CCPA Privacy Notice

Last Updated: November 27, 2022

  1. INTRODUCTION

    This CCPA Privacy Notice governs the manner in which we process information collected from users who reside in the State of California ("Consumers" as defined under the CCPA, and will be referred to herein as "you"). Any terms defined in the CCPA have the same meaning when used in this Notice. Furthermore, this Notice is an integral part of our Privacy Policy and thus, definitions used herein but not defined herein shall have the meaning ascribed to them in our Privacy Policy.

    To learn more about your California privacy rights, please visit https://oag.ca.gov/privacy/privacy-laws.

  2. CATEGORIES OF PERSONAL INFORMATION

    When you access and use the Platform and use our services, we collect certain data regarding such use. This data includes "Personal Information" that is defined under the CCPA as any information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer, household or device as detailed in the table below.

    Please see below a table detailing the categories of Personal Information that we collect (and have collected within the last 12 months):

    CategoryExamples of Personal InformationCollectedRetention Period

    A. Identifiers.

    We process such data when a you interact with our Platform through third party cookies for analytic, and fraud prevention purposes.

    Yes

    The information will be retained for the time necessary to fulfill the purpose for which it was collected. For example, we will retain your name and email provided as part of any correspondence between you and Artfora in accordance with the applicable statute of limitations.

    B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).

    A name, signature, physical characteristics or description, address, telephone number, passport number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information.

    Some personal information included in this category may overlap with other categories.

    Yes - without any Sensitive Personal Information as detailed below.

    In accordance with the applicable statute of limitations (e.g., at least seven years).

    C. Protected classification characteristics under California or federal law.

    Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).

    No

    N/A

    D. Commercial information.

    Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.

    Yes

    The information will be retained for the time necessary to fulfill the purpose for which it was collected. For example, we retain such information to verify the NFT transaction from your cryptocurrency wallet platform.

    E. Biometric information.

    Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.

    No

    N/A

    F. Internet or other similar network activity.

    Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement.

    Yes

    Cookies and IP data may be kept as long as you are customer of our Services, or until you have withdrawn your consent. Note that online identification data collected through third parties may be kept for different periods in accordance with such third party's policies.

    G. Geolocation data.

    Physical location or movements.

    No

    N/A

    H. Sensory data.

    Audio, electronic, visual, thermal, olfactory, or similar information.

    No

    N/A

    I. Professional or employment-related information.

    Current or past job history or performance evaluations.

    No

    N/A

    J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).

    Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.

    No

    N/A

    K. Inferences drawn from other personal information.

    Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

    No

    N/A

    L. Sensitive Personal Information

    Any information about a person's health, sexual orientation, financial status and credit rating, social security number and other similar governmental identifiers, genetic, ethnic or racial data, precise location, biometric information or the contents of a any mail, email, and text messages unless we were the intended recipient of the communication.

    No

    N/A

  3. DISCLOSURES OF PERSONAL INFORMATION FOR A BUSINESS PURPOSE

    In the preceding twelve (12) months, the Company has disclosed the following categories of Personal Information for a business purpose:

    • Category A: Identifiers;
    • Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) - without any Sensitive Personal Information;
    • Category D: Commercial information.
    • Category F: Internet or other similar network activity.

    We disclose your Personal Information for a business purpose to the following categories of third parties: service providers (e.g., Cloud Service Provider, CRM provider, etc.) and business partners (i.e. Artists).

    When we disclose Personal Information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that Personal Information confidential and not use it for any purpose except performing the contract.

  4. CALIFORNIA CONSUMER RIGHTS

    California law grants consumers certain rights and imposes restrictions on particular business practices as set forth below. California consumers have the right to request that we disclose what personal information we collect, use, disclose, and sell about you.

    Right to Opt-out of Sale of Personal Information (“Do Not Sell”) - See in the designated section below.

    Requests for Copy, Deletion, Correction and Right to Know - Subject to certain exceptions, California consumers have the right to make a request pertaining to either Accessing, Copying, Correcting or Deleting their data. As those rights are not absolute, we wouldn't always be required to comply with your request. However, we will always address your inquiry and endeavor to explain the reasoning for our decision in case your request will be denied. Please see “Submitting Requests” for instructions on how to exercise your rights.

    Submitting Requests. You can exercise your rights by emailing us at info@artfora.com, or filling out the designated DSR form on our Platform. Once you submit your request, we will take steps to attempt to verify your identity. We will seek to match the information in your request to the personal information we maintain about you. As part of our verification process, we may ask you to submit additional information and use identity verification services to assist us. Please understand that, depending on the type of request you submit, to protect the privacy and security of your personal information, we will only complete your request where we are satisfied that we have verified your identity to an appropriate degree of certainty. We will make every reasonable effort to respond to you within 45 days after receiving a verified request. If we cannot meet this timescale, we will respond as soon as possible over the next 45-day period.

  5. SALE OF PERSONAL INFORMATION

    In the preceding twelve (12) months, we have not sold Personal Information

  6. SENSITIVE PERSONAL INFORMATION, PROFILING AND AUTOMATED DECISION MAKING

    We are not using nor sharing any Sensitive Personal Information. Further, as part of the services on the Platform we do not perform any Profiling of our Platform users, or using any Automated Decision-Making processes with respect to them.

    As required under the CCPA, we will update our Privacy Policy every 12 months. The last revision date will be reflected in the “Last Updated” heading located at the top of this Privacy Policy.