Managing privacy in the BitBoost Marketplace


#1

BitBoost doesn’t collect any data from you, so the application protects your privacy by design – but that means users are responsible for their own personal information.

The marketplace app doesn’t ask for any personal information to use it. You don’t even need to provide an email address to sign up. All that is required is an Ethereum address.

Whilst this protects your privacy – we can’t sell or lose information we don’t have – it does shift the burden of responsibility onto the user to look after their own data and help manage their own privacy.

The most important piece of data you have is your private key. This is generated when you first create an Ethereum account. It must be kept secret – only you should have it, because anyone who knows it can access your account. Keep it safe: don’t store it in the cloud, or save it unencrypted on a computer that’s connected to the web. The best solutions are to write it down on paper and keep it somewhere secure, and to keep an offline copy on a USB drive or similar. Lose it and you lose access to your Ether.

Your address can be distributed to anyone, since it is needed for payments. The address is derived from your public key, which in turn is derived from your private key. However, these are one-way functions: you can generate the public key from the private key, but not vice versa, and you can generate the address from the public key, but not the reverse. (In practice you won’t need your public key often, if at all.)

Bear in mind that your address will be made public, so any information associated with that address online will link to your transaction history. It is worth being careful about this for example, it’s probably best not to post your name and residential address with that Ethereum address online if the account happens to hold a large amount of funds.