← Back to X-Multi

Privacy Policy

Last updated: April 2026

Decentralized by design

X-Multi is a client-side application that interacts directly with the XRP Ledger — a public, decentralized blockchain. We do not operate as a financial institution, custodian, or intermediary. We do not hold, control, or have access to your funds, keys, or digital assets at any time.

What we do not collect

  • Private keys, seed phrases, or passwords — these never leave your browser
  • Personal identity information (name, email, phone) unless you voluntarily provide it in notification settings
  • Transaction contents — all proposals are between you and the XRP Ledger
  • Browsing activity, analytics cookies, or tracking pixels

What we store

  • Vault metadata — vault names, descriptions, and network configuration (stored in our database to coordinate proposals between signers)
  • Proposal data — unsigned transaction details, signature blobs, and proposal status (required for the multisig coordination workflow)
  • Notification preferences — email and phone number if you choose to enable notifications (optional, never shared)
  • XRPL addresses — public wallet addresses used to identify vault membership (these are already public on the blockchain)

Encryption

If you use X-Multi's encrypted signing vault, your seed phrase is encrypted locally in your browser using AES-256-GCM with a key derived via PBKDF2 (600,000 iterations). The encrypted data is stored in your browser's local storage. We never receive, transmit, or store your unencrypted seed phrase or vault password.

Blockchain transparency

All transactions executed through X-Multi are submitted to the XRP Ledger — a public blockchain. Transaction details, including sender, recipient, amount, and memo fields, are permanently visible to anyone. This is inherent to blockchain technology, not a choice made by X-Multi.

Third-party services

  • Xaman (XUMM) — used for wallet authentication via OAuth PKCE. Subject to Xaman's privacy policy.
  • WalletConnect — used as an alternative wallet connection method. Subject to WalletConnect's privacy policy.
  • XRPL public nodes — used to read from and submit transactions to the XRP Ledger.
  • Supabase — used for database hosting. Data is stored in a secured, access-controlled environment.

Your rights

You can disconnect your wallet at any time. Vault proposal data can be deleted upon request. Notification preferences can be cleared in the settings page. Your encrypted signing key can be wiped from your browser at any time by clearing local storage or using the vault reset option.

Contact

For privacy-related questions, reach out via the X-Multi GitHub repository or through your vault administrator.