ConsenSys Privacy Policy Update! Collecting MetaMask user IP addresses and Ethereum addresses
The decentralized exchange protocol Uniswap announced its latest privacy policy last week, stating that it will collect on-chain and off-chain data related to user wallets to optimize services, prevent illegal activities, and move towards compliance. Today, blockchain software developer ConsenSys also updated its privacy policy, indicating that it will collect user IP and Ethereum wallet addresses when users use MetaMask.
Table of Contents
MetaMask Collects Users' IP Addresses and Ethereum Wallet Addresses
According to the updated privacy policy by Consensys yesterday, when using Consensys services, in addition to collecting personal information provided by users, when users use Infura as the default RPC remote procedure call provider for MetaMask, Infura will collect users' IP addresses and Ethereum wallet addresses when users send transactions.
Unless users are using their own Ethereum nodes or third-party RPC providers when using MetaMask, they can avoid data collection.
Note: Infura is a service platform that provides blockchain developer toolkits, supporting quick and reliable access to the Ethereum and IPFS networks, enabling developers to focus more on DApp development.
User Data May Be Disclosed to Third Parties
After this news was announced, it immediately sparked discussions in the community. MetaMask, considered the first stop to enter the decentralized world, is found to also collect user data. Apart from Consensys subsidiaries, user data may be disclosed to third parties in the following three exceptional cases:
1. Business Transfers:
When Consensys engages in business transactions or negotiations involving the sale or transfer of all or part of Consensys's business or assets, personal information of users may be shared.
2. Compliance with Legal and Enforcement Requests
Consensys states that personal information may be shared for legal, protection, and safety purposes, including the following scenarios:
- Compliance with KYC and anti-money laundering requirements.
- Response to legal requests and procedures.
- Protection of the rights and property of the company, agents, customers, and others.
- Emergency situations, such as safeguarding the safety of employees, agents, customers, or anyone else.
3. Professional Advisors and Service Providers
Consensys will share information with partners, including third-party companies and individuals representing Consensys in managing and providing services, as well as lawyers, bankers, auditors, and insurance companies.
Related
- After being hacked for $235 million, WazirX publicly disclosed 240,000 wallet addresses and implemented debt restructuring.
- Suspected Official Hack? Well-known game L3E7 faces cybersecurity concerns, downloading the game leads to adult websites.
- Indian exchange WazirX reportedly hacked for $200 million.