Privacy Policy
Last updated: 30 September 2025
1) Overview
This Privacy Policy explains how [Pastiland / Pastiland Studio] ("we," "us") collects, uses, and shares information when you use pastiland.com and related services (the "Site").
Because some features are on public blockchains, certain information (e.g., wallet addresses and transactions) is inherently public and cannot be erased by us.
2) Information we collect
a) You provide
- Contact information (e.g., email) if you subscribe or contact us.
- Content you submit (messages, files, comments).
b) Automatically collected
- Technical data: IP address, device/browser info, pages visited, timestamps, referring/exit pages.
- Cookies and similar technologies for preferences, session state, and analytics. See "Cookies" below.
c) Wallet & blockchain data
- Wallet address when you connect a wallet.
- On-chain data tied to your address (public by design), such as ownership, transfers, and transactions related to Pastiland NFTs.
d) From service providers
- Hosting, analytics, or marketplace partners may provide aggregated or pseudonymous metrics (e.g., page performance, referral counts).
3) How we use information
- Provide and operate the Site and its features (including wallet gating).
- Display artworks and metadata, including NFT ownership derived from public blockchains.
- Communicate with you, e.g., newsletters or replies to inquiries.
- Improve and secure the Site (debugging, analytics, fraud prevention).
- Comply with law and enforce our Terms.
4) Legal bases (EEA/UK)
If you are in the EEA/UK, we process personal data on these bases:
- Contract (to provide the Site you request),
- Legitimate interests (security, improvement, minimal analytics),
- Consent (newsletters, non-essential cookies),
- Legal obligation (record-keeping, compliance).
5) Sharing of information
We share information with:
- Service providers who help operate the Site (e.g., hosting like Vercel, analytics, email providers, Web3 SDKs such as thirdweb/wagmi/RainbowKit). They act under contractual obligations.
- Public blockchains and marketplaces as part of normal NFT operation (data you broadcast or that is publicly queryable).
- Compliance and safety: regulators, law enforcement, or others when required by law or to protect rights and safety.
- Business transfers: in a merger, acquisition, or asset sale, data may transfer as permitted by law.
We do not sell your personal information.
6) Cookies & tracking
We may use:
- Strictly necessary cookies (security, preferences, session).
- Analytics/performance cookies (site usage, error diagnostics).
- Optional features (e.g., remembering theme choice).
You can manage cookies via your browser settings. Where required, we will obtain consent for non-essential cookies and provide a preferences banner.
7) Analytics
We may use privacy-respecting analytics or mainstream tools configured to minimize personal data (e.g., IP truncation). Providers have their own terms and privacy policies.
8) Data retention
We retain personal data only as long as needed for the purposes above, to comply with legal obligations, and to resolve disputes. Blockchain data is public and persistent; we cannot modify or delete it.
9) International transfers
We may process data outside your country. Where required, we use appropriate safeguards (e.g., Standard Contractual Clauses) to protect personal data transferred internationally.
10) Your rights
Depending on your location, you may have rights to:
- access, correct, or delete personal data;
- object to or restrict certain processing;
- data portability; and
- withdraw consent where processing is based on consent.
To exercise rights, contact @pastiland. We may need to verify your request. We cannot alter public blockchain records or data held solely by third parties.
California (CCPA/CPRA): you have rights to know, delete, and opt out of "selling" or "sharing" personal data (we do not sell data). You also have the right to non-discrimination for exercising these rights.
11) Security
We use reasonable technical and organizational measures to protect personal data. No method of transmission or storage is 100% secure. Wallets and private keys are your responsibility. We will never ask for your seed phrase.
12) Children's privacy
The Site is not intended for children under 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal data from children. If you believe a child has provided data, contact us to request deletion where possible.
13) Third-party services & links
The Site may link to or integrate third-party services (wallets, marketplaces, social platforms). Their practices are governed by their own policies. We are not responsible for third-party privacy practices.
14) Do Not Track
Some browsers send "Do Not Track" signals. There is no uniform standard, so we do not respond to such signals. We will honor applicable legal requirements and your explicit consent choices.
15) Changes to this policy
We may update this Privacy Policy. The "Last updated" date reflects the latest version. Material changes will be posted on the Site. Continued use means you accept the updated policy.