Privacy Statement
Last updated: 2025-10-15
Introduction
Chainflake.com (Chainflake, we, us) values your privacy, particularly in managing n managing IPv4 Tokens and IPv6 Tokens. This Privacy Statement explains how we collect, use, share, and protect personal data.
Chainflake is operated by DGTL TECH LLC, a limited liability company organized under the laws of the State of Wyoming, United States.
We comply with applicable U.S. federal and state privacy laws, including the Wyoming Data Breach Notification Statute (Wyo. Stat. § 40-12-501 et seq.), and, where applicable, the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
Data Collection
We collect only the data necessary to operate our services, including:
- identification and contact information (name, email, organization, phone);
- account and transactional data (IP prefix identifiers, token ownership, blockchain addresses, and related metadata);
- technical data (IP address, browser type, usage logs).
Legal Bases for Processing
Depending on jurisdiction, we process data under one or more of the following lawful bases:
- Performance of a contract — to provide and administer our services;
- Legal obligation — to comply with applicable laws and regulatory requirements;
- Legitimate interests — to ensure service integrity, prevent abuse, and maintain network security (assessed through a balancing test);
- Consent — where legally required, such as for non-essential cookies or optional communications.
Purpose of Data Use
Personal data is used solely to:
- verify identity and authorize access;
- allocate and manage network resources;
- comply with regulatory or legal obligations;
- maintain platform security and operational continuity;
- prevent fraud, abuse, and unauthorized activity.
We do not sell, rent, or commercially trade personal data.
Data Sharing
We may share data with:
- Regional Internet Registries (RIRs) such as RIPE NCC or ARIN, for IP resource management;
- Technical service providers acting as data processors under written agreements;
- Regulatory or law enforcement authorities, where required by law.
Cross-Border Data Transfers
If data of EU or EEA residents is transferred to the United States or other countries without an adequacy decision, we rely on:
- the EU–U.S. Data Privacy Framework (where applicable); or
- Standard Contractual Clauses (SCCs) approved by the European Commission; or
- other legally recognized safeguards.
We maintain records of such transfers and ensure equivalent protection of personal data.
Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined above, unless a longer retention period is required by law.
When retention is no longer necessary, data is securely deleted or anonymized.
Security
We implement appropriate technical and organizational measures to protect data against unauthorized access, alteration, loss, or destruction, including:
- encryption in transit and at rest;
- strict access controls and role-based permissions;
- regular vulnerability and security assessments;
- personnel training and confidentiality agreements.
User Rights
Your rights depend on your jurisdiction:
Under U.S. Law
Residents of states with comprehensive privacy laws (such as California, Colorado, Virginia, Connecticut, Utah) may have rights to:
- request access to their personal data;
- request correction or deletion;
- opt out of sale or sharing of data;
- not be discriminated against for exercising these rights.
Under GDPR (EU / EEA Residents)
You have the right to:
- Access — obtain a copy of your personal data;
- Rectification — correct inaccurate or incomplete data;
- Erasure (“Right to be Forgotten”) — delete data when it is no longer needed;
- Restriction — limit processing under certain conditions;
- Objection — object to processing based on legitimate interests;
- Portability — receive your data in a structured, machine-readable format;
- Withdraw Consent — withdraw previously given consent at any time;
- Not be subject to automated decision-making without human involvement.
Requests should be sent to privacy@chainflake.com. We may request identity verification before processing your request.
We cannot modify or remove information permanently recorded on public blockchains (e.g., transaction identifiers or wallet addresses).
Data Breach Notification
If a data breach occurs that may pose a risk to individuals’ rights or freedoms, we will:
- notify affected users and, where required, competent supervisory authorities;
- under GDPR, notify the relevant authority within 72 hours;
- under Wyoming law, notify affected residents without unreasonable delay, consistent with law enforcement needs.
Cookies
Chainflake uses cookies and similar technologies to:
- manage sessions and authentication;
- maintain preferences and technical performance;
- collect anonymized analytics to improve functionality.
Essential cookies are required for service operation. Non-essential cookies (such as analytics) are used only with consent, where legally required.
You can adjust or withdraw consent through your browser settings. Disabling cookies may affect certain features.
We do not use cookies for behavioral advertising and do not share cookie data with third parties.
Third-Party Cookies
Embedded third-party content may set cookies under their own policies. We recommend reviewing those third-party privacy statements.
Children’s Data
Our services are not directed at children under 13 years of age (or under 16 within the EU).
We do not knowingly collect data from minors. If you believe a child has provided data, please contact us for deletion.
Changes to this Policy
We may update this Privacy Statement periodically.
Significant updates will be communicated via our official channels (𝕏, Telegram, or website notice).
Your continued use of the Services constitutes acceptance of the updated policy.
Governance
Legal Entity: DGTL TECH LLC
Jurisdiction: State of Wyoming, United States
Contact: privacy@chainflake.com
Postal address: 30 N Gould St Ste #46339, Sheridan, WY 82801, USA
Supervisory Contacts
- United States: Federal Trade Commission (FTC) or your State Attorney General.
- European Union: Your local Data Protection Authority (DPA).
We encourage you to contact us first so we can address your concern directly and efficiently.