Privacy Policy

Effective Date: 17 August 2023
Version: 1.0

This Privacy Notice (“Notice”) describes how we at zeroone collect, use, share, and secure your Personal Information when you visit, create, and collect on the zeroone Platform (https://zeroone.art) (the “Platform”). This Privacy Policy is incorporated into our Terms and Conditions and constitutes part of the Terms and Conditions. By consenting to our Terms and Conditions, you consent to our usage of your Data as outlined below.

Overview

This policy applies to Visitors and Users. The purpose of this Privacy Notice is to let you know how we use, collect, store, share, retain, transfer and process your Personal Information. “Personal Information” is any information relating to an identifiable individual. This policy also describes your choices and rights with respect to your Personal Information and how to exercise those rights.

We may amend this policy from time to time and encourage you to review this policy periodically, as changes will be posted on this page. If we make any material changes to this policy we will provide a notice. If you do not agree with the policy, you should not use our website, products or services.

Personal Information We Collect

If you create a user account on our Platform, we collect your:

1. Avalanche C-Chain wallet address through a supported wallet provider
2. Username
3. Email address

You may elect to provide your:

1. Full name
2. Location
3. Social Media Handles
4. Biographical information
5. Other websites
6. User profile picture or avatar that may contain your likeness

Depending on how you interact with us and what products or services you use, we collect various types of information. If you decide to provide this information, you consent to allowing us to process this information. By voluntarily putting this or similar information in your profile you intend to make public that information.

Personal Information you provide to us and personal Information collected when you visit our website and use our products or services

If you fill out a form on our website that requires contact information such as signing up for updates or submitting a request for information and services we will collect and process that information to provide you with the communication or services. These types of Personal Information may include your name, email address, your physical address, payment and billing information.

When using our website, we may automatically collect Personal Information such as user - agent information (which is automatically sent by your web browser and may include device type), IP address, and information collected by cookies and other similar technologies (cookie policy can be found below).

When using our products and services, the types of Personal Information we collect include:

1. Username
2. Name or Pseudonym
3. IP Address
4. Email address
5. Social Handles
6. Avalanche Wallet Address

We may also collect usage data regarding your use of our products and services that may contain Personal Information.

Information may be irrevocably stored on the blockchain

An interaction is any smart contract deployment, mint or collection of an NFT (or “Digital Collectible”). Any interaction on the Site will be stored irrevocably on the Avalanche blockchain. All information stored on the blockchain is then also stored in separate servers in order for the Company to reproduce that information in a manner that is user friendly. zeroone has no ability to modify or destroy any information on the blockchain. Some information may be superficially concealed in order to comply with lawful requests, but the data itself is irrevocably and permanently on chain. Information stored on the blockchain is public and can be retrieved on an Avalanche blockchain explorer i.e. www.subnets.avax.network. Activity conducted can be viewed by inputting your or another person’s public Avalanche address into the search bar. See On-Chain Data and Metadata Section below for more information.

On-Chain Data and Metadata

No entity, including zeroone, is capable of modifying or deleting data that is stored on the Avalanche blockchain. The details of your Digital Collectible-related interactions / transactions are public information and stored on the Avalanche blockchain in association with your Avalanche wallet addresses. Your zeroone username is publicly identified with your Avalanche wallet address on the Platform.

Creator Works Minted on zeroone

By using the zeroone Platform to create, you may voluntarily embed PII in the Metadata of any minted Digital Collectible(s) or in the media content referenced by the Digital Collectibles. All information embedded in the Metadata will not be available for deletion and there is no reasonable expectation of privacy for any PII put in the Metadata or the media content referenced by the Digital Collectible. Sole responsibility resides with the Users and Parties associated with the minting, transfer, and use of Digital Collectible(s) for ensuring their PII or other sensitive data are properly protected.

How We Collect Information

By using zeroone you acknowledge that your PII, including your Avalanche wallet address, is stored on the publicly searchable Avalanche blockchain and that neither zeroone, nor any third party, has any power to delete such data published by its User’s on the Avalanche blockchain. You hereby release and indemnify zeroone of any data privacy liability associated with data that you published to the Avalanche blockchain by using zeroone. If you perform any transaction on our site involving the blockchain you expressly, explicitly, and publicly publish that information.

We collect Personal Information from you when you visit our website or use our products and services. Some of this information is provided by you and some is collected automatically. We collect Personal Information in the following ways:

1. When you create an account
2. Through automated collection from browsing zeroone such as Views and Shares
3. From blockchain for transactions such as Minting and Transfering
4. From other sources including articles, websites, external social media accounts, and public databases.
5. Conversations with our personnel including staff and support.

We may collect personal information from other sources, such as Third-party Wallets, Avalanche blockchain, Block Explorers (such as https://subnets.avax.network), Third-party partners, Analytics Providers.

How We Use Your Information

We process your personal information for the following purposes:

1. Maintain, analyze and improve Platform functionality;
2. Provide you with critical updates, confirmations, or security alerts;
3. Enable you to create and collect unique digital collectibles;
4. Personalize and improve your experience and Digital Collectible activity feed;
5. Provide support or respond to your comments or questions;
6. Inform you about products, services, news, or promotional opportunities we think might interest you;
7. Provide editorial content.
8. Create profiles of user behavior to improve the platform, enhance our services, and market more effectively.
9. To contact you with updates about our services.
10. Manage IP disputes.
11. Alert users to hacks and scams.

The Legal Basis For Collecting and Processing Information

We use the following legal bases for collecting Personal Information:

1. We may collect or process information with your consent, such as when you subscribe to updates, ask for information, or sign up for services.
2. We may collect or process information we need to provide our services or fulfill a contractual obligation.
3. We may collect or process information to fulfill a legal obligation.
4. We may collect information when we have a legitimate interest to do so, such as for marketing, as long as our legitimate interests are not outweighed by your rights.
5. We may collect or process information if necessary to protect the vital interests of the user or another individual.

How We Share Information

We do not sell or disclose your personal information for monetary or other valuable consideration. The common-law definition of to sell is when “cash is exchanged in return for a product or service.” We share Personal Information with our affiliates and partners, as needed to provide our services. We share Personal Information with analytics and service providers such as accountants, infrastructure partners, and other vendors we use to operate our website and provide our products and services.

Our vendors and service providers are not permitted to use your personal information for any other purpose than to provide contracted services. Vendors are not permitted to use your personal information for their own marketing, and are not allowed to share your information for marketing purposes.

We may share personal information in response to a legal summons or subpoena, or if required by law enforcement agencies. If there is a credible allegation against you involving the violation of our Terms and Conditions, you have no reasonable expectation of privacy and all information obtained may be shared with any parties that have been harmed by the alleged violation.

We may share your profile and some publicly available information with select collectors and users for the purposes of marketing creation visibility.

Digital Millennium Copyright Act

The Digital Millennium Copyright Act (DMCA) sets forth a Notification and Counter-Notification process initiated by a party complaining of alleged copyright infringement on the zeroone. We may share information of the notifying, counter-notifying party, and any involved third parties, such as a Collector, of an allegedly infringing artwork to facilitate communication between the relevant parties for the purposes of complying with or resolving a DMCA dispute or allegation of copyright infringement.

How Long We Retain Your Information

How long we keep Personal Information that we have collected depends on the type of information and the purpose for which it was collected. After a reasonable period of time or the completion of the purpose for which it was collected, we will either delete or anonymize personal information.

1. We retain Personal Information where we have an ongoing legitimate business purpose to do so, for example to resolve disputes or to comply with ongoing legal obligations.
2. We retain your personal information for as long as it is needed to provide our services to you and to fulfill our legal obligations and for a reasonable period of time after such services are completed.
3. We retain some information in order to stay compliant with financial regulators and law enforcement.

How Long We Retain Your Information

Cookies are small files stored on your web browser when you visit our website. Some cookies last only as long as you remain on the website; others, called “persistent cookies” may be stored for longer periods of time. These cookies can make browsing easier by storing your password or your preferences regarding how you use the website. Cookies collect information such as the IP address of your computer, your browser settings, and information about how you use the website. Your general location may be estimated from your IP address. Some cookies track users’ activity on our website, apps, and services in order to deliver personalized advertising to you on this and other websites. You may find more information about cookies, including how to opt out of interest-based advertising, at www.cookiesandyou.com.

If you would like to opt out of cookies, you may change the settings on your web browser to reject or delete cookies.

Information for California Residents

The California Consumer Privacy Act (CCPA) applies to information collected from California residents. Residents of California have the following rights with regard to their personal information.

1. The Right to Know and Access Information - The categories of personal information we collect is described above in the section entitled “Personal Information We Collect”. California residents may submit a verifiable request regarding the information collected, the types of sources from which personal Information is collected, the purposes for which information is collected, and the specific personal information collected about them.
2. The Right to Have Personal Information Deleted
3. The Right To Portability - California residents may request a copy of their personal information in a format that can be transferred to another person or entity.
4. The Right to Non-Discrimination - We may not discriminate against you if you exercise your privacy rights.

We do not sell your data for monetary or other valuable consideration. You may be asked for more information in order for us to verify your identity when you make a request. You may exercise your rights by emailing us at [email protected].

Your Rights Regarding Access to and Control over Personal Information

If you reside in the EU/EEA, you may have the following rights with regard to your personal information:

1. Right of information and access - You have the right to access your Personal Information we have about you and to be provided with a copy of your Personal Information.
2. Right to rectification - You have the right to correct or update your inaccurate or out of date Personal Information.
3. Right of erasure - You have the right to request that your Personal Information be permanently erased/deleted.
4. Right to restrict processing - You have the right to restrict the processing of your Personal Information.
5. Right to object to processing - You have the right to object to specific types of processing of your Personal Information.
6. Right to portability - You may ask to receive a portable copy of your personal information in a format that may be transferred to another organization.
7. Right not to be subject to decisions based solely on Automated Decision Making - You have the right not to be subject to decisions based solely on automated processing.
8. Right to complain to a data protection authority - You have the right to complain to a supervisory authority in the country in which you reside, details of which can be provided upon request or to the lead supervisory authority for zeroone, which as a non-EU entity is the California Data Protection Agency.
9. Right to withdraw consent - If you have given us consent to collect or process your Personal Information, you may withdraw that consent at any time.
10. The Right to Non-Discrimination - We may not discriminate against you if you exercise your privacy rights.

If you are a member of the EEA and wish to exercise any of these rights please submit a request through our email: [email protected].

We may charge a reasonable fee if your request is not valid under applicable law, repetitive or excessive. We may also request additional information from you in order to verify your identity before processing your request.

International Data Transfers

Personal Information may be transferred from users residing in the European Union to our servers, partners, or vendors located in the United States and other non-EU countries where there may not be an adequate opinion issued with respect to that country. We have taken appropriate safeguards to ensure that Personal Information remains protected wherever it is transferred. When we transfer Personal Information of individuals in the European Economic Area (“EEA”), Switzerland or the United Kingdom (“UK”) to the US, we make use of the Standard Contractual Clauses and the UK Addendum as well as additional safeguards where appropriate.

Security and Breach Protocols

We take all reasonable steps to protect the information we receive from you from accidental or unlawful destruction, loss, alteration, and unauthorized disclosure or access. We have put in place appropriate physical, technical, and administrative measures to safeguard and secure your information, but no security measures are perfect; the risk of a data breach is possible.

• Personal data is encrypted for access or transmission and personal information is encrypted at rest at our data centers.
• Employees are given access to users’ personal information only on a “need to know” basis.
• Our vendors are required to implement security procedures to protect your data.
• Our vendors and partners are not permitted to use or share your information for any purpose other than to provide the services for which they have been contracted.

In the unlikely event of a security breach we may delay reporting of the breach in so far as is legally permissible. We will only delay as long as is necessary to ascertain the scope of the breach, the cause, and to cooperate with law enforcement and our partners to prevent further damage.

Automated Decision Making and Profiling

Data collected from Users may be put through algorithms to make decisions about User experiences, create and assign User profiles, and provide other services. No algorithms shall be used to make adverse decisions about Users unless it is to fulfill an affirmative duty to prevent criminal activity.

Youth Privacy

We do not knowingly collect or solicit personal information from children under age 13 without parental consent, unless permitted by law. If we become aware that we have collected personal information from children under the age of 13 without parental consent (or as permitted by law), we will delete it. If you believe that a child may have provided us with personal information without such parental consent, please contact us and we will immediately take action.

California consumers: We will not sell the information of California consumers who are 16 years old or younger unless we have prior parental authorization. If a California consumer is under the age of 13, a parent or guardian must consent to the sale of such minor’s personal information. If the California consumer is between the ages of 13 and 16 years old, the minor may consent on an opt-in basis to the sale of their personal information. Our site is not directed toward children and if we suspect someone is a child we will ask for age verification and will require appropriate consent.

EU residents: We do not collect or process personal information of data subjects in the EU under the age of 16 without explicit consent from a parent or guardian. Our sites directed toward children will ask for age verification and will require appropriate consent. If we discover a minor person on our platform we will immediately delete all user data related to that person.

Sensitive Information

Unless specifically requested, we ask that you not send or disclose on or through our websites or otherwise to us sensitive personal Information unless specifically requested by us or required by law.

Contact Us

If you have any questions about this privacy policy, or if you want to exercise your privacy rights as outlined above, please contact us at [email protected]. If you have any questions regarding your wallet connections, account status, or need help with similar account related concerns please contact [email protected]