Privacy Policy

This Privacy Policy describes how Avanga Ltd / Art Fungible (“Art Fungible”, “we”, “us”, or “our”) collects, uses, discloses, and protects personal data when you access or use our website and services at www.artfungible.io (the “Website”) and related applications, features, and services (collectively, the “Services”).

We are committed to protecting your privacy and complying with applicable data protection laws, including the Swiss Federal Act on Data Protection (FADP), the EU General Data Protection Regulation (GDPR), and where applicable, the California Consumer Privacy Act (CCPA).

By using our Website or Services, you agree to the collection and use of information in accordance with this Privacy Policy.

1. Who We Are (Data Controller)

For the purposes of applicable data protection law, Art Fungible is the data controller of your personal data.

Contact: Email: privacy(at)artfungible.io

2. Information We Collect

We collect the following categories of data:

a) Information You Provide Directly

• Identity information: name, username, company name

• Contact details: email address, phone number, billing and shipping address

• Account data: login credentials, preferences

• Communications: messages, support requests, feedback

• Transaction information: orders, shipping details, dispute records

b) Blockchain & Wallet Information

When you connect a wallet or interact with smart contracts, we may process:

• Public wallet addresses

• Public transaction hashes and token IDs

• On-chain activity related to our platform

Note: Blockchain data is public by nature and not controlled by Art Fungible.

c) Automatically Collected Data

• IP address

• Browser type, device type, operating system

• Referrer URLs, page views, session duration

• Cookies and similar tracking technologies

d) Third-Party Data

We may receive data from partners such as:

• Payment providers

• Identity or compliance service providers

• Analytics providers

• Shipping and logistics partners

3. Purpose of Processing

We process personal data for the following purposes:

• To provide and operate the platform and smart-contract services

• To process transactions and physical deliveries

• To authenticate users and prevent fraud

• To communicate with you (support, updates, legal notices)

• To improve and optimize our services

• To comply with legal and regulatory obligations

• To protect our legal rights and enforce our terms

4. Legal Basis for Processing (GDPR)

We rely on the following legal bases:

• Contractual necessity (performance of services you request)

• Consent (e.g., marketing communications, cookies where required)

• Legal obligations (compliance, accounting, fraud prevention)

• Legitimate interests (platform security, service improvement)

5. Cookies and Tracking

We use cookies and similar technologies to:

• Enable essential functionality

• Remember user preferences

• Analyze traffic and usage

• Improve user experience

You can manage or disable cookies through your browser settings.

6. Sharing of Data

We do not sell personal data.

We may share data with:

• Service providers (hosting, analytics, support tools)

• Payment and compliance providers

• Logistics and shipping partners

• Legal or regulatory authorities if required by law

All partners are contractually required to protect your data.

7. International Transfers

Your data may be processed outside your country of residence, including in jurisdictions that may not offer the same level of data protection. Where required, we use appropriate safeguards (such as Standard Contractual Clauses).

8. Data Retention

We retain personal data only as long as necessary for:

• the purposes described in this policy,

• contractual and legal obligations,

• dispute resolution and enforcement.

Blockchain data cannot be deleted due to its immutable nature.

9. Your Rights

Under GDPR / Swiss Law

You have the right to:

• Access your personal data

• Rectify inaccurate data

• Request deletion (where legally possible)

• Restrict or object to processing

• Data portability

• Withdraw consent at any time

Under CCPA (California Residents)

You have the right to:

• Know what personal data we collect

• Request deletion of personal data

• Opt out of sale (we do not sell personal data)

To exercise any rights, contact us at: [insert email]

10. Children’s Privacy

Our services are not intended for children under 13. We do not knowingly collect personal data from minors. If we become aware of such data, we will delete it promptly.

11. Security

We use appropriate technical and organizational security measures to protect your data, including encryption, access controls, and secure hosting. However, no system is completely secure.

12. Third-Party Websites

Our website may contain links to third-party websites. We are not responsible for their privacy practices.

13. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be posted on this page with a new “Last updated” date.

14. Contact

For privacy questions or requests:

Email: privacy(at)artfungible.io