Privacy Policy

Effective Date: January 21, 2025
Last Revised: January 21, 2025

1. INTRODUCTION

This Privacy Policy ("Policy") governs the collection, use, disclosure, retention, and protection of Personal Information (as defined herein) obtained from users ("User," "you," or "your") of the website www.3dos.io (the "Website") and associated services, applications, and functionalities (collectively, the "Services") operated by 3DOS ("3DOS," "we," "us," or "our").

By accessing, registering for, or using the Services, you expressly acknowledge that you have read, understood, and irrevocably consent to the terms of this Policy. If you do not agree to these terms, you must immediately discontinue all use of the Services.

This Policy complies with applicable data protection laws, including but not limited to the General Data Protection Regulation (GDPR) (EU 2016/679), the UK Data Protection Act 2018, the California Consumer Privacy Act (CCPA), and the British Virgin Islands Data Protection Act (As Revised). For Users residing in the European Economic Area (EEA), United Kingdom (UK), Switzerland, or British Virgin Islands (BVI), additional provisions apply as detailed in Section 14.

2. DEFINITIONS

  • Personal Information: Any data relating to an identified or identifiable natural person, directly or indirectly, including but not limited to identifiers (e.g., name, email, IP address), commercial information, or online activity.
  • Processing: Any operation performed on Personal Information, including collection, storage, modification, or disclosure.
  • Data Controller: 3DOS, which determines the purposes and means of Processing.
  • Service Providers: Third parties engaged by 3DOS to facilitate the Services under contractual obligations.

3. SCOPE AND APPLICABILITY

This Policy applies to all Users globally. By using the Services, you acknowledge that your Personal Information may be transferred to and Processed in jurisdictions outside your country of residence, including jurisdictions with differing data protection laws.

4. INFORMATION COLLECTION

4.1 Types of Personal Information Collected

  • Account Information: Email address, username, password, digital wallet public address, referral codes, and other registration details.
  • Technical Data: IP address, device identifiers (e.g., MAC address), browser type, operating system, network information, and usage patterns.
  • Communication Data: Records of correspondence, including support inquiries, feedback, or survey responses.
  • Transaction Data: Details related to rewards, referrals, or other interactions with the Services.

4.2 Sources of Collection

  • Directly From You: When you register, use the Services, or contact us.
  • Automatically: Via cookies, logs, and analytics tools.
  • Third Parties: Service Providers (e.g., authentication providers like Google), subject to their privacy policies.

5. PURPOSE AND LEGAL BASIS FOR PROCESSING

We Process Personal Information for the following lawful purposes:

  • Service Provision
    Legal Basis: Contractual necessity (GDPR Art. 6(1)(b))
    Data Categories: Account, Technical, Transaction
  • Network Security
    Legal Basis: Legitimate interests (GDPR Art. 6(1)(f))
    Data Categories: Technical Data
  • Marketing Communications
    Legal Basis: Consent (GDPR Art. 6(1)(a)) or legitimate interests
    Data Categories: Account, Communication
  • Legal Compliance
    Legal Basis: Legal obligation (GDPR Art. 6(1)(c))
    Data Categories: All categories
  • Fraud Prevention
    Legal Basis: Legitimate interests
    Data Categories: Technical, Transaction

6. DATA DISCLOSURE AND TRANSFERS

6.1 Third-Party Disclosures

We may disclose Personal Information to:

  • Service Providers: Hosting providers, customer support platforms, and analytics vendors under strict confidentiality agreements.
  • Legal Authorities: To comply with subpoenas, court orders, or regulatory inquiries.
  • Business Transferees: In mergers, acquisitions, or asset sales, where Personal Information is transferred as a business asset.

6.2 International Transfers

Personal Information may be transferred to jurisdictions outside the EEA/UK/BVI, including the United States. Such transfers rely on:

  • Adequacy Decisions: For transfers to countries deemed adequate by the European Commission.
  • Standard Contractual Clauses (SCCs): Executed with recipients to ensure GDPR-level protections.
  • Consent: Explicit consent for specific transfers (GDPR Art. 49(1)(a)).

7. DATA RETENTION

Personal Information is retained only as long as necessary to fulfill the purposes outlined herein, including:

  • Operational Needs: Active account period plus 24 months for dispute resolution.
  • Legal Obligations: As required by tax, anti-fraud, or other laws (e.g., 7 years for financial records).
  • Anonymization: Post-retention, data is anonymized or irreversibly deleted.

8. SECURITY MEASURES

We implement industry-standard safeguards to protect Personal Information, including:

  • Technical Measures: Encryption (AES-256), firewalls, access controls, and regular penetration testing.
  • Organizational Measures: Confidentiality agreements, staff training, and incident response protocols.

Notwithstanding the foregoing, no system is impenetrable. 3DOS disclaims liability for unauthorized access arising from factors beyond its reasonable control.

9. USER RIGHTS

Subject to jurisdictional laws, you may exercise the following rights:

  • Access: Request a copy of your Personal Information by submitting a verifiable request to support@3dos.io
  • Rectification: Correct inaccurate data via account settings or by contacting support
  • Erasure: Request deletion under GDPR Art. 17 (exemptions apply for legal compliance)
  • Restriction: Limit Processing under GDPR Art. 18 by submitting a request with justification
  • Portability: Receive data in a machine-readable format by submitting a request to support@3dos.io
  • Objection: Object to Processing based on legitimate interests; we will assess and respond within 30 days

We reserve the right to charge a reasonable fee for manifestly unfounded or excessive requests.

We reserve the right to charge a reasonable fee for manifestly unfounded or excessive requests.

10. COOKIES AND TRACKING TECHNOLOGIES

We use cookies to enhance functionality, analyze traffic, and personalize content. Users may adjust browser settings to refuse cookies, but this may impair Service functionality. For details, see our Cookie Policy [link].

11. CHILDREN'S PRIVACY

The Services are not directed to individuals under 18. We do not knowingly collect Personal Information from minors. If such data is inadvertently collected, contact us for immediate deletion.

12. THIRD-PARTY LINKS

The Services may link to third-party websites. 3DOS disclaims responsibility for the privacy practices or content of such entities.

13. POLICY UPDATES

We may amend this Policy at our sole discretion. Material changes will be notified via email or Website notice. Continued use post-update constitutes acceptance.

14. ADDITIONAL PROVISIONS FOR EEA/UK/SWITZERLAND/BVI USERS

  • Data Protection Officer (DPO): Contact support@3dos.io for GDPR-related inquiries.
  • Supervisory Authority: Lodge complaints with your local data protection authority (e.g., UK ICO).
  • Automated Decision-Making: We do not engage in automated profiling.

15. LIMITATION OF LIABILITY

To the maximum extent permitted by law, 3DOS, its affiliates, and Service Providers shall not be liable for:

  • Indirect, incidental, or consequential damages arising from Service use.
  • Unauthorized access due to User negligence (e.g., compromised credentials).
  • Third-party actions, including Service Providers' non-compliance.

16. GOVERNING LAW AND DISPUTES

This Policy is governed by the laws of the British Virgin Islands. Disputes shall be resolved through binding arbitration under the BVI Arbitration Act, with proceedings conducted in Tortola.

17. CONTACT INFORMATION

For privacy-related inquiries, requests, or complaints:
Email: support@3dos.io
Mailing Address: 3DOS INC 111 Pier Ave Ste 100Hermosa Beach CA 90254

Response Time: We endeavor to respond within 30 days of receipt.

BY USING THE SERVICES, YOU EXPRESSLY ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREED TO BE BOUND BY THIS PRIVACY POLICY.