehemera.com
- Company: Lifo Inc. (DBA Hemera)
- Address: 35640 Fremont Boulevard, #607, Fremont, CA, 94536