1.2 Owner of Crypties. Crypties is owned and operated by Crypties SA having a registered business address at Avenue d'Ouchy 4, 1006 Lausanne, Switzerland, and a registration number CHE-401.672.109 (“we”, “us”, or “our”).
1.4 Children. Crypties is not marketed and should not be used by persons under the age of 18. We do not intentionally collect children’s personal data. If you, as a parent or a legal guardian of a child, become aware that the child has submitted his/her personal data to us, please contact us immediately. We will delete your child’s personal data from our systems without undue delay.
2.1 Sources of personal data. We obtain your personal data from the following categories of sources:
2.3 Sensitive data. We do not collect or have access to any special categories of personal data (“sensitive data”) from you, unless you decide, at your own discretion, to provide such data to us. Sensitive data is information that relates to your health, genetics, biometrics, religious and political beliefs, racial origins, membership of a professional or trade association, sex life, or sexual orientation.
2.4 Refusal to provide personal data. If you refuse to provide us with your personal data when we ask for it, we may not be able to perform the requested operation and you may not be able to receive our services or get our response. Please contact us immediately if you think that any personal data that we collect is excessive or not necessary for the intended purpose.
3.1 Analytics data. In order to analyse your use of Crypties and comply with the applicable laws, we col-lect non-personal technical data, such as:
3.2 Your feedback. If you contact us, we may keep records of any questions, complaints, recommenda-tions, or compliments made by you and any subsequent responses. Where reasonably possible, we remove all personal data that is not necessary for keeping such records.
3.3 Purposes of technical (non-personal) data. We use your technical (non-personal) data for the follow-ing purposes:
3.4 Aggregated and de-identified data. If we combine your non-personal data with certain elements of your personal data and such a combination allows us to identify you as a natural person, we will handle such aggregated data as personal data and make sure that we have a legal basis for processing it. If your personal data is de-identified in a way that it can no longer be associated with a natural person, it will not be considered personal data and we may use it for any business purpose.
4.1 Newsletters. We may, from time to time, send you a newsletter informing you about the latest developments related to Crypties and our special offers via push notifications. You will receive our newsletters in the following instances:
4.2 Opting-out. You can opt-out from receiving our commercial communication at any time free of charge by adjusting the settings of your user account or by contacting us directly.
4.4 Service-related notices. If necessary, we will send you important informational messages, such as confirmation receipts, order updates, payment information, and other administrative updates. Please note that such messages are sent on an “if-needed” basis and they do not fall within the scope of commercial communication that may require your prior consent. You cannot opt-out from service-related notices.
5.3 Retention as required by law. In certain cases, we are required by law to store your personal data for a certain period of time (e.g., for business records or accountancy purposes). Thus, we keep your personal data for the time period stipulated by the applicable law and securely delete it as soon as the required storage period expires.
6.1 Disclosure to data processors. From time to time, your personal data is disclosed to our service pro-viders with whom we cooperate (our data processors). For example, we share your personal and non-personal data with entities that provide certain technical support services to us, such as hosting and email distribution services. We do not sell your personal data to third parties. The disclosure is limited to the situations when your personal data is required for the following purposes:
6.3 Disclosure of technical (non-personal) data. Your technical (non-personal) data may be disclosed to third parties for any purpose. For example, we may share it with prospects or partners for business or re-search purposes, for improving Crypties, responding to lawful requests from public authorities or develop-ing new products and services.
6.4 Legal requests. If we are contacted by a public authority, we may need to disclose information about you to the extent necessary for pursuing a public interest objective, such as national security or law en-forcement.
6.6 Selling personal data. We do not directly sell your personal data to third parties. However, some of your personal data, including online identifiers (e.g., cookie-generated data and IP addresses) may be used for advertising, marketing, and monetisation purposes (e.g., programmatic advertising, retargeting, third-party marketing, profiling, or cross-device tracking). To make sure that you have full transparency and control over your personal data, we provide you with a possibility to manage your personal data used for such purposes as described in our ‘Cookies’ section.
6.7 International transfers. Some of our data processors listed above are located outside the country in which you reside. For example, if you reside in the European Economic Area (EEA), we may need to transfer your personal data to jurisdictions outside the EEA. In case it is necessary to make such a transfer, we will make sure that the jurisdiction in which the recipient third party is located guarantees an adequate level of protection for your personal data or we conclude a data processing agreement with the respective third party that ensures such protection. We will not transfer your personal data internationally if no appropriate level of protection can be granted.
7.1 Our security measures. We implement organisational and technical information security measures to protect your personal data from loss, misuse, unauthorised access, and disclosure. The security measures taken by us include:
7.2 Security breaches. Although we put our best efforts to protect your personal data, given the nature of communications and information processing technology and the Internet, we cannot be liable for any un-lawful destruction, loss, use, copying, modification, leakage, and falsification of your personal data that was caused by circumstances that are beyond our reasonable control. In case a serious breach occurs, we will take reasonable measures to mitigate the breach, as required by the applicable law. Our liability for any security breach will be limited to the highest extent permitted by the applicable law.
8.1 The list of your rights. You have the right to control how your personal data is processed by us by ex-ercising the rights listed below (unless, in very limited cases, the applicable law provides otherwise):
8.3 Complaints. If you would like to launch a complaint about the way in which we process your personal data, we kindly ask you to contact us first and express your concerns. If we receive your complaint, we will investigate it and provide you with our response as soon as possible. If you are not satisfied with the out-come of your complaint, you have the right to lodge a complaint with your local data protection authority.
8.4 Non-discrimination. We do not discriminate against you if you decide to exercise your rights. It means that we will not (i) deny any goods and services, (ii) charge you different prices, (iii) deny any discounts or benefits, (iv) impose penalties, or (v) provide you with lower quality services.
9.1 About cookies. A cookie is a small piece of data typically consisting of letters and numbers. When you visit a website, that website may send a cookie to your browser. Subsequently, the browser may store the cookie on your computer or mobile device for some time (cookie expiration date depends on its type). Cookies are used to recognise your device and collect certain information about your use of websites. Thus, over time, cookies allow websites to “remember” your actions and preferences. There are several types of cookies, namely, (i) persistent cookies, which remain valid until deleted by you, (ii) cookies that remain valid until their expiration date, and (iii) session cookies that are stored on a web browser and remain val-id until the moment the browser is closed. Cookies may also be (i) first-party cookies (set by the original website) and (ii) third-party cookies (placed by third-party websites). Cookies are classified into:
9.2 Our cookies We use the following cookies:
9.3 Managing cookies. When you our website, we will ask you to provide us with your consent to our use of all cookies via a cookie consent banner. If you do not provide your opt-in consent, we will not serve you our non-essential cookies. Please note that we may not be able to provide you with the best possible user experience on our website if not all cookies are enabled. When we ask you to provide your consent to our use of non-essential cookies, you have the freedom not to provide such consent. If you would like to refuse our use of non-essential cookies later, you can do it at any time by declining cookies in your browser or device.
9.4 Interest-based advertising. You may encounter targeted interest-based advertising based on your use of Cryties and other websites on the Internet. Where necessary, we will seek your consent. You can control how such advertising is shown to you or opt-out from targeted advertising by consulting the guide pow-ered by the Digital Advertising Alliance available at https://youradchoices.com. For more information on opting-out from advertising features on your device, please visit https://www.networkadvertising.org.
Connect with us and stay up to date on our project