Privacy Policy

Last Updated: October 30, 2025

Our Privacy Philosophy

Q-Ledger is built on a foundation of self-custody and absolute privacy. Our guiding principle is simple: You are in control. We cannot access, view, or decrypt your data because we are architecturally prevented from doing so. Your encrypted backups are stored on a public, decentralized network (Arweave), but only you hold the encryption keys.

Information We Do Not Collect

We do not collect, store, or have access to any of your personal information or sensitive data, including:

  • Your name, email address, or any other contact information
  • Your cryptocurrency private keys, seed phrases, or passwords
  • Your quantum-safe encryption keys (X-Wing or ML-KEM-768)
  • The contents of your encrypted wallet backups stored on Arweave
  • Your device's location or unique device identifiers

How Your Data Is Secured

Security is not an afterthought; it is our entire product. We combine multiple layers of industry-leading technology to protect your cryptocurrency backups.

On-Device Encryption Key Management

Your quantum-safe encryption keys (X-Wing and, for Pro users, ML-KEM-768) are generated and stored exclusively within the secure hardware of your iOS device (Apple Keychain and Secure Enclave). We never see them, and they never leave your device unless you explicitly export them (Pro version only).

Quantum-Resistant Encryption

All cryptocurrency private keys are encrypted on your device using X-Wing (ML-KEM-768-based post-quantum encryption) combined with AES-256-GCM authenticated encryption. Only you, with your encryption keys, can decrypt this information.

Permanent Distributed Storage (Arweave)

Encrypted data is uploaded to Arweave, a decentralized permanent storage network. Your encrypted backups are publicly viewable but cryptographically impossible to decrypt without your keys. This ensures permanence, immutability, and accessibility even if Q-Ledger ceases to exist.

Transparency and Pseudonymity

Q-Ledger embraces radical transparency. Everything stored on the Arweave network is publicly visible—but designed to be pseudonymous and cryptographically secure.

What Is Publicly Visible on Arweave

  • The encrypted ciphertext (your private key in encrypted form)
  • Wallet metadata in plaintext (wallet name, key format, creation timestamp)
  • Transaction metadata (transaction ID, upload timestamp, data size)
  • Encryption algorithm used (X-Wing or X-Wing/ML-KEM-768)

Why This Transparency Is Safe

Pseudonymity: Data cannot be linked to your real-world identity. No email, name, phone number, or other personally identifiable information is stored.

Cryptographic Protection: Your cryptocurrency private keys are cryptographically protected within the ciphertext and impossible to decrypt without your quantum-safe encryption keys.

Third-Party Services

Arweave Network: Encrypted backups are stored on the decentralized Arweave network. Arweave nodes cannot decrypt your data.

Apple Services: If you enable iCloud Keychain, your encryption keys sync via Apple's iCloud service, subject to Apple's privacy policy.

No Marketing or Advertising: We do not share data with third-party marketers. Q-Ledger operates without analytics servers, user tracking, or behavioral profiling.

Contact Us

If you have any questions about this Privacy Policy or our security practices, please reach out:

Aernoud Dekker
Q-Ledger Developer
info@q-ledger.app