Privacy Policy

1. Data We Collect

• Credit Card Transaction Metadata: Anonymized data such as transaction amount, merchant type, and timestamp. We do not collect PII, including names, addresses, full card numbers, or contact details.
• Wallet Addresses: Optional, for distributing rewards or governance participation.
• Web Activity Data: Basic analytics (e.g., IP address, browser type) for website usage and performance monitoring, collected via minimal cookies.
• Contribution Data: Metadata about your data contributions (e.g., volume, frequency) to track rewards eligibility.

2. How We Use Your Data

• Anonymization: All transaction data is stripped of PII and processed using differential privacy to ensure anonymity.
• Aggregation: Anonymized data is pooled for purposes approved by DAO governance, such as training AI models, generating market insights, or licensing to third parties.
• Governance: You can vote on data usage and monetization proposals through the DAO interface.
• Rewards Distribution: Wallet addresses are used to distribute rewards, if applicable.
• Analytics: Web activity data is used to improve the Services and user experience, without behavioral profiling.

3. Data Security

• Encryption: Data is stored and processed with end-to-end encryption via Vana's secure infrastructure, with optional enhancements from Phala Network.
• Compliance: We adhere to GDPR, PCI DSS, and industry best practices.
• Shared Responsibility: As a DAO, members share responsibility for maintaining security standards when interacting with the platform.
• No PII: We do not collect or share personally identifiable information.

4. Your Rights

Under GDPR and applicable laws, you have the right to:

• Access: View the data you've contributed and how it's used via the DAO interface.
• Correction: Update incorrect data, where technically feasible.
• Deletion: Request removal of your data, subject to blockchain immutability constraints.
• Restriction: Limit processing of your data, where applicable.
• Portability: Receive a copy of your data in a structured format.
• Objection: Object to data processing for specific purposes.

To exercise these rights, contact us at contact@credmont.cc or use the DAO portal. We will respond within 30 days, per GDPR requirements.

5. Data Sharing

• No PII: Anonymized, aggregated data may be licensed or shared with third parties only as approved by DAO governance.
• Transparency: All data-sharing decisions are recorded on-chain and accessible to members.
• Service Providers: We may share technical data with trusted providers (e.g., Vana, Phala Network) for processing and storage, or analytics for anonymized data, under strict confidentiality agreements.

6. Cookies and Analytics

• We use minimal cookies for essential website functionality and basic analytics (e.g., Google Analytics for traffic monitoring).
• No tracking cookies or behavioral profiling is conducted.
• You can opt out of analytics cookies via your browser settings.

7. Blockchain Considerations

• Immutability: Data recorded on the blockchain (e.g., transaction hashes, governance votes) is permanent and cannot be altered or deleted due to the nature of blockchain technology.
• User Responsibility: You are solely responsible for safeguarding your private keys and wallet credentials. CredMont is not responsible for losses due to compromised credentials.

8. Policy Updates

• We may update this Privacy Policy to reflect changes in our practices or legal requirements.
• Updates will be posted on credmont.cc, and significant changes will be communicated via our DAO channels.
• Continued use of the Services after updates constitutes acceptance of the revised policy.

9. GDPR Inquiries

For GDPR-related requests or inquiries, contact us at contact@credmont.cc. We are committed to addressing your concerns promptly and in compliance with applicable laws.

10. Contact Us

For questions about this Privacy Policy or our data practices, reach out via:

• Email: contact@credmont.cc
• Website: credmont.cc

This Privacy Policy was last updated on June 24, 2025.