Privacy Policy

Last Updated: March 2026

OnyxAuth ("we", "us", or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our website, API, and services.

1. Information We Collect

We collect information to provide, manage, and improve our Service.

A. Information You Provide to Us (Developers/Sellers):

  • Account Information: Username, email address, and passwords (stored as secure cryptographic hashes).
  • Integration Data: Webhook URLs, third-party API keys (e.g., Hoodpay secrets), and application settings.

B. Information Collected via Our SDK/API (End-Users):

When a developer uses OnyxAuth to protect their software, our API collects data from their end-users strictly for authentication and security (Anti-Piracy) purposes:

  • Hardware Identifiers (HWID, MAC Addresses, CPU IDs).
  • IP Addresses.
  • Session timestamps and login history.

Note: Developers are responsible for informing their users about this data collection.

2. How We Use Your Information

We use the collected data for the following purposes:

  • To authenticate users and prevent unauthorized software usage (DRM).
  • To process payments and provide auto-delivery features.
  • To detect, prevent, and address technical or security issues.
  • To provide customer support and respond to inquiries.

3. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties.

We may disclose information only in the following scenarios:

  • Service Providers: To trusted third-party services (e.g., hosting providers, payment processors like Hoodpay) that assist us in operating our platform.
  • Legal Compliance: If required to do so by law, or in response to valid requests by public authorities (e.g., a court or government agency) to prevent illegal activities.

4. Data Security

We implement industry-standard security measures, including HTTPS/TLS encryption, Ed25519 signature verification, and secure database hashing, to protect your data from unauthorized access, alteration, or disclosure. However, no method of transmission over the Internet is 100% secure.

5. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by legal obligations. If you delete your application or account, associated data will be removed from our active databases.

6. Your Data Rights (GDPR / CCPA)

Depending on your location, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request the deletion of your account and personal data.

To exercise these rights, please contact us using the email provided below.

7. Cookies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information (e.g., session management). You can instruct your browser to refuse all cookies, but this may prevent you from using some parts of the Service.

8. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@onyxauth.com