Last Updated: September 21, 2022
This privacy policy (“Privacy Policy”) describes how Octav Labs Inc. (“our”, “us” or “we”) collects, uses, shares, and store personal information of clients and users of its website https://octav.fi/, web application, products and services (collectively, the “Services”) on or in which it is posted, linked, or referenced.
By using the Services, you accept the terms of this Privacy Policy and our Terms of Use, and consent to our collection, use, disclosure, and retention of your information as described in this Privacy Policy. If you have not done so already, please also review our Terms of Use. The Terms of Use contain provisions that limit our liability to you and require you to resolve any dispute with us on an individual basis and not as part of any class or representative action. IF YOU DO NOT AGREE WITH ANY PART OF THIS PRIVACY POLICY OR OUR TERMS OF USE, THEN PLEASE DO NOT USE ANY OF THE SERVICES.
Please note that this Privacy Policy does not apply to information collected through third-party websites or services that you may access through the Services or that you submit to us through email or other electronic message or offline. We encourage you to carefully review the privacy policies of any third-party website you access.
Information You Give Us. Information we collect from you may include:
Third-Party Sources. We may receive personal information about you from third-party sources. For example, third-party wallet providers provide us with your blockchain public key and certain information you choose to share with those wallet providers. We may add this to the data we have already collected from or about you through our Services.
Automatic Data Collection. We may automatically record certain information about how you use our Services (we refer to this information as “Log Data”). Log Data may include information such as a user’s Internet Protocol (IP) address, device and browser type, operating system, the pages or features available through our Services to which a user browsed and the time spent on those pages or features, the frequency with which the Services are used by a user, search terms, the links made available through the Services that a user clicked on or used, and other statistics. We use this information to improve and enhance the Services by expanding its features and functionality and tailoring it to our users’ needs and preferences.
We may use cookies, local storage or similar technologies to analyze trends, administer the pages made available through the Services, track users’ movements around the pages made available through the Services, and to gather demographic information about our user base as a whole. Users can control the use of cookies and local storage at the individual browser level. For more information, please see our Cookies Policy.
Information We Will Never Collect. We will never ask you to share your blockchain private keys or wallet seed phrase. Never trust anyone or any site that asks you to enter your blockchain private keys or wallet seed phrase.
We use the collected data for various purposes or as otherwise described at the time of collection:
Service Delivery. We use your personal information to:
Compliance and Protection. We may use your personal information to:
With Your Consent. We may use, share or collect your personal information with your consent, such as when required by law.
We may share your data with the following parties and as otherwise described in this Privacy Policy or at the time of collection.
Affiliates. We may disclose your personal information to our subsidiaries and corporate affiliates (i.e., our family of companies that are related by common ownership or control) for purposes consistent with this Privacy Policy.
Authorities and Others. Law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate for the “Compliance and Protection” purposes described above.
Blockchain. Given that the blockchain is a public record, the transaction records associated with any transaction you make using the Services will be publicly available on the blockchain.
Business Transfers. We may share personal information when we do a business deal, or negotiate a business deal, involving the sale or transfer of all or a part of our business or assets. These deals can include any merger, financing, acquisition, reorganization, divestiture, or in the event of bankruptcy or dissolution.
Professional Advisors and Service Providers. We may share information with those who need it to work for us. These recipients may include third-party companies and individuals to administer and provide the Services on our behalf, as well as lawyers, bankers, auditors, and insurers.
We retain information we collect as long as it is necessary and relevant to fulfill the purposes outlined in this Privacy Policy. In addition, we retain personal information to comply with applicable law where required, prevent fraud, resolve disputes, troubleshoot problems, assist with any investigation, enforce our Terms of Use, and other actions permitted by law. To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements.
In some circumstances we may anonymize your personal information (so that it can no longer be associated with you) in which case we may use this information indefinitely without further notice to you.
We employ industry standard security measures designed to protect the security of all information submitted through the Services. However, the security of information transmitted through the internet can never be guaranteed. We are not responsible for any interception or interruption of any communications through the internet or for changes to or losses of data. Users of the Services are responsible for maintaining the security of any password, blockchain private key, biometrics, user ID or other form of authentication involved in obtaining access to password protected or secure areas of any of our digital services. In order to protect you and your data, we may suspend your use of any of the Services, without notice, pending an investigation, if any breach of security is suspected.
You have the following rights with respect to your personal information:
Please note that deletion of your personal information may make it impossible for you to use the website or the Services.
We do not intentionally gather personal information from visitors who are at the age of minority in your country of residence. Our Terms of Use require all users to be at the age of majority in the country of their residence. If a minor submits personal information to us, we will attempt to delete the information as soon as possible. If you believe that we might have any personal information from a minor, please contact us at info@octav.fi.
This Privacy Policy and our practices in general are designed to be in compliance with Canada’s Personal Information Protection and Electronic Documents Act (S.C. 2000, c. 5) and Quebec’s An Act Respecting the Protection Of Personal Information in the Private Sector (R.S.Q. c. P- 39.1).
We have offices outside of the EU and your personal information may be transferred to, and processed in or from, Canada or other locations outside of your state, province, country or other governmental jurisdiction where privacy laws may not be as protective as those in your jurisdiction.
EU users should read the important information provided below about the transfer of personal information outside of the European Economic Area.
We may change this privacy at any time. We encourage you to periodically review this page for the latest information about our privacy practices. If we make any changes, we will change the Last Updated date above.
Any modifications to this Privacy Policy will be effective upon our posting of the new terms and/or upon implementation of the changes to the Services (or as otherwise indicated at the time of posting). In all cases, your continued use of the Services after the posting of any modified Privacy Policy indicates your acceptance of the terms of the modified Privacy Policy.
If you have any question or comment about this Privacy Policy, please do not hesitate to contact us at info@octav.fi.
Under California Civil Code Section 1789.3, California users are entitled to the following consumer rights notice: California residents may reach the Complaint Assistance Unit of the Division of Consumer Services of the California Department of Consumer Affairs by mail at 1625 North Market Blvd., Sacramento, CA 95834, or by telephone at (916) 445-1254 or (800) 952-5210.
This section provides additional details about the personal information we collect about California consumers and the rights afforded to them under the California Consumer Privacy Act or “CCPA”.
For more details about the personal information we collect from you, please see the “What we Collect” section above. We collect this information for the business and commercial purposes described in the “Use of Personal Information” section above. We share this information with the categories of third parties described in the “Disclosures of Your Data” section above. We do not sell (as such term is defined in the CCPA) the personal information we collect (and will not sell it without providing a right to opt out). Please refer to our Cookies Policy for more information regarding the types of third-party cookies, if any, that we use.
Subject to certain limitations, the CCPA provides California consumers the right to request to know more details about the categories or specific pieces of personal information we collect (including how we use and disclose this information), to delete their personal information, to opt out of any “sales” that may be occurring, and to not be discriminated against for exercising these rights.
California consumers may make a request pursuant to their rights under the CCPA by contacting us at info@octav.fi. Please note that you must verify your identity and request before further action is taken. As a part of this process, government identification may be required. Consistent with California law, you may designate an authorized agent to make a request on your behalf. In order to designate an authorized agent to make a request on your behalf, you must provide a valid power of attorney, the requesters’ valid government issued identification, and the authorized agent’s valid government issued identification.
The information provided in this notice applies only to individuals in the European Economic Area, Switzerland, and United Kingdom (collectively, “EU”) and “personal information” as used in this Privacy Policy is equivalent to “personal data” as defined in the European Union General Data Protection Regulation (GDPR).
Sensitive Data. Some of the information you provide us may constitute sensitive data as defined in the GDPR (also referred to as special categories of personal data), including identification of your race or ethnicity on government-issued identification documents.
Legal Basis for Processing. We only use your personal information as permitted by law. We are required to inform you of the legal basis of our processing of your personal information, which are described in the table below. If you have any questions about the legal basis under which we process your personal information, contact us at info@octav.fi.
PROCESSING PURPOSE & LEGAL BASIS
Use for New Purposes. We may use your personal information for reasons not described in this Privacy Policy, where we are permitted by law to do so and where the reason is compatible with the purpose for which we collected it. If we need to use your personal information for a related purpose, we will notify you and explain the applicable legal basis for that use. If we have relied upon your consent for a particular use of your personal information, we will seek your consent for any unrelated purpose.
Your Rights. Under the GDPR, you have certain rights regarding your personal information. You may ask us to take the following actions in relation to your personal information that we hold:
You can submit these requests by email to info@octav.fi. We may request specific information from you to help us confirm your identity and process your request. Applicable law may require or permit us to decline your request. If we decline your request, we will tell you why, subject to legal restrictions. If you would like to submit a complaint about our use of your personal information or response to your requests regarding your personal information, you may contact us at info@octav.fi or submit a complaint to the data protection regulator in your jurisdiction.
Cross-Border Data Transfer. We process personal data in Canada and data protection laws may be different from those in your country of residence. You consent to the transfer of your information, including personal information, to Canada as set forth in this Privacy Policy by using our Services.
Whenever we transfer your personal information out of the EU to Canada or countries not deemed by the European Commission to provide adequate level of personal information protection, the transfer will be based on a data transfer mechanism recognized by the European Commission as providing adequate protection for personal information.
Please contact us if you want further information on the specific mechanism used by us when transferring your personal information out of the EU.