Security

The overlay's intelligence features are read-only. Action tools are opt-in and require explicit user confirmation each time they run.

PolymarketUtilities never asks for, sees, stores, or transmits your private keys, seed phrases, or wallet credentials. We do not custody funds. Funds remain in your wallet at all times.

Any wallet-related action — a claim, a cancel, a hedge — is signed by your own wallet through its normal confirmation flow. The overlay prepares the action; you approve and sign.

Preferences and watchlists are stored locally in your browser unless you sign in to sync them. All network communication uses modern transport encryption.

The Service is a desktop bookmarklet — not an extension and not a background process. It runs only when you click the bookmark on an open Polymarket tab.

Found something we should know about? Email security@polymarketutilities.com with a clear description and steps to reproduce. We aim to respond within 72 hours.

Please do not publicly disclose issues until we've had a reasonable chance to investigate and remediate. We do not pursue researchers who follow good-faith disclosure practices.