STEALTH /privacy-policy Back to STEALTH
Legal · Privacy Policy

How we handle the almost-nothing we receive.

This site is designed to collect as little personal information as technically possible. No cookies, no trackers, no third-party advertising networks, no session recording. What we do collect, why we collect it, and what your rights are, is documented below.

Last updated: 2026-04-18 Effective: 2026-04-18 Version: 1.0

Who we are

This website, stealth.org, is operated by Stealth R&D LLC ("Stealth", "we", "us", "our"), a limited liability company registered in the State of Delaware, United States. Stealth R&D LLC maintains this informational website about the Stealth protocol — an open-source cryptocurrency network that has operated a live public mainnet since July 2014.

For the purposes of the EU General Data Protection Regulation (GDPR), the UK GDPR, and the California Consumer Privacy Act (CCPA/CPRA), Stealth R&D LLC is the data controller for personal data processed in connection with this website.

What we collect

When you visit stealth.org, we receive the following information:

  • Aggregated, anonymized analytics — page URL, referrer, browser type, operating system, country (derived from your IP address and then discarded), screen size, and device type. This is provided by Plausible Analytics. No cookies are set, no device fingerprints are generated, and no individual visitor is identifiable.
  • Server logs — our hosting provider maintains standard web-server access logs (timestamp, requested URL, HTTP status, user agent, truncated IP) for a short rolling window for the purpose of diagnosing outages and abuse. These logs are not joined to analytics and are not used to profile visitors.
  • Voluntarily submitted information — if you contact us by email or open an issue on our public GitHub repositories, we will receive the content you send us, including your email address or GitHub handle.
In plain English: we receive roughly the same information a newspaper stand operator receives when you walk past — a rough sense of how many people came by and what they looked at — but we do not know who you are, and we do not remember you the next time you visit.

Why we collect it

We process this information on the following legal bases:

  • Legitimate interest (GDPR Article 6(1)(f)) — to understand which pages people find useful, to detect errors, to protect the site from abuse, and to make evidence-based decisions about what to publish next. Because we have deliberately chosen privacy-respecting tooling, our assessment is that the impact on the rights and freedoms of visitors is minimal.
  • Consent (GDPR Article 6(1)(a)) — where you voluntarily send us information, e.g. by emailing us, by opening a GitHub issue, or by subscribing to a future newsletter.
  • Legal obligation (GDPR Article 6(1)(c)) — where we are required by law, court order, or regulatory request to retain or disclose information.

What we don't collect

We want to be equally clear about what this site does not do:

  • No first-party or third-party cookies are set.
  • No device fingerprinting.
  • No cross-site tracking identifiers.
  • No session recording or heatmap tools.
  • No advertising or retargeting pixels.
  • No social-media share-button scripts that phone home (our social links are plain HTML anchors).
  • No account system, no passwords, no authentication tokens.
  • No wallet addresses, no transaction data, no on-chain identifiers. The Stealth protocol itself is a decentralized network operated by many independent nodes; we do not run and cannot observe it from this website.

Third parties

The following third parties receive information when you visit this site:

Plausible Analytics

We use Plausible Analytics to generate aggregate traffic statistics. Plausible is an EU-based analytics service that processes data in Germany, does not use cookies, does not collect personal data, and is certified GDPR-compliant. See the Plausible data policy for details.

Our hosting provider

This site is served by a content delivery network which receives standard HTTP request information (IP address, user agent, requested URL) in order to deliver the page to you. This data is retained for a short period for operational purposes.

Google Fonts

We load the Inter and IBM Plex Mono typefaces from Google's font CDN. When a font file is fetched, Google may receive the requesting IP address and user agent. We intend to self-host our typefaces in a future release of this site to eliminate this transfer entirely.

We do not share, sell, rent, or otherwise transfer personal information to any other third party.

Your rights

Depending on where you live, you may have rights under the GDPR, UK GDPR, CCPA/CPRA, or other applicable privacy laws, including:

  • The right to be informed about how your data is processed (this document).
  • The right of access to any personal data we hold about you.
  • The right to rectification of inaccurate personal data.
  • The right to erasure ("right to be forgotten").
  • The right to restrict processing.
  • The right to data portability.
  • The right to object to processing based on legitimate interest.
  • The right to withdraw consent where processing is based on consent.
  • The right not to be subject to solely automated decision-making.
  • The right to lodge a complaint with your local data-protection authority.

Because we do not operate an account system and do not collect identifying information, in most cases we will hold no personal data about you and there will be nothing to access, rectify, or erase. If you have previously emailed us or otherwise voluntarily provided information, you can exercise these rights by contacting us at the address in Section 11.

Retention

We retain information only as long as necessary for the purpose it was collected:

  • Aggregate analytics data is kept indefinitely in anonymized, non-identifiable form.
  • Server access logs are retained for 14 days in rolling form and then permanently deleted.
  • Correspondence (email, GitHub issues) is retained for as long as necessary to address the matter raised and then periodically pruned. You can request deletion at any time.

International transfers

Stealth R&D LLC is incorporated in the United States. Our analytics provider processes data in the European Union. Our content delivery network operates globally and may serve this page from the edge location closest to you. Where data is transferred between jurisdictions, we rely on appropriate safeguards, including Standard Contractual Clauses approved by the European Commission where applicable.

Children

This site is not directed at children under the age of 16, and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will promptly delete it.

Changes to this policy

We may update this privacy policy from time to time to reflect changes in our practices, the services we use, or applicable law. When we do, we will revise the Last updated date at the top of this page. Material changes will be communicated more prominently, for example via a notice on the homepage or a post on our blog. We encourage you to review this page periodically.

Contact

Questions about this policy, or any request to exercise your rights, should be directed to:

Stealth R&D LLC
Email: privacy@stealth.org
GitHub: github.com/stealthsend

We will respond to legitimate requests within 30 days, or sooner where required by law.