P2PFather — Privacy Policy

1. Our Privacy Commitment

P2PFather is built as a **privacy-first** peer-to-peer exchange. We operate under a strict minimal-data processing framework. We do not track users, run analytics cookies, or harvest metadata that is not required for running the P2P escrow mechanism.

2. Information We Do NOT Collect

To eliminate legal and security risks for both our operators and our users, the system enforces the following guarantees:

No IP Address Logging: We do not capture or store your server IP logs.
No User Agent Logging: Your browser and device User Agent strings are never stored.
No KYC verification: We do not request user identification documents, government IDs, real names, or billing addresses.

🛡️

Any request that fails initialization is rejected immediately. The system logs only a generic warning status to avoid writing trace info into host logs.

3. Information We Process & Store

We process and store only the minimal parameters needed to match ads, execute smart contracts, and handle dispute resolution:

Telegram Identity: Your Telegram ID, username, and first name to identify you within the Telegram Mini App and coordinate notifications.
Wallet Address: Your derived hot wallet index or connected external wallet address is stored to check on-chain ledger balances.
UPI ID & Phone Number: We collect your UPI ID and/or Phone Number to enable order creation and trade execution. These details are stored in our secure database and are shared **only** with your counterparty during an active trade to facilitate the P2P fiat transfer.
Dispute & Chat Data: Chat logs, screenshot files (uploaded to Supabase Storage), and transaction UTRs provided as evidence during active disputes are stored to let administrators resolve conflicts.

4. Blockchain & Public Data

By locking or releasing stablecoins inside our P2P Escrow smart contracts, you broadcast data to public blockchain ledgers (e.g. Base or BSC).

Blockchain records—including wallet addresses, transaction hashes, timestamps, and contract interaction details—are **permanently public, immutable, and accessible by anyone**. P2PFather cannot modify or purge on-chain ledger logs.

5. Third-Party Integrations

Various features integrate with external APIs that follow their own policies:

Telegram messenger: The app interface operates within Telegram, which handles user session data in accordance with their privacy policy.
RPC Node Infrastructure: On-chain state checks are routed through blockchain node providers.
LI.FI Protocol: Cross-chain bridge quotes and transactions are processed by LI.FI nodes.

6. Security and Retention

- All backend API interactions are guarded by SHA-256 HMAC validations of Telegram init data.
- You can update or clear your payment credentials (such as your UPI address) instantly under your Mini App Profile page.

7. Disclaimer & Account Freeze Liability

P2PFather is a decentralized peer-to-peer escrow matchmaking tool. We do not hold fiat currency (INR/Rupees) and are not involved in the actual banking transfers between buyers and sellers.

Important Warning: You are solely responsible for cross-verifying the identity of your trade counterparty, checking matching bank account names with Telegram profiles, and validating payment UTRs before releasing escrow. P2PFather and its operators are not responsible for any bank account freezes, Cyber Cell reports, financial losses, or disputes arising from peer-to-peer fiat payments. All trades are conducted at your own risk.