Portal — Hyperliquid Tracker
Privacy Policy
Last updated: June 1, 2026
Portal (“Portal”, “the app”, “we”, “us”) is a read-only Hyperliquid market, wallet, position, leaderboard, and alert tracking app published by Gizmolab Software Inc. This policy explains what data Portal handles, why, where it goes, how long we keep it, and how you can have it deleted.
Portal is designed to collect as little as possible. Portal never asks for, stores, or transmits private keys or seed phrases, and never has access to your funds.
Summary
- Portal works without an account or sign-in for all core tracking features.
- We do not sell your data, and we do not use third-party advertising or cross-app tracking SDKs.
- The only personal data we handle is what's needed to show you public on-chain data and to deliver the alerts, widgets, and Live Activities you set up.
What we collect and why
| Data | When | Why | Where it goes |
|---|---|---|---|
| Wallet / account addresses you choose to track or sign in with | Only when you add a wallet to a watchlist, view a trader, or optionally sign in | To fetch and display that wallet's public Hyperliquid data and to power alerts/Live Activities you create | Sent to Hyperliquid's public API; stored on the Portal backend only if you create an alert/Live Activity for it |
| APNs device token | When you enable notifications | So our backend can deliver price/wallet/position alerts and Live Activity updates | Portal backend + Apple Push Notification service |
Install identifier (Apple identifierForVendor) | On first launch with notifications enabled | To de-duplicate your device's notification registrations | Portal backend |
| Locale and time zone | With notification registration | Localized notification copy and quiet-hours timing | Portal backend |
| App version | With registration | Compatibility / feature gating | Portal backend |
| Your watchlists, alert rules, and tracked wallets | When you create them | To evaluate alerts and drive Live Activities server-side | Portal backend |
| IP address | On each network request | Standard request handling and abuse prevention | Transient in server logs |
We do not collect: precise location, contacts, photos, microphone/camera data, health data, advertising identifiers, or browsing history.
Optional wallet sign-in (Dynamic.xyz)
Signing in is optional and is used only for personalization (e.g. syncing your watchlists and alerts). Wallet authentication is provided by Dynamic.xyz. Depending on the sign-in method you choose, Dynamic may process your wallet address and, if you use an email or social login method, your email address. Dynamic's handling of that data is governed by its own privacy policy: https://www.dynamic.xyz/privacy-policy
Portal does not receive or store your private keys through this process.
Third-party services
Portal relies on these services to function:
- Hyperliquid (public market & account data) — when you view an asset, wallet, position, or leaderboard, Portal requests the relevant public data from Hyperliquid's read-only API. Viewing a wallet sends that public address to Hyperliquid. Portal only ever uses Hyperliquid's read-only data endpoints; it never places orders or calls trading/execution endpoints.
- Apple Push Notification service (APNs) — delivery of notifications, Live Activity updates, and silent widget-refresh signals.
- Dynamic.xyz — optional wallet sign-in (see above).
- Portal backend (operated by Gizmolab Software Inc at
portal-api.gizmolab.live) — stores your notification registrations, watchlists, and alert rules, and dispatches pushes. - unpkg.com (CDN) — Portal may load its charting library from this content delivery network to render interactive charts.
How long we keep data
- Notification/device tokens, watchlists, and alert rules are retained until you delete them, sign out, or uninstall the app. Dead or invalid device tokens are pruned automatically by the backend.
- Server request logs containing IP addresses are short-lived and used only for operations and abuse prevention.
Your choices and deletion
- Disable notifications any time in iOS Settings; this stops push delivery.
- Remove tracked wallets, watchlists, and alerts in the app to delete them from the backend.
- Sign out (if you signed in) to end your session.
- Request full deletion of any data associated with your device or wallet by emailing ops@gizmolab.io. We will delete your device tokens, saved wallets, watchlists, alert rules, and notification mappings.
Security
Connections use HTTPS/TLS. Any session tokens are stored in the iOS Keychain. We do not store private keys or seed phrases. We do not put secrets or sensitive tokens in logs.
Children
Portal is not directed to children. It contains financial/crypto market information and is intended for users 17+.
Changes
We may update this policy; the “Last updated” date above reflects the latest version. Material changes will be reflected here.
Contact
Questions or data requests: ops@gizmolab.io
Gizmolab Software Inc
Related: Terms of Use · Support