Privacy Policy

Last updated on: 1st of August 2025

1. General Information

This AXYC AI Pets Privacy Policy (referred to as the "Privacy Policy" or "Policy") describes how AxyCoin (referred to as "Company", "AXYC AI Pets", "We", or "Us") collects, processes, uses, stores, and discloses personal information when you access or use our website, https://axyc.ai/ (referred to as the "Website"), or any related Services. It also explains your rights and options regarding your personal information.

We reserve the right to modify this Policy at any time. The most current version will always be accessible on this page. Your continued use of our Platform after changes have been made signifies your acceptance of those changes. Therefore, we recommend regularly reviewing the Policy for updates.

Any terms used in this Policy that are not defined in Section 2 should be interpreted according to the Terms of Use and applicable laws.

AxyCoin is dedicated to adhering to the Personal Data Protection Act of 2018 and all relevant Estonian laws, ensuring robust protection for the data you entrust to us. We regularly update our Privacy Policy to maintain these standards.

For other EU residents we adhere to the Regulation (EU) 2016/679, commonly known as the General Data Protection Regulation (GDPR), ensuring full compliance.

By using or accessing the Company Website or related Services, you acknowledge that you have read, understood, and agree to all the terms and conditions in this Policy. If you disagree with any part of this Policy, please do not use or access our Website or Services.

WE RECOMMEND THAT YOU READ THIS PRIVACY POLICY THOROUGHLY AND WITHOUT ANY LIMITATIONS. IT IS CRUCIAL THAT YOU FULLY COMPREHEND THE CONTENTS OF THIS POLICY TO ENSURE THAT YOUR PRIVACY RIGHTS ARE RESPECTED AND PROTECTED.

Please review this Policy thoroughly. For any questions, reach out to us using the contact information provided in the "Contact Us" section.

2. Definitions

  • "Consent" constitutes an unequivocal indication of agreement by the Data Subject to the Processing of their Personal Data.
  • "Controller" is an entity, either an individual or an organization, that holds the responsibility for determining the purposes, methods, and scope of Personal Data Processing, as well as addressing any related matters. In this Policy Controller is AxyCoin.
  • "Data Processing" or "Processing" means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
  • "Data Subject" is the individual whose Personal Data is being Processed.
  • "Personal Data" refers to any information that relates to an identified or identifiable individual. This includes information you provide to us directly, such as your name, email address, and contact details, as well as information that is collected automatically through your use of our Services, such as your IP address and device information.
  • "Transfer of Data" refers to the act of sharing, disclosing, or transmitting Personal Data, in any format and through any channel, within or across borders, to individuals or organizations other than the person to whom the data belongs, regardless of whether the recipients are specifically identified.
  • "Law" (or "Applicable Law") means all applicable laws, regulations, decrees, decisions, resolutions, orders, etc., of the state authorities of the Republic of Estonia having jurisdiction over AxyCoin, the User or their respective transactions.

The use of the above terms or other words in the singular, plural, capitalized and/or he/she or they are interchangeable and refer to the same thing.

3. Principles

When Processing your Personal Data, the company adheres to the following principles established by the Personal Data Protection Act of 2018:

  • legality and fairness – Personal Data are Processed legally and fairly;
  • purposefulness – Personal Data are collected for specified, explicit and legitimate purposes and they shall not be Processed in any manner which is incompatible with these purposes;
  • quality – Personal Data must be adequate and appropriate and must not be excessive given the purposes of the Data Processing;
  • accuracy – Personal Data must be accurate and, if necessary, kept up to date; reasonable measures are taken to ensure that any Personal Data which are inaccurate with respect to the purpose of Data Processing shall be erased or rectified without delay;
  • retention – Personal Data are retained in the format which enables to identify the data subject only until this is necessary for achievement of the purpose for which the Personal Data is Processed;
  • security – Personal Data are Processed in a manner that ensures appropriate security thereof, including protection against unauthorised or unlawful Processing and against accidental loss, destruction or damage, by means of implementing appropriate technical or organisational measures.

4. Administrative information

AxyCoin is the Controller and responsible for User's Personal Data. Controller is the natural or legal person, which, alone or jointly with others, determines the purposes and means of the Processing of Personal Data.

5. Sources of Personal Data

To ensure the best possible experience, we gather Personal Data from multiple sources when you use our Services. This allows us to understand your needs, customize our offerings, and enhance your overall experience. Here's an overview of where this information is collected from:

1. Information You Provide Directly:

  • Contact Information: Your full name, digital mailbox, residential address, and nationality.
  • Financial Information: Cryptocurrency wallet IDs, transaction history, trading details, and associated fees.
  • Transaction Records: Documentation of your interactions on our Platform, including actions taken, values involved, and precise timestamps.
  • Communications: Includes comments, survey responses, and support requests submitted through our help channels or social media platforms.

2. Automatically Collected Information:

  • Internet Identifiers: This includes your online alias, location data, browser profile, device details, and network addresses.
  • Usage and Diagnostic Data: Information about how you interact with our Services, such as actions taken, preferences, technical issues, and device details.
  • Cookies and Tracking Technologies: We collect data through tools like cookies and similar tracking methods. These tools, used by us and our authorized partners, help us remember your preferences, monitor your interactions with our Services, and understand how our Services are used. You can set your browser to reject cookies or alert you when they're sent, but some parts of our Services may not function properly if you do so. For more details, please refer to our Cookies Policy.

3. Personal Data from Third-Parties:

  • Personal Data Obtained from External Sources: Besides the information you provide, we may occasionally receive Personal Data about you from external sources, such as our affiliates or publicly accessible databases. This additional information may be combined with the data we collect through our Services to improve your experience and customize our offerings.

6. Purpose of Collection and Usage of information

The Company will utilize your information solely for the purposes outlined in this Policy, either with your Consent or as required by law. We may also use your Personal Data to support our legitimate business interests, provided this use is balanced and does not infringe on your rights and freedoms.

To improve your experience and fully deliver our Services, as described in our Terms of Use, we may Process your Personal Data for the following purposes:

1. According to Clauses (a) of Part 1 Art. 6 of GDPR

the Data Subject has given consent to the Processing of his or her Personal Data for one or more specific purposes.

2. According to Clauses (b) of Part 1 Art. 6 of GDPR

Processing is necessary for the performance of a contract to which the Data Subject is party or in order to take steps at the request of the Data Subject prior to entering into a contract. We process your Personal Data to fulfill our contractual obligations to you. This includes activities such as:

  • If you have made a purchase or contacted us for a service, we need your information to provide you with what you have asked for.
  • We may need to contact you for updates, confirmations, or to resolve any issues related to the provision of services to you.
  • Your payment information is necessary to complete transactions and ensure accurate billing.

3. According to Clauses (c) of Part 1 Art. 6 of GDPR

Processing is necessary for compliance with a legal obligation to which the Controller is subject.

  • We process your Personal Data to comply with our legal obligations under the Personal Data Protection Act of 2018 of Estonia. This may include Processing for purposes such as record-keeping, fulfilling regulatory reporting requirements, or responding to lawful requests from authorities.

4. According to Clauses (d) of Part 1 Art. 6 of GDPR

Processing is necessary in order to protect the vital interests of the Data Subject or of another natural person.

  • The purpose of this Personal Data Processing is to ensure the protection of the vital interests of the individual, or another natural person, when such protection is essential for their life or well-being. This means that in situations where there is a risk of harm or threat to life, Personal Data may be processed without consent to safeguard the individual's vital interests.

5. According to Clauses (e) of Part 1 Art. 6 of GDPR

Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller.

  • Specifically, we collect and use your Personal Data to ensure a fair, secure, and compliant gaming environment. This includes verifying your identity, preventing fraud, maintaining the integrity of our services, and ensuring that all players adhere to the rules and regulations of our gaming platform. By Processing your Personal Data, we aim to protect the broader interests of our gaming community, promote a safe online experience, and comply with applicable legal and regulatory requirements.

6. According to Clauses (f) of Part 1 Art. 6 of GDPR

Processing is necessary for the purposes of the legitimate interests pursued by the Controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the Data Subject which require protection of Personal Data, in particular where the Data Subject is a child.

  • Analyzing your game play and purchase history helps us send you targeted offers and discounts that match your interests, making your gaming experience more enjoyable.
  • We use Personal Data to understand how players interact with our website and games, allowing us to identify areas for improvement and provide you with better services.
  • Processing Personal Data helps us detect and prevent fraudulent activity, ensuring a secure and fair environment for all players.

7. Disclose of information

We may share your Personal Data to meet legal requirements, respond to requests from public or government authorities, or in legal proceedings. This also includes situations where it's necessary to prevent harm or safeguard our rights and assets. Whenever feasible, we will notify you before making such disclosures.

8. International Transfer of Personal Data

We strive to ensure that our third-party partners adhere to data protection standards comparable to those outlined in this Policy. However, the global nature of our Services means your Personal Data may be transferred to or accessed by entities located in jurisdictions with varying data protection laws.

To ensure your Personal Data is properly protected, we will only transfer it to a third country if the recipient meets one of the following criteria:

  1. The transfer is based on an adequacy decision by the European Commission, which has determined that the recipient country provides an adequate level of protection.
  2. In the absence of an adequacy decision, we have implemented appropriate safeguards and binding corporate rules to ensure the protection of your data.

9. Data Subject Rights

This section provides a detailed summary of your rights as a Data Subject according to data protection regulations. It includes instructions on how to exercise these rights regarding the Personal Data we handle. We recommend reviewing your rights thoroughly.

If you have any questions, please contact us through the details available in the "Contact Us" section.

RightMeaning
Access right

Data subjects have the right to obtain a confirmation from the Processor of Processing of their Personal Data. At the request of the data subject, the Processor of Personal Data shall communicate the following to the data subject:

  • the Personal Data concerning the data subject and the categories of the Personal Data concerned;
  • the information available about the origin of the Personal Data;
  • the purposes of and legal basis for Processing of Personal Data;
  • the recipients or the categories thereof to whom Personal Data of the data subject have been disclosed;
  • the intended retention period of the Personal Data or the bases for determining the retention period;
  • the right to apply to the Controller for rectification of the Personal Data of the data subject, erasure or restriction of Processing thereof;
  • the right to file a complaint with the Estonian Data Protection Inspectorate and the contact details of the Estonian Data Protection Inspectorate.

In the cases provided by law, the Controller may also transmit the information provided upper to data subjects later, restrict the transmission thereof or refuse to issue it if this may prevent or impair prevention, detection or proceedings of offences or execution of punishments; damage the rights and freedoms of other persons; endanger the national security; endanger protection of public order; hinder formal investigation or proceedings.

The right to be informed

The Controller must respond to data subject requests in a clear, understandable, and accessible manner. The response will be provided in the format requested by the data subject if feasible.

The Controller will notify the data subject of the actions taken in response to their request within one month of receiving it.

The Controller may charge reasonable fees for handling the request as permitted by law or refuse to act if the request is deemed unreasonable or excessive.

The Controller will verify the identity of the data subject and ensure they are informed of their rights, including accessing, correcting, or deleting their Personal Data.

The right to have an error rectified

Data subjects have the right to demand from the Processor rectification of any inaccurate Personal Data based on facts concerning the data subject.

In the case of rectification of Personal Data, the Controller is required to immediately notify a competent authority, from which the incorrect Personal Data were received, of the rectification and the subject matter of the rectification.

If any Personal Data have been rectified the Controller is required to notify the recipients to whom the data had been earlier transmitted.

Right to be forgotten

Data subjects have the right to demand from the Controller erasure of the Personal Data collected if:

  • the Processing of Personal Data is not permitted pursuant to law;
  • the principles of Processing of Personal Data were not taken into account upon Processing of the Personal Data; or
  • the Controller is obliged to erase the data in order to comply with any obligations under the law, judgment, international agreement or other binding agreements.

The Controller shall restrict Processing of Personal Data instead of erasing thereof if the data subject contests the accuracy of the Personal Data and the accuracy or inaccuracy thereof cannot be ascertained; or the Personal Data must be retained for verification purposes.

If the Controller has implemented, instead of erasure of Personal Data, restriction of Processing of Personal Data, the Controller must notify the data subject of removal of such restriction.

Right to appeal

If any data subject finds that the rights of the data subject are violated upon Processing of Personal Data, the data subject has the right to address the Estonian Data Protection Inspectorate with a complaint.

The Estonian Data Protection Inspectorate shall notify the data subject of the decision made based on the data subject's complaint and the right to have recourse to courts in order to contest the decision of the Estonian Data Protection Inspectorate.

If a competent supervisory authority of another Member State of the European Union has jurisdiction in solving the complaint of the data subject, the Estonian Data Protection Inspectorate shall refer the data subject to the competent supervisory authority of the other Member State of the European Union for filing the complaint.

10. Data Security

Please note that while we strive to protect your data, absolute security cannot be guaranteed for internet-based systems. We use various measures to safeguard your information, but cannot ensure complete security of your data, searches, or communications on our platform. It is your responsibility to secure your Personal Data and cryptocurrency wallets while using our Services.

We implement a multi-layered security approach, incorporating electronic, managerial, and technical safeguards to prevent loss, misuse, unauthorized access, alteration, or destruction of your Personal Data.

We prioritize your privacy and are dedicated to safeguarding your personal information from unauthorized access and threats. Our robust security measures include:

  • Two-Factor Authentication (2FA): Enhances account security by requiring an additional verification step beyond your password.
  • Access Control: Data is accessible only to authorized personnel who are contractually obligated to maintain confidentiality.
  • Pseudonymization and Encryption: We use encryption and pseudonymization techniques to protect your data from unauthorized access.
  • Regular Security Audits: Our systems are routinely inspected for vulnerabilities and potential breaches.
  • Secure Data Storage: Your data is stored on secure servers, either managed by us or our trusted partners, in highly protected data centers.

We cannot be held responsible for any unauthorized access or circumvention of the privacy settings or security measures applied to our Services.

11. Dealing with third parties

Our Services may include links to external websites, apps, or resources that we do not control. This Privacy Policy only covers our Services and does not apply to these third-party sites. We recommend reviewing the privacy policies and terms of any external sites or apps you visit through our Services, as we are not responsible for their content or practices.

12. Online tracking

We use cookies to improve your experience on our site. For more details, please review our Cookies Policy.

13. Policy changes

This Policy may be updated from time to time. The "Last Updated" date at the top of this page reflects the date of the latest changes. We advise you to regularly review this Policy to stay informed about how we manage your Personal Data. By continuing to use the AXYC AI Pets Website and/or Services after any updates, you agree to the revised Policy. If you do not agree with the changes, please discontinue use of our Website and Services.

14. Do Not Track

Do Not Track (DNT) is a privacy feature advocated by regulatory and industry groups to allow users to manage the tracking of their online activities. Many browsers include a DNT option in their settings, enabling users to indicate a preference against having their behavior tracked across websites.

When DNT is enabled, it may prevent certain cookies and tracking technologies from being used, depending on how websites respond to DNT signals. This could affect website functionality, such as recognizing returning users, saving login information, or providing full services. Users should check their browser settings to understand the impact of DNT and make informed decisions about their online privacy.

15. Contact us

For any inquiries or concerns regarding this Privacy Policy, please do not hesitate to contact us via email at info@axyc.ai