Privacy Policy

Last Modified: 26 May 2018

Hedera Hashgraph, LLC (“Hedera,” “Hashgraph,” “we,” “our,” or “us”) is committed to protecting your privacy.  This Privacy Policy explains how your personal information is collected, used and disclosed by Hedera. This Privacy Policy applies to our websites, including without limitation, HederaHashgraph.com, and any other websites that link to this Privacy Policy (collectively, our “Sites” or “Service”). By accessing or using our Service, you signify that you have read, understood and agree to our collection, storage, use and disclosure of your personal information as described in this Privacy Policy and our Terms of Use (https://www.hederahashgraph.com/terms). For the purposes of EU data protection laws ("Data Protection Legislation"), Hedera is data controller (i.e., the company who is responsible for, and controls the processing of, your personal data).

1. WHAT INFORMATION DO WE COLLECT AND FOR WHAT PURPOSE?

The categories of information we collect can include:

Information you provide to us directly.  We may collect personal information, such as your name, phone number, location, country, and e-mail address when you when you register for our Service, sign up for our mailing list, or otherwise communicate with us.  We may also collect any communications between you and Hedera and any other information you provide to Hedera, including without limitation, information about your interests, such as your interests in developing and/or launching a distributed application, interests in learning about hosting and running a node, information about investment interest (including whether you are an accredited investor and the amount of your investment interest), interest in becoming a system integration partner, interest in supporting the Distributed Ledger Foundation and/or the Free + Fair voting initiative. Additionally, if you intend to initiate an investment relationship with us, you may provide us or our third party service providers with the following information in order to be verified as an accredited investor or to meet our know-your-customer (KYC) and anti-money laundering (AML) checks: name, email, address, date of birth, phone number, copies of driver’s license or passport, and any other information necessary to confirm your accredited status, including without limitation, tax returns and bank statements (collectively, “Investment Information”).

Information we receive from third parties. From time to time, we may receive information about you from third parties and other users.  We may also collect information about you that is publicly available.

We use this information to operate, maintain, and provide to you the features and functionality of the Service, as well as to communicate directly with you, such as to send you email messages and push notifications.  We may also send you Service-related emails or messages (e.g., change or updates to features of the Service, technical and security notices). For more information about your communication preferences, see “Control Over Your Information” below.

Legal basis for processing in the EU

If you are a resident in the EU, we need to tell you the legal basis on which we collect and use your personal information. Please note that we will use the following such legal basis:

The provision of personal information by you may be necessary for the performance of any contractual relationship we have with you; or

Where it is necessary for compliance with our legal obligations laid down by EU law; or

Where in our legitimate interests provided these are not overridden by your interests and fundamental rights and freedoms (this includes our own legitimate interests and those of other entities and branches in our group of companies) for the following purposes: (i) to contact you and respond to your requests and enquiries; (ii) for business administration, including statistical analysis; (iii) to personalize your visit to the Sites; (iv) for fraud prevention and detection and to comply with applicable laws, regulations or codes of practices; and (v) in the case of Investment Information only, for the purpose of our investment relationship, including without limitation, to ensure that you are an accredited investor and to meet our KYC and AML checks.

We may ask for your consent for processing your personal information in relation to the Sites, in certain cases. You should be aware that you are entitled under Data Protection Law to withdraw your consent where that has been given, at any time.  If you do this and we have no alternative lawful reason to process your personal data, this may affect our ability to provide you with rights to use the Sites.

In summary, we need certain categories of personal data in order to provide you with the Sites. Certain other personal data is processed for our legitimate interests in cases where this does not result in prejudice to you. Certain other personal data is processed based on consent.  

2. HOW WE USE COOKIES AND OTHER TRACKING TECHNOLOGY TO COLLECT INFORMATION.

We, and our third party partners, automatically collect certain types of usage information when you visit our Service, read our emails, or otherwise engage with us. We typically collect this information through a variety of tracking technologies, including cookies, web beacons, embedded scripts, location-identifying technologies, file information and similar technology (collectively, “tracking technologies”).  For example, we collect information about your device and its software, such as your IP address, browser type, Internet service provider, platform type, device type, operating system, date and time stamp, a unique ID that allows us to uniquely identify your browser, mobile device or your account, and other such information. We also collect information about the way you use our Service, for example, the site from which you came and the site to which you are going when you leave our Site, the pages you visit, the links you click, how frequently you access the Service, whether you open emails or click the links contained in emails, whether you access the Service from multiple devices, and other actions you take on the Service. When you access our Service from a mobile device, we may collect unique identification numbers associated with your device or our mobile application (including, for example, a UDID, Unique ID for Advertisers (“IDFA”), Google AdID, or Windows Advertising ID), mobile carrier, device type, model and manufacturer, mobile device operating system brand and model, phone number, and depending on your mobile device settings, your geographical location data, including GPS coordinates (e.g., latitude and/or longitude) or similar information regarding the location of your mobile device, or we may be able to approximate a device’s location by analyzing other information, like an IP address.  We may collect analytics data, or use third-party analytics tools, to help us measure traffic and usage trends for the Service and to understand more about the demographics of our users. We may also work with third party partners to employ technologies, including the application of statistical modeling tools, which permit us to recognize and contact you across multiple devices. Although we do our best to honor the privacy preferences of our users, we are unable to respond to Do Not Track signals set by your browser at this time.

We use or may use the data collected through tracking technologies to:  (a) remember information so that you will not have to re-enter it during your visit or the next time you visit the Site or Service; (b) provide custom, personalized content and information, including targeted content and advertising; (c) recognize and contact you across multiple devices; (d) provide and monitor the effectiveness of our Service; (e) monitor aggregate metrics such as total number of visitors, traffic, usage, and demographic patterns on our Service; (f) diagnose or fix technology problems; and (g) otherwise to plan for and enhance our Service.

If you would prefer not to accept cookies, most browsers will allow you to: (i) change your browser settings to notify you when you receive a cookie, which lets you choose whether or not to accept it; (ii) disable existing cookies; or (iii) set your browser to automatically reject cookies.  Please note that doing so may negatively impact your experience using the Service, as some features and services on our Service may not work properly. Depending on your mobile device and operating system, you may not be able to delete or block all cookies. You may also set your e-mail options to prevent the automatic downloading of images that may contain technologies that would allow us to know whether you have accessed our e-mail and performed certain functions with it.

We and our third party partners may also use cookies and tracking technologies for advertising purposes. For more information about tracking technologies, please see “Third Party Tracking and Online Advertising” below.

3. SHARING OF YOUR INFORMATION.

We may share your personal information in the instances described below.  For further information on your choices regarding your information, see the “Control Over Your Information” section below.

We may share your personal information with:

Other companies and brands owned or controlled by Hedera Hashgraph, LLC, including but not limited to Swirlds, Inc.  These companies will use your personal information in the same way as we can under this Privacy Policy;

Third parties at your request. For example, if you indicate that you are interested in the Distributed Ledger Foundation and/or the Free + Fair voting initiative, we may share your information with the Distributed Ledger Foundation so that you can receive more information from them;

Third-party vendors and other service providers that perform services on our behalf, as needed to carry out their work for us, which may include identifying and serving targeted advertisements, providing mailing services, providing tax and accounting services, contest fulfilment, web hosting, or providing analytic services;

The public when you provide feedback or user content on our Site or Service. For example, if you post user content on our blog or comment on our social media sites, your information, such as your first name, last initial, state of residence, and your comments, may be displayed on our Site and Service or on our social media pages;

Other parties in connection with a company transaction, such as a merger, sale of company assets or shares, reorganization, financing, change of control or acquisition of all or a portion of our business by another company or third party, or in the event of a bankruptcy or related or similar proceedings; and

Third parties as required by law or subpoena or if we reasonably believe that such action is necessary to (a) comply with the law and the reasonable requests of law enforcement; (b) to enforce our Terms of Use or to protect the security or integrity of our Service; and/or (c) to exercise or protect the rights, property, or personal safety of Hedera, our visitors, or others.

We may also share information with others in an aggregated or otherwise anonymized form that does not reasonably identify you directly as an individual.

4. CONTROL OVER YOUR INFORMATION.

User Information Settings.  You may update the information that you have provided to us, such as your contact information, interests, developer status, investment interest by emailing us at [email protected].

How to control your communications preferences.  You can stop receiving promotional email communications from us by clicking on the “unsubscribe link” provided in such communications.  We make every effort to promptly process all unsubscribe requests. You may not opt out of service-related communications (e.g., changes/updates to features of the Service, technical and security notices).

Modifying or deleting your information.  If you have any questions about reviewing, modifying, or deleting your information, you can contact us directly at [email protected].  We may not be able to modify or delete your information in all circumstances.  

5. THIRD PARTY TRACKING AND ONLINE ADVERTISING.

We may share, or we may permit third party online advertising networks, social media companies and other third party services, to collect, information about your use of our website over time so that they may play or display ads on our Service, on other devices you may use, and on other websites, apps or services, including on Facebook.  Typically, though not always, the information we share is provided through cookies or similar tracking technologies, which recognize the device you are using and collect information, including click stream information, browser type, time and date you visited the site and other information. We may also share a common account identifier (such as an email address or user ID) to help us identify you across devices. We and our third party partners use this information to research the market and/or make the advertisements you see online more relevant to your interests.   As noted above, depending on your browser or mobile device, you may be able set your browser to delete or notify you of cookies and other tracking technology by actively managing the settings on your browser or mobile device. You may also be able to limit interest-based advertising through the settings on your mobile device by selecting “limit ad tracking” (iOS) or “opt-out of interest based ads” (Android). To learn more about interest-based advertising and how you may be able to opt-out of some of this advertising, you may wish to visit the Network Advertising Initiative’s online resources, at http://www.networkadvertising.org/choices, and/or the DAA’s resources at www.aboutads.info/choices, and you may also adjust your ad preferences through your Facebook settings.   Some of these opt-outs may not be effective unless your browser is set to accept cookies. Furthermore, if you use a different device, change browsers or delete the opt-out cookie, you may need to perform the opt-out task again. You may also be able to opt-out of some – but not all – interest-based ads served by mobile ad networks by visiting http://youradchoices.com/appchoices  and downloading the mobile AppChoices app.     

6. HOW WE STORE AND PROTECT YOUR INFORMATION

Data storage and transfer.  Your information collected through our Site may be stored and processed in the United States or any other country in which Hedera or its affiliates or service providers maintain facilities.  If you are located in the European Union or other regions with laws governing data collection and use that may differ from U.S. law, please note that we may transfer information, including personal information, to a country and jurisdiction that does not have the same data protection laws as your jurisdiction, and we will take all steps reasonably necessary to ensure that any personal data are treated securely and in accordance with this Privacy Policy. Hedera is currently in the process of preparing to self-certify its compliance under Privacy Shield. Hedera intends to self-certify under Privacy Shield at the soonest practicable opportunity. Although we have not yet self-certified under Privacy Shield, Hedera agrees to conduct its activities in accordance with the requirements of the Privacy Shield Principles. To the extent that Hedera processes any personal data protected by EU Data Protection Laws and/or that originates from the EEA, to the United States, you acknowledge that Hedera shall be deemed to provide adequate protection (within the meaning of Data Protection Laws) for any such personal data as though it has self-certified its compliance with Privacy Shield. Hedera agrees to protect such personal data in accordance with the requirements of the Privacy Shield Principles. If Hedera is unable to comply with this requirement, we shall inform you.

For individuals based in the EU, we store personal data for as long as necessary to fulfill the purposes for which we collect the data (see above under "WHAT INFORMATION DO WE COLLECT AND FOR WHAT PURPOSE?") and in accordance with our legal obligations and legitimate business interest, except if required otherwise by law.

Keeping your information safe.  We care about the security of your information and employ physical, administrative, and technological safeguards designed to preserve the integrity and security of all information collected through our Site and Service.  However, no security system is impenetrable and we cannot guarantee the security of our systems 100%. In the event that any information under our control is compromised as a result of a breach of security, we will take reasonable steps to investigate the situation and, where appropriate, notify those individuals whose information may have been compromised and take other steps, in accordance with any applicable laws and regulations.

7. CHILDREN’S PRIVACY

Hedera does not knowingly collect or solicit any information from anyone under the age of 13 on this Service.  In the event that we learn that we have inadvertently collected personal information from a child under age 13, we will delete that information as quickly as possible.  If you believe that we might have any information from a child under 13, please contact us at [email protected]hashgraph.com.  

8. LINKS TO OTHER WEB SITES AND SERVICES

The Services may contain links to and from third party websites of our business partners, advertisers, and social media sites and our users may post links to third party websites.  If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for their policies.  We strongly recommend that you read their privacy policies and terms and conditions of use to understand how they collect, use, and share information. We are not responsible for the privacy practices or the content on the websites of third party sites.

9. EU PRIVACY RIGHTS

If you are located in the EU, you have the following rights in respect of your personal data that we hold:

a. Right of access. The right to obtain access to your personal data.

b. Right to rectification. The right to obtain rectification of your personal data without undue delay where that personal data is inaccurate or incomplete.

c. Right to erasure. The right to obtain the erasure of your personal data without undue delay in certain circumstances, such as where the personal data is no longer necessary in relation to the purposes for which it was collected or processed.

d. Right to restriction. The right to obtain the restriction of the processing undertaken by us on your personal data in certain circumstances, such as where the accuracy of the personal data is contested by you, for a period enabling us to verify the accuracy of that personal data.

e. Right to portability. The right to portability allows you to move, copy or transfer personal data easily from one organization to another.

f. Right to object. You have a right to object to processing based on legitimate interests and direct marketing.

If you wish to exercise one of these rights, please contact us using the contact details at the end of this Privacy Policy.

You also have the right to lodge a complaint to your local data protection authority. Further information about how to contact your local data protection authority is available at http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.  

10. HOW TO CONTACT US

If you have any questions about this Privacy Policy or the website, please contact us at [email protected].

11. CHANGES TO OUR PRIVACY POLICY

Hedera may modify or update this Privacy Policy from time to time to reflect the changes in our business and practices, and so you should review this page periodically. When we change this Privacy Policy in a material manner, we will update the ‘last modified’ date at the top of this page and notify you that material changes have been made to this Privacy Policy. If you object to any changes, you may close your account.