It would be nice to know what happens to the end user's data.
  • Do you have any policy on server logs?
  • What are you doing with ip + ethereum address information.
  • Do you store addresses server side?
Please see this link for European privacy law: