SIGNS

Privacy Policy

Last updated: May 15, 2026

1. Overview

This Privacy Policy describes how There Will Be Signs (“SIGNS Club”, “we”, “our”, or “us”) collects, uses, stores, shares, and protects information when you use our website at therewillbesigns.io and the associated member services (collectively, the “Service”). It also describes the rights and choices you have with respect to your information.

By using the Service, you agree to the collection and use of information in accordance with this Policy. If you do not agree, you should discontinue use of the Service. This Policy should be read alongside our Terms of Use, which govern your use of the Service more broadly.

2. Information We Collect

2.1 Wallet Address

When you connect a Solana wallet to the Service, we record your public wallet address. This address is used to authenticate your session, verify your on-chain token balance, determine your access tier, associate your activity with your account, and process referral program eligibility and rewards. Your wallet address is a public blockchain identifier and is not inherently private; however, we treat it as account-identifying information within our platform.

2.2 Session Data

Upon successful wallet authentication, we create a signed session and store a session identifier in a cookie on your browser (“signs_session”). This cookie is used to maintain your authenticated state across page visits and is required for access to member features. The session cookie is HttpOnly and is not accessible to client-side scripts. Sessions expire after a defined period of inactivity. You may clear your session at any time by signing out of the Service.

2.3 Profile and Account Data

Members may optionally create a profile within the Service that may include a display nickname, avatar image, biographical description, and social media handles. This information is stored in association with your wallet address. Certain profile fields, if enabled by you, may be visible to other members through community features of the Service. You may update or remove profile information at any time through the member settings.

2.4 Usage and Activity Data

We collect information about how you interact with the Service, including pages visited, features accessed, course progress, portfolio planner inputs, and other activity within the member area. This data is used to operate the Service, personalize your experience, track course completion, and improve the platform over time.

2.5 Referral Program Data

If you participate in the SIGNS Club referral program, we collect and store data related to your referral code, the wallet addresses of individuals you refer, referral registration timestamps, vesting schedule state, claim submissions, and payout transaction signatures. This data is necessary to operate, audit, and enforce the referral program and is retained for the duration of any active referral relationship and for a reasonable period thereafter for record-keeping and dispute resolution.

2.6 On-Chain Data Queries

In order to verify token balances and eligibility, the Service queries the Solana blockchain via third-party RPC providers (currently Helius and QuickNode). These queries use your public wallet address and return publicly available on-chain data. This querying does not expose private wallet information; it reads data that is inherently public on the blockchain.

2.7 Analytics and Performance Data

We may collect anonymized or aggregated usage data including page load times, error rates, browser type, device type, and general geographic region for the purpose of improving platform performance and reliability. Where analytics tools are used, they are configured to minimize the collection of personally identifiable information.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To authenticate your identity and maintain your session across the Service.
  • To verify your on-chain token holdings and determine your access tier.
  • To operate, maintain, and improve the Service and its features.
  • To administer the referral program, including eligibility checks, vesting calculations, and payout processing.
  • To track and display your course progress and member activity within the platform.
  • To detect and prevent fraud, abuse, and violations of our Terms of Use.
  • To respond to your support requests and communications.
  • To comply with applicable legal obligations, including responding to lawful requests from governmental authorities.
  • To analyze aggregate usage patterns and improve platform performance.

4. Third-Party Service Providers

We engage third-party service providers to help operate the Service. These providers have access to your information only to the extent necessary to perform their functions and are not permitted to use it for other purposes. Our current infrastructure providers include:

  • Supabase: Our database and backend infrastructure provider. Member data, session records, profile information, course progress, and referral program data are stored in a Supabase-hosted PostgreSQL database. Supabase is subject to its own privacy policy and data processing terms.
  • Vercel: Our hosting and deployment infrastructure provider. Web requests to the Service pass through Vercel's network. Vercel may collect standard server logs including IP addresses and request metadata.
  • Helius and QuickNode: Solana RPC providers used to query on-chain token balances and verify wallet eligibility. Queries include your public wallet address.
  • CoinGecko: Used to retrieve current SIGNS token pricing data for display within the Service. No personal data is transmitted to CoinGecko.

We may update our list of service providers from time to time. We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

5. Blockchain and Public Data

You should be aware that the Solana blockchain is a public and immutable ledger. Any transactions you execute on-chain, including token transfers associated with the referral program, are publicly visible and permanently recorded. SIGNS Club has no ability to delete, alter, or conceal on-chain transaction data.

Your public wallet address, when associated with your activity on the SIGNS Club platform, may allow third parties to make inferences about your on-chain activity. The pseudonymous nature of blockchain addresses does not guarantee anonymity, particularly if your wallet address is publicly associated with your identity elsewhere.

6. Cookies and Tracking

The Service uses cookies and similar browser storage technologies for the following purposes:

  • Authentication cookies: The “signs_session” cookie stores your session identifier and is required for you to access member features. This cookie is HttpOnly and expires upon session termination or sign-out.
  • Functional storage: Certain interface preferences may be stored in your browser's local storage to maintain your settings across sessions.

We do not use advertising cookies or cross-site tracking technologies. You may configure your browser to reject cookies; however, doing so will prevent you from accessing authenticated member features of the Service.

7. Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. Specific retention practices by data type are as follows:

  • Session data: Retained until session expiration or sign-out, after which the session record is invalidated.
  • Profile and account data: Retained for the life of your account. Deletion may be requested as described in Section 8.
  • Course progress: Retained indefinitely to preserve your progress record. Deleted upon account deletion request.
  • Referral program records: Retained for a minimum of three years following the conclusion of any referral relationship, for purposes of dispute resolution, fraud prevention, and audit. Certain records may be retained longer where required by applicable law.

We may retain de-identified or aggregated data derived from your information indefinitely for analytical and operational improvement purposes, as such data does not identify you individually.

8. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights with respect to your personal information, including the right to:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request that we correct inaccurate or incomplete information.
  • Deletion: Request deletion of your account and associated personal data, subject to our retention obligations described above.
  • Restriction: Request that we limit processing of your information in certain circumstances.
  • Portability: Request a structured, machine-readable copy of your data where technically feasible.

To exercise any of these rights, submit a request to signscto@gmail.com with a description of your request and sufficient information for us to verify your identity. We will respond within a reasonable timeframe and no later than as required by applicable law.

Please note that certain data, including on-chain transaction records and referral program audit data, cannot be deleted and will be retained regardless of deletion requests, as described above.

9. Children's Privacy

The Service is not directed at or intended for individuals under the age of 18. We do not knowingly collect personal information from minors. If we become aware that a minor has provided personal information through the Service, we will take steps to delete that information promptly. If you believe a minor has submitted information through the Service, please contact us at signscto@gmail.com.

10. Security

We implement reasonable technical and organizational measures to protect the information we collect against unauthorized access, disclosure, alteration, and destruction. These measures include encrypted data transmission, HttpOnly session cookies, and access-controlled database infrastructure. However, no method of transmission over the internet or method of electronic storage is completely secure. We cannot guarantee absolute security and are not responsible for unauthorized access resulting from circumstances beyond our reasonable control, including user-side security failures such as compromised wallet credentials.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the effective date at the top of this page. We encourage you to review this Policy periodically. Your continued use of the Service after any changes constitutes your acceptance of the revised Policy.

12. Contact

For privacy-related questions, data requests, or to report a concern, contact us at signscto@gmail.com. For general support inquiries, visit the Support page.