What personal information we collect, how we use it, and the rights you have over it
Who we are
Signal is operated by Monorail Protocol Limited, a company registered in the British Virgin Islands ("Monorail", "we", "us", "our"). Monorail is the data controller for the personal information described in this policy.
For any privacy question, request, or complaint, contact us at [email protected].
Scope
This policy explains what personal information we collect when you use the Signal application available at getsignal.trade and related services (the "Service"), how we use it, who we share it with, and the rights you have over it.
Signal is not available in every country. We do not offer the Service to users located in jurisdictions where prediction-market activity is restricted, including (without limitation) the United States, the United Kingdom, France, Germany, Italy, Belgium, the Netherlands, Australia, Japan, Singapore, Russia, Iran, North Korea, Cuba, Syria, and other sanctioned or restricted territories. A full list of restricted jurisdictions is maintained in our Terms of Service.
Information we collect
We collect only the information we need to operate the Service.
3.1 Information you provide
3.2 Information we collect automatically
3.3 Information we do not collect
How we use your information
We use personal information to:
Legal bases (EEA users)
If you are located in the European Economic Area, we rely on the following legal bases under the General Data Protection Regulation (GDPR):
| Purpose | Legal basis |
|---|---|
| Creating and operating your account | Performance of a contract (Art. 6(1)(b)) |
| Service operation, security, fraud prevention | Legitimate interests (Art. 6(1)(f)) |
| Product analytics | Legitimate interests (Art. 6(1)(f)), or consent where required |
| Compliance with legal obligations | Legal obligation (Art. 6(1)(c)) |
You can object to processing based on legitimate interests at any time — see Section 10.
Who we share your information with
We share personal information only with the service providers we need to run the Service. We do not sell or rent your information.
| Provider | Purpose | Data shared |
|---|---|---|
| Turnkey | Authentication, embedded wallet infrastructure | Email, social-login identifier, account ID, wallet metadata |
| PostHog | Product analytics | Pseudonymous user ID, usage events, device/browser metadata, approximate region |
| Cloudflare | Network protection, DDoS mitigation, edge delivery | Network-level request metadata (handled by Cloudflare; not stored by us) |
| Discord, Telegram | User support channels | Only what you choose to send us on those platforms |
We host the application on infrastructure we operate ourselves; we do not use a third-party application-hosting provider beyond the network layer described above.
We may also disclose personal information when required by law, regulation, court order, or other valid legal process, or where necessary to protect our rights, users, or third parties.
International transfers
Monorail is established in the British Virgin Islands and our service providers operate in jurisdictions including the United States and the European Union. When we transfer personal information outside the EEA, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses, where applicable.
Retention
We retain personal information for as long as your account is open. After your account is closed or becomes inactive, we retain associated information for up to 24 months to support security, fraud prevention, dispute resolution, and the integrity of the Service. Aggregated or fully anonymised data, which can no longer be linked to you, may be retained beyond that period.
Where applicable law requires us to keep specific records for longer (for example, anti-money-laundering, tax, or regulatory record-keeping obligations), we will retain those records for the period required and delete them when that period expires.
You can request deletion of your personal information at any time (see Section 10). We will honour such requests subject to any legal or regulatory retention requirements that apply.
Cookies and analytics
We do not set cookies ourselves. Our analytics provider, PostHog, uses cookies and browser local storage to:
You can clear or block these at any time through your browser settings. Doing so will not affect your ability to use the Service.
Your rights
Depending on where you live, you may have the following rights in relation to your personal information:
To exercise any of these rights, email [email protected]. We will respond within the timeframe required by applicable law (typically one month under GDPR).
Security
We use technical and organisational measures designed to protect your personal information, including encryption in transit, access controls, and use of specialised providers (such as Turnkey) for sensitive infrastructure. No system is perfectly secure; you are responsible for keeping your login credentials and device secure.
Age requirement
The Service is intended for users who are at least 18 years old. By using Signal, you confirm that you are 18 or older. We do not knowingly collect personal information from anyone under 18. If you believe someone under 18 has provided us with personal information, contact [email protected] and we will take appropriate steps to delete it and close any associated account.
Changes to this policy
We may update this policy from time to time. When we do, we will revise the "Effective date" above and, where the changes are material, take additional steps to bring them to your attention (for example, an in-app notice). Your continued use of the Service after an update constitutes acceptance of the updated policy.
Contact
Monorail Protocol Limited
Quijano Chambers
Road Town
Tortola
British Virgin Islands 3159
Email: [email protected]