Privacy Policy
Last revised: October 2022
1. Definitions and legal references Personal Data (or Data)
Any information that directly, indirectly, or in connection with other information - including a personal identification number - allows for the identification or identifiability of a natural person.
Data Subject
The natural person to whom the Personal Data refers.
Decarbonice platform (or Decarbonice platform or Application)
The means by which the Personal Data of the User is collected and processed.
User
The individual using the Decarbonice platform who, unless otherwise specified, coincides with the Data Subject.
Data Controller (or Owner)
The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data, including the security measures concerning the operation and use of the Decarbonice platform. The Data Controller, unless otherwise specified, is the Owner of the Decarbonice platform.
Data Processor (or Data Supervisor)
The natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Controller, as described in this privacy policy.
Usage Data
Information collected automatically through the Decarbonice platform (or third-party services employed in the Decarbonice platform), which can include: the IP addresses or domain names of the computers utilized by the Users who use the Decarbonice platform, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User's IT environment.
Service
The service provided by the Decarbonice platform as described in the relative terms (if available) and on this site/application.
Cookies
Small sets of data stored in the User's device.
European Union (or EU)
Unless otherwise specified, all references made within this document to the European Union include all current member states to the European Union and the European Economic Area.
Legal information
This privacy statement has been prepared based on provisions of multiple legislations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation).
This privacy policy relates solely to the Decarbonice platform, if not stated otherwise within this document.
2. Owner and Data Controller
Decarbonice OÜ, 16586485
Address: Roosikrantsi tn 2 Kesklinna linnaosa, Tallinn, Harju maakond, 10119, Estonia
Privacy Officer contact email: info@decarbonice.io
3. Introduction
Decarbonice OÜ (“the Company”, “We”, “Our” or “Us”) is providing this Privacy Policy to explain what personal data We collect, how We use it, and your rights if you want to change how We use your personal data.
Please read this Policy carefully!
4. Personal data you give Us
You may give Us personal data by:
- Registering to use the Decarbonice platform;
- Filling in forms online;
- Corresponding with Us by phone, e-mail or Skype; or
- Subscribing to Our newsletter.
In the following, We report the detailed set of data We ask you, mandatorily or optionally, for each process you may be involved in.
|
Process name |
Mandatory personal data |
Optional personal data |
Registration |
Name, e-mail address, password, cookie data, Usage data and account number (provided once data is deleted). |
Date of birth, address, Ethereum address, telephone number, Facebook page, Twitter page, LinkedIn page, company name, company address. |
|
Token Sale |
Ethereum address, Usage data, and cookies data; cryptocurrency address or IBAN details; identification documents (for example, national ID card, passport or driving licence), proof of residence documents (for example, utility bills or bank statements), any other documents you have provided for identification purposes (for example, proof of source of funds), and any other data (that may also include sensitive data) that can be extracted from such documents; a selfie confirming your identity and your identification document or the result of a liveness check; results of background AML checks |
None |
|
Support form services |
Telephone number or Skype ID, any (also sensitive) personal data that may be contained within the e-mail message, Usage data, and cookies data. |
None |
|
Contact form services |
Name, e-mail address, any (also sensitive) personal data that may be contained within the e-mail message, Usage data, and cookies data. |
None |
|
Invoice processing |
Name, address, VAT number or fiscal code, contact details (examples include but are not limited to: telephone number, mobile number, Skype details, e-mail address, website), IBAN details. |
None |
|
Consultant and Collaborator engagement |
Full name, ID card number or passport number, qualifications, signature and photograph. |
LinkedIn ID and personal website link |
5. Personal data We collect from your device
We use Usage Data and Cookies to manage Our website, and to make sure that content from Our website is presented in the most effective way for you and your device. For more information about cookies, please see Our Cookies Policy.
6. Lawful basis for personal data processing
|
Process name |
Lawful basis for processing |
|
Registration |
Contract and Consent |
|
Token Sale |
Contract, Law and Consent |
|
Support form services |
Legitimate interest and Consent |
|
Contact form services |
Legitimate interest and Consent |
|
Invoice processing |
Law |
|
Consultant and Collaborator engagement |
Contract and Consent |
7. How long We keep your personal data?
Under GDPR, We are required to keep your documents according to Our Data Retention Policy. After this period, your personal data will be irreversibly destroyed. Any personal data held by Us for service notifications will be kept by Us until such time that you notify Us that you no longer wish to receive this data.
We will not retain your personal data for longer than is necessary to fulfil the purpose it is being processed for. To determine the appropriate retention period, We consider the amount, nature and sensitivity of the personal data, the purposes for which We process it and whether We can achieve those purposes through other means.
Blockchain relies on a distributed ledger system that is decentralized and immutable. It is intended to be a permanent and a tamper-proof record that sits outside the control of any one governing authority. Information on the blockchain, including personal information of Data Subjects, cannot be modified or deleted.The Company vows data protection transparency. As Data Controller, we are obliged to be transparent with Data Subjects about how we process their personal data. Thus, Data Subjects are informed that the Company must collect an Ethereum address to offer a service. Even though the Company deletes personal data as per Retention Policy, the Ethereum address and all the blockchain transactions linked to it are never deleted from the blockchain due to its immutability property. This is a fact that Data Subject must accept if s/he decides to participate in an open source, public blockchain.
Should you require further information about Our retention periods, please contact Us using the provided Privacy Officer contact email outlining your requirements.
8. Do We share your personal data?
We share your personal data with third party suppliers to provide you with the best service.
|
3rd party |
Service |
Place |
Data |
|
Google Analytics: track and examine the use of the Decarbonice platform; Google Fonts: typeface visualization service; Google Tag Manager: tag management service; Google Drive: save and manage backups |
Ireland |
Cookies, Usage Data |
Moreover, the Company may share your personal data with:
- Other third parties to the extent necessary to: (i) comply with a government request, a court order or applicable law; (ii) prevent illegal uses of Our website, violations of Our website, its terms of use and Our policies; (iii) defend Ourselves against third party claims; and (iv) assist in fraud prevention or investigation;
- To any other third party for which you have provided Us with your consent.
9. How do we protect your data?
Our site is reviewed on a regular basis for security vulnerabilities in order to make your visit to our site as safe as possible. Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. We implement a variety of security measures when a user places an order enters, submits, or accesses their information to maintain the safety of your personal information.
10. What are your rights?
You have the right to request:
- Access to your personal data;
- An electronic copy of your personal data (portability);
- Correction of your personal data if it is incomplete or inaccurate; or
- Deletion or restriction of your personal data in certain circumstances provided by applicable law.
These rights are not absolute. Where We have obtained your consent for the processing of your personal data, you have the right to withdraw your consent at any time.
If you would like to request a copy of your personal data or exercise any of your other rights, kindly contact Us using the provided Privacy Officer contact email
If you have any questions related to EU GDPR 2016/679 compliance or Data Protection, you can contact Us using the provided Privacy Officer contact email. If you still feel that your personal data has not been handled appropriately according to the Law, you have the right to lodge a complaint against the Company regarding data protection issues with the Data Commissioner’s Office.
11. Other local Data Protection Laws
We at Decarbonice OÜ take the data privacy of our customers and guests very seriously and are committed to abiding by the applicable Data Protection Laws.
If you have any enquiry or complaint regarding how we handle your personal data or how we comply with your local applicable Data Protection Law, we welcome you to contact us using the provided Privacy Officer contact email.
When submitting an enquiry or a complaint, your indication of the applicable Data Protection Law in the subject would assist us in attending to your complaint effectively.
12. Changes to this Privacy policy
The Owner reserves the right to make changes to this privacy policy at any time by notifying its Users on this page and possibly within the Decarbonice platform and/or - as far as technically and legally feasible - sending a notice to Users via any contact data available to the Owner. It is strongly recommended to check this page often, referring to the date of the last update.
Should the changes affect processing activities performed on the basis of the User’s consent, the Owner shall collect new consent from the User, where required.