Data We Publish
The public-source compliance data Eagle Virtual makes available, why we publish it, and how to reach us about it — including if you are not a customer.
Last Updated: June 9, 2026
This notice supplements our Privacy Policy. It also serves as our public transparency notice for people whose information appears in the compliance data we publish.
Summary: Eagle Virtual republishes and cites public-source compliance data: official government sanctions lists, on-chain token issuer enforcement events, and public blockchain name registrations (such as ENS). Community abuse-report labels (such as ChainAbuse reports) are collected but are not published on our public pages; if introduced, they appear only in authenticated customer screening output, identified by source. A record in our Service reflects what the cited source published — it is not an accusation or determination by Eagle Virtual. If information about you appears in our data and you believe it is wrong or misattributed, contact privacy@eaglevirtual.com; the process below explains what we can and cannot do.
1. Why This Page Exists
Eagle Virtual provides screening tools for compliance teams. To do that, we collect, display, and include in reports data that originates from public sources and that can relate to identified or identifiable people — for example, a person named on a government sanctions list, or a person who registered a public blockchain name. Because we obtain this data from public sources rather than from the people it concerns, data protection laws (including Article 14 of the EU GDPR and Brazil's LGPD) require us to explain publicly what we process, where it comes from, why we are allowed to process it, and how data subjects can exercise their rights. Where informing each person individually would be impossible or disproportionate, this page is our public notice.
2. What We Publish
2.1 Sanctions-list records
We reproduce records from official government sanctions and restricted-party lists — for example OFAC (U.S.), the EU consolidated list, the UK OFSI list, UN Security Council lists, and the other authorities shown on our sanctions coverage page. These records can include names, aliases, listed cryptocurrency addresses, listing programs, authorities, and dates — as published by the issuing authority, with the source cited.
2.2 On-chain issuer-control events
We decode and publish token issuer enforcement events recorded on public blockchains — blacklist additions and removals, freezes, seizures, whitelist changes, and similar control actions affecting specific blockchain addresses. These are facts recorded permanently on public networks by the token issuers themselves; we cite the on-chain transaction evidence.
2.3 Public names and labels
We display name and label data that links blockchain addresses to public identifiers, principally ENS and similar public blockchain name registrations.
We also collect labels from public abuse-report databases (such as ChainAbuse community reports). These community-sourced labels are not published on our anonymous public pages. If and when they are made available, they will appear only in authenticated customer screening results and reports, presented as summary labels (for example, a report category and count) and always identified by source — so users can distinguish a community report from an official government listing and weigh it accordingly.
2.4 Where this data appears
This data appears in the Service's public pages (for example sanctions and event listings), in customer screening results and Eagle Eye Reports (including certified PDF artifacts), in exports, and via the API. The public report-verification page displays only the signed public fields of a certified artifact.
2.5 What we do not publish
- We do not publish our customers' identities, watchlists, or screening activity.
- We do not publish credit, financial-account, health, biometric, or similar private-life data about individuals.
- We do not generate our own accusations: we do not cluster addresses to individuals, infer identities, or assign black-box risk scores to people. Our records reproduce what a cited public source states, with its citation.
3. Where the Data Comes From
- Official government and intergovernmental sanctions list publications;
- Public blockchain networks (on-chain transactions and events, which are public and permanent by design);
- Public blockchain name registries (for example, the Ethereum Name Service);
- Public abuse-report and labeling databases (for example, ChainAbuse).
4. Legal Bases for Publishing
Where data protection law applies, we rely on the following bases:
- Legitimate interests (GDPR Art. 6(1)(f); LGPD Art. 7 IX and Art. 10): the legitimate interests of Eagle Virtual, its customers, and society in effective sanctions compliance, anti-money-laundering and counter-terrorist-financing controls, and fraud prevention. Regulated businesses are legally required to screen counterparties; that screening depends on access to exactly this public-source data. We balance these interests against data subjects' rights, and the balance is strongly informed by the fact that every record we publish was already made public — by a government authority acting officially, by the data subject's own act of recording data on a public blockchain, or by the original public source.
- Sanctions-related data. We recognize that sanctions listings are enforcement-related and warrant heightened care. We therefore reproduce them only from official government sources, always with the issuing authority cited, never with editorial additions of our own, and we propagate de-listings and corrections from the source as part of normal data refresh.
- Freedom to receive and impart publicly available information, and the public's interest in transparency of official enforcement actions and of permanent public blockchain records.
We do not use this data to market to, profile, or make automated decisions about the people it concerns. We are a data source for our customers' human compliance processes.
5. What a Record Means (and Does Not Mean)
- A record means the cited source published that information. It is not an allegation, finding, or opinion by Eagle Virtual about any person.
- Records carry coverage and freshness states. "Stale" or "incomplete" states mean exactly that — they are unknowns, not findings.
- Sources change: authorities de-list persons, issuers unfreeze addresses, and abuse reports are corrected or withdrawn. Our data refresh propagates source changes; live results and newly generated reports reflect them. Previously issued certified report artifacts are immutable point-in-time snapshots and are not retroactively edited (see the Certified Report Terms).
6. Your Rights and Our Review Process (Including Non-Customers)
You do not need to be an Eagle Virtual customer to contact us about data that concerns you. Depending on your jurisdiction (for example the EU/EEA or UK under the GDPR, or Brazil under the LGPD), you may have rights to access, correct, object to, restrict, or request erasure of personal data, and to complain to your supervisory authority (in the EU/EEA your national data protection authority; in Brazil the ANPD).
6.1 How to reach us
Email privacy@eaglevirtual.com with the subject line "Data subject request". Please include: the specific record or page concerned (address, name, or report serial), what you believe is wrong, your relationship to the data (for example, you are the person named, or you control the address), and your country of residence. We may need to verify your identity or your control of an address before acting on a request. We respond within one month, or any shorter period applicable law requires.
6.2 What we will do
- Correct our errors promptly. If we misattributed, mis-decoded, or inaccurately reproduced a source record, we will correct it.
- Re-check the source. If the source has corrected, de-listed, or withdrawn a record, we will propagate that change.
- Review objections individually. Where you object to processing based on your particular situation, we will perform the balancing assessment required by law and respond with our reasoning.
- Restrict while we review, where the law requires it and the request is substantiated.
6.3 What we generally cannot do
We cannot remove accurate records that reproduce an official sanctions listing or a factual public blockchain event while the source itself remains in force, because our customers are legally required to screen against exactly that information. Removing accurate compliance data would defeat the purpose that makes the processing lawful. If you believe the underlying listing itself is wrong, the effective remedy lies with the issuing authority — for example, OFAC, the EU, the UK OFSI, and the UN each operate their own de-listing or review procedures — or with the original publisher (for example, the abuse-report database). We will tell you which source a record came from so you can pursue correction at the origin, and once the origin corrects it, our data will follow.
7. Changes to This Notice
We may update this page as our sources or practices change. The "Last Updated" date above reflects the current version. Material changes will also be reflected in our Privacy Policy where relevant.
8. Contact
- Privacy and data subject requests: privacy@eaglevirtual.com
- Legal: legal@eaglevirtual.com
- Address: Eagle Virtual LLC, 8586 Potter Park Dr., Sarasota, FL 34238, United States