How VIZI Inc. collects, uses, stores, and protects data across its products and services.
VIZI Inc. ("VIZI," "we," "us," or "our") operates the VIZI® Score platform, the VIZIScan® consumer score tool, and the VIZI® API (collectively, the "Services"). This Privacy Policy describes how we collect, use, disclose, and protect information in connection with our Services.
By using any VIZI® Service, you agree to the practices described in this policy. If you do not agree, please discontinue use of our Services.
VIZI® is incorporated in Delaware, United States. For inquiries from European residents, please refer to Section 9 (Your Rights) for GDPR-related information.
When you submit a wallet address for scoring via VIZIScan® or when a partner submits an address via the VIZI® API, we query publicly available blockchain data associated with that address. This includes transaction history, DeFi protocol interactions, balance history, and related on-chain records across supported blockchains.
We do not attempt to link a wallet address to a natural person's name, email address, government-issued identifier, or any other personally identifying information unless you explicitly provide such information in connection with a VIZIScan® Pro account (see Section 3). The wallet address itself is a pseudonymous on-chain identifier, not a consumer credit file.
FCRA Notice: VIZIScan® is not a consumer reporting agency as defined by the Fair Credit Reporting Act (FCRA). VIZIScan® scores wallet addresses. No consumer file is created, reported, or sold. Identity linkage, if any, occurs on the lender side at the point of a credit application.
Computed scores are cached for up to 15 minutes to improve performance on repeated lookups of the same address. Cached scores are not stored beyond this window unless you have a VIZIScan® Pro account with history tracking enabled.
If you create a VIZIScan® account, we collect your email address and, if you subscribe to Pro, billing information processed by our payment processor (Stripe). We do not store full payment card numbers.
Pro accounts allow you to save and monitor multiple wallet addresses. We store these addresses in association with your account for the purpose of delivering alerts, history charts, and monitoring features. This association exists only within VIZI® and is not shared with lenders, credit bureaus, or third parties except as described in Section 6.
If you delete your account, your saved wallet addresses and associated history data are deleted from our systems within 30 days.
If you opt in to alerts or the research digest, we store your email address and preferences to deliver those communications. You may unsubscribe at any time via the link in any email we send.
Partners who call the VIZI® API submit wallet addresses and receive score responses. We log API requests for billing, rate limiting, security, and support purposes. Logs include the wallet address, chain, timestamp, partner identifier, and response metadata. Logs are retained for 90 days.
The Exchange API accepts an optional platform_context object containing enrichment data (balance, KYC status, account age, etc.) provided by the exchange. This data is processed in-flight during score computation and is never written to persistent storage by VIZI®. We treat this data as transient and ephemeral by design.
Partners who link a VIZI® Score to an identified loan applicant are responsible for their own compliance obligations under applicable credit reporting, consumer protection, and data privacy laws. Partners are required to maintain appropriate data handling practices under the VIZI® Partner Terms of Service.
We use strictly necessary cookies to maintain session state for logged-in users. We use analytics cookies (currently Google Analytics 4, with IP anonymization enabled) to understand aggregate usage patterns. We do not use advertising cookies or cross-site tracking.
You may disable cookies in your browser settings. Disabling strictly necessary cookies will prevent you from staying logged in to your VIZIScan® Pro account. Analytics cookies are optional and do not affect product functionality.
We do not sell, rent, or trade personal data to third parties for advertising, marketing, or any other commercial purpose unrelated to delivering our Services.
We share data with service providers who help us deliver our Services, including cloud infrastructure (AWS), payment processing (Stripe), email delivery (Postmark), and analytics (Google Analytics). These providers are contractually prohibited from using your data for any purpose other than delivering services to VIZI®.
We may license anonymized, aggregated score distribution data (e.g., "median wallet score on Ethereum increased 4 points in Q3") to research institutions, hedge funds, and financial data firms. This data contains no wallet addresses, account information, or information that could identify any individual.
We may disclose information if required by law, court order, or regulatory demand, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others. We will notify affected users of legal demands where permitted by law.
In the event of a merger, acquisition, or sale of assets, user data may be transferred to the successor entity. We will notify users of any such transfer and of any material changes to this policy that result.
VIZI® is SOC 2 Type II certified. Our infrastructure is hosted on AWS and secured with encryption at rest (AES-256) and in transit (TLS 1.3). We conduct annual third-party penetration tests and maintain a vulnerability disclosure program at security@vizi.com.
No system is perfectly secure. In the event of a data breach affecting your personal information, we will notify affected users within 72 hours of discovery as required by applicable law.
You may request access to, correction of, or deletion of personal data we hold about you by emailing privacy@vizi.com. We will respond within 30 days.
California residents have the right to know what personal information we collect, request deletion, opt out of sale (we do not sell personal data), and not be discriminated against for exercising these rights. Submit requests to privacy@vizi.com or by mail to the address in Section 12.
If you are located in the European Economic Area, you have rights of access, rectification, erasure, restriction of processing, data portability, and objection. Our legal basis for processing is legitimate interest (wallet scoring, fraud prevention, service delivery) and consent (marketing communications). To exercise your rights, contact privacy@vizi.com. You may also lodge a complaint with your local data protection authority.
Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe a minor has submitted personal information to us, contact privacy@vizi.com and we will delete it promptly.
We may update this Privacy Policy from time to time. Material changes will be communicated by email (if you have a VIZIScan® account) and by posting a notice on our website at least 30 days before the change takes effect. Your continued use of our Services after the effective date constitutes acceptance of the updated policy.
VIZI Inc.
Privacy & Data Team
Attn: Privacy Officer
228 Park Ave S, Suite 37898
New York, NY 10003
Email: privacy@vizi.com
Response time: within 30 days of receipt.