In a significant move toward enhancing user privacy and control, Consensys, the company behind MetaMask, the popular cryptocurrency wallet, has revamped its privacy policy. This update aims to offer greater transparency and robust security measures, reaffirming the company’s commitment to safeguarding user data in the rapidly evolving Web3 space.
Consensys’ updated privacy policy introduces several key changes designed to empower users with more control over their data. One notable update is the increased transparency in processing internet protocol (IP) addresses. “We may temporarily process your IP address only where required for some of our services to provide the best possible experience for MetaMask users,” the notice read. This is particularly important for preventing distributed denial-of-service (DDoS) attacks and ensuring that user security is not compromised.
Additionally, the privacy notice now extends to a broader range of services, including MetaMask Institutional, MetaMask Developer, Linea, Teku, Besu, and Phosphor. This expanded scope underscores the blockchain software company’s holistic approach to privacy across its ecosystem.
MetaMask users now have more granular control over their wallet settings, allowing them to tailor their experience to their privacy preferences. From the moment they onboard, users can configure advanced settings and toggle features based on their individual needs.
“We have continued to expand the range of features where we provide granular choice through advanced settings that users can access and configure from the moment they onboard, and at any point thereafter,” Consensys elaborated. These features include the ability to disable or enable security alerts, auto-detection of tokens and NFTs, and improved remote procedure call (RPC) configuration.
In response to user demand for increased privacy, MetaMask has introduced new opt-out functionalities. Users can now limit the collection of their device and usage information, with recommendations to use virtual private networks (VPNs) for enhanced privacy.
A source familiar with the matter at Consensys discussed with Cointelegraph the protocol for handling IP addresses in the event of a data breach, stating, “In the event of a data breach, IP addresses will be handled in the same way as any other category of personal data: our Security team will act to contain the incident immediately, and we will comply with any notification obligations related to the incident.”
The updated privacy notice includes a transparent summary of Consensys’ data handling practices, reassuring users that MetaMask does not collect private keys, sell personal information, or collect financial payment or banking information. The company only collects personal data necessary to provide and improve its services.
MetaMask’s commitment to user consent and data control is reflected in a statement on its website: “MetaMask is deeply committed to user consent and choice when handling personal information.”