It provides an API which is also used to collect data by the Uniswap frontend
3/?
Just by loading the Uniswap frontend (with a connected wallet), the JavaScript will send your personal info to the Amplitude server using their API
API endpoint = hxxps://api2.amplitude.com/2/httpapi
4/?
So, what kind of info is sent?
I intercepted the network traffic using devtools and here are a few examples
Wallet address being sent to Amplitude server
5/?
Your wallet type sent to Amplitude server
6/?
Your wallet balance details sent to Amplitude server
7/?
Below is a summary of the type of info sent to Amplitude server
IP address
Wallet address
Type of wallet used (Metamask and so on)
Your wallet balance for different tokens in it - ETH, WETH, UNI and so on
Device model (type of OS)
Browser version
8/?
What's more?
Amplitude is a San Francisco based company.
So, you have a US-based company collecting all your wallet and device info through product analytics
What do you think they will do with your data when asked to share by the US govt?
I think you know the answer
9/? Info about Amplitude from Crunchbase
10/?
How can you protect your privacy?
Most important thing to understand is that you can still interact with the smart contracts directly without going through the official frontend provided by development team