Privacy Policy

Last updated: May 2026

What we collect

Growr is designed to collect the minimum information needed to provide the game:

• Public wallet address — the address you connect to play. This is public on-chain anyway.
• In-game state — your garden, plots, harvest history, in-game balance. Stored server-side once you sign in.
• Authentication signature — a one-time wallet signature (EIP-4361 "Sign-In with Ethereum"). We store a session token derived from it for up to 24 hours.
• IP + User Agent — captured server-side for rate limiting and abuse detection. Not sold, not shared, used only for operating the Service.

What we do NOT collect

• We do not collect or transmit your private keys or seed phrases. Ever. We can't see them.
• We do not collect personal identification (name, email, address) unless you voluntarily contact us via email.
• We do not use third-party advertising trackers.

Cookies + localStorage

We use browser localStorage to persist your in-game state across sessions and to store your authenticated session token. We do not use third-party tracking cookies.

On-chain data

Transactions you sign and broadcast to Base mainnet are recorded permanently on the public blockchain. We have no control over that record.

Data retention

Server-side game state is retained while you actively play. Session tokens expire automatically after 24 hours. Audit logs (rate-limit events, security incidents) are retained for up to 90 days.

Third-party services

Growr depends on: the Base mainnet RPC (public infrastructure), Cloudflare (web infrastructure), Railway (server hosting), and DexScreener (token price feeds for fusion math). Each operates under their own privacy policies.

Your rights

You can disconnect your wallet at any time. You can request deletion of your server-side play history by emailing feeswars@gmail.com.

Contact

Email: feeswars@gmail.com

About · Terms · security.txt