Presale Web3

Privacy Policy

Presale Web3 Limited — United Kingdom · Company No. 16724295

Last updated: 18 September 2025

Summary Your Rights Full Details

Quick summary

We respect your privacy. This Privacy Policy explains how Presale Web3 Limited ("Presale Web3", "we", "us") collects, uses, shares, and protects personal information when you visit our websites, use our dashboards and documentation, or interact with our products and services (collectively, the Services). It is designed to align with major global frameworks including GDPR/UK GDPR, CCPA/CPRA, LGPD, PIPEDA, and similar laws. Local rights and requirements may vary; we honour them to the extent required by law.

We are a non‑custodial software provider. We do not hold private keys or seed phrases and we do not custody customer funds.

Controller vs. processor

  • Controller: We act as a data controller for personal data about our own website visitors, business contacts, account admins, and support interactions.
  • Processor: We act as a data processor/service provider when we handle customer‑provided data in connection with the Services (for example, webhook payloads or metadata you choose to send to us). In that role, we process such data only on your documented instructions and under a separate data processing addendum (DPA) where applicable.

Information we collect

A) You provide to us

  • Business contact details (name, email, employer, role, phone), messages you send us, and account registration information.
  • Support content (tickets, logs you share, screenshots) and developer feedback.
  • Billing and commercial information on order forms (invoices, tax IDs) when relevant.

B) Collected automatically

  • Service telemetry and device information (browser type, OS, IP address, timestamps, pages viewed, referral URLs) for security and performance.
  • Cookie‑related data as described in our Cookie Policy.

C) From third parties

  • Lead and attribution data from partners or public sources (e.g., your posted business contact information).
  • Compliance‑related results if you integrate optional KYC/KYT vendors (processed under your instructions).

D) What we do not collect

  • We do not collect or store private keys, seed phrases, or wallet recovery information.
  • We do not read, control, or take custody of customer funds.

E) About blockchain data

Public blockchains are immutable and transparent. Transaction information written to a public ledger may be publicly accessible indefinitely and cannot be altered or deleted by us. Your rights requests apply to off‑chain personal data that we control.

How we use information (purposes & legal bases)

  • Provide the Services (create accounts, operate dashboards, deliver APIs/SDKs) — Contract (GDPR Art. 6(1)(b)); Legitimate interests.
  • Secure and maintain (fraud prevention, abuse detection, incident response, logging) — Legitimate interests; Legal obligations.
  • Communicate (support, updates, transactional notices) — Contract; Legitimate interests.
  • Improve & develop (analytics, research, QA) — Legitimate interests; where required, Consent.
  • Marketing (with your consent where required; you can opt out anytime) — Consent / Legitimate interests.
  • Legal compliance (tax, accounting, regulatory requests, sanctions screening by customers’ vendors) — Legal obligations.

How we share information

  • Service providers (hosting, analytics, email, support tools) bound by confidentiality and data protection terms.
  • At your direction (e.g., optional KYC/KYT providers you choose to integrate).
  • Compliance and safety (to comply with law, enforce our terms, protect rights, security, or prevent harm).
  • Business transfers (in connection with a merger, acquisition, financing, or sale of assets).

We do not sell personal information, and we do not share it for cross‑context behavioral advertising as those terms are defined under the CPRA.

International data transfers

We may process and store information in countries outside your own. Where we transfer personal data from the EEA/UK to countries that do not provide an equivalent level of data protection, we rely on appropriate safeguards such as the EU Standard Contractual Clauses (SCCs) and/or the UK International Data Transfer Addendum (IDTA), plus supplementary measures where needed. We also take into account the nature of the data and the risk of the transfer.

Data retention

We retain personal data only as long as necessary for the purposes described in this Policy, including to comply with legal, accounting, or reporting requirements. Typical periods include: support records and telemetry up to 24 months; billing and contractual records up to 7 years (or as required by law). We may anonymise information for longer‑term analytics.

Security

We implement technical and organisational measures designed to protect personal data, including access controls, encryption in transit, and monitoring. No method of transmission or storage is 100% secure. If we believe the security of personal data has been compromised, we will investigate and notify affected parties and/or regulators as required by law.

Your privacy rights

Depending on where you live, you may have the following rights in relation to personal data we control:

  • Access to a copy of your personal data and information about how we process it.
  • Correction of inaccurate or incomplete data.
  • Deletion (erasure) of personal data where applicable.
  • Restriction of processing in certain circumstances.
  • Portability of data you provided to us.
  • Objection to processing based on legitimate interests, and to direct marketing at any time.
  • Withdraw consent where processing is based on consent.

To exercise your rights, contact us at [email protected]. We may ask for information to verify your identity. If you are in the EEA/UK, you also have the right to lodge a complaint with your supervisory authority.

Region‑specific notices

  • California (CCPA/CPRA): We do not sell your personal information or share it for cross‑context behavioural advertising. You may have rights to access, correct, delete, and limit use of sensitive personal information. If you make a request, we will not discriminate against you for exercising your rights.
  • Brazil (LGPD): You may have rights to confirm processing, access, correct, anonymise, block, delete, and portability, and to information about data sharing and the consequences of consent refusal.
  • Canada (PIPEDA): You may access and correct personal information we hold about you and file complaints with the Office of the Privacy Commissioner of Canada.
  • Other U.S. states (e.g., VA, CO, CT, UT): You may have similar rights to access, correct, delete, and opt out of targeted advertising and certain profiling. We honour these to the extent applicable.

Children

Our Services are designed for businesses and are not directed to children. We do not knowingly collect personal information from anyone under the age of 16 (or 13 where permitted by law). If you believe a child has provided us with personal information, please contact us and we will take appropriate steps.

Your obligations when you use our Services

If you are a customer of Presale Web3, you are responsible for providing appropriate privacy notices to your users, establishing a lawful basis for processing, and honouring data subject rights requests related to data you control. When we process personal data on your behalf, our DPA governs that processing.

Changes to this Policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top indicates the latest revision. If we make material changes, we will notify you by posting the updated Policy on this page and, where appropriate, by other means.

Contact us

For questions or to exercise your rights, contact us at [email protected]. Postal contact details will be provided upon request where required for rights verification or legal notices.

Company: Presale Web3 Limited · Company No. 16724295 · United Kingdom.