Privacy Policy

Privacy Policy — StrongStone (STSN)

Effective Date: September 24, 2025

This Privacy Policy explains how we collect, use, store, and protect personal data in relation to the StrongStone (STSN) project (hereinafter referred to as the “Project,” “we,” “StrongStone,” or the “Operator”). This Policy applies to all individuals who interact with our services, websites, wallets, applications, or offerings (hereinafter referred to as “Users”).

1. Data Controller and Contact Details

The data controller is StrongStone Project. For questions about this policy or to exercise your rights, you can contact us at:

Email: contact@strongstone.io

2. Data We Collect

We only collect the data necessary to provide, improve, and secure our services. Types of data may include:

a) Data you provide directly

Full name (if using services requiring identification);

Email address;

KYC/identity data (e.g., copy of ID, address, photo) — only if you participate in services or sales requiring identity verification;

Additional contact details (phone number, physical address) when you choose to provide them;

Payment/financial details where we process payments (bank details, transaction information), via third‑party payment providers.

b) Data collected automatically

IP address, browser type, operating system, technical device data, and server logs;

Data about your activity on the app/site (pages visited, actions taken, errors);

Cookies and similar technologies.

c) Data stored on the blockchain (on‑chain)

Transactions made with the STSN token (public wallet addresses, amounts, timestamps); this information is public and immutably stored on the blockchain.

3. Legal Basis for Processing

We process personal data based on the following legal grounds, as applicable:

Your consent (e.g., direct marketing, non‑essential cookies);

Performance of a contract or pre‑contractual measures (e.g., token purchase, service delivery);

Compliance with legal obligations (e.g., KYC/AML when required by law);

Legitimate interests of the Operator (e.g., security, fraud prevention, product improvement) — provided such interests do not override your rights.

4. Purposes of Data Processing

Collected data is used for:

Providing and operating StrongStone services (issuance, distribution, management of tokens);

KYC/AML processing, identity verification, and fraud prevention (where applicable);

Managing accounts and customer support;

Processing transactions and payments (via third‑party providers);

Product improvement, statistical analysis, and security monitoring;

Marketing communication (only with your consent or when legally permitted);

Compliance with legal and regulatory obligations.

5. Data Disclosure to Third Parties

We may share personal data with:

Service providers acting as processors (hosting, payment processing, KYC, technical support);

Public authorities or law enforcement agencies if legally required or to defend our rights;

Third parties in case of merger, acquisition, or asset transfer (with proper notice);

On the blockchain: on‑chain transactions are public and visible to anyone (addresses, amounts, timestamps).

Third‑party providers are required to protect data and process it according to our instructions and applicable law.

6. International Data Transfers

Data may be transferred outside the European Economic Area (EEA) for use by third‑party providers. In such cases, we ensure adequate protection (e.g., EU Standard Contractual Clauses, accepted mechanisms, or explicit consent).

7. Data Retention

We retain personal data only as long as necessary for the purposes collected, or as legally required. Typical periods:

Account‑related data: for the duration of the account + a reasonable period for legal compliance (e.g., 5 years);

KYC/AML data: according to applicable legal requirements (usually 5–10 years after the business relationship ends);

Technical/log data: 1–3 years depending on purpose.

Data stored on the blockchain is immutable and remains public permanently.

8. Security

We implement reasonable technical and organizational measures to protect data from unauthorized access, loss, disclosure, or alteration. Examples:

Encryption of sensitive data at rest and in transit;

Role‑based access control;

Backup mechanisms and retention policies;

Periodic security checks and audits;

Internal procedures for breach notifications.

Please note that no system is 100% secure; in case of a breach we will notify authorities and affected individuals, as required by law.

9. Your Data Rights

Depending on applicable law (e.g., GDPR), you may have rights such as:

Right of access to your personal data;

Right to rectification;

Right to erasure (“right to be forgotten”), under certain conditions;

Right to restrict processing;

Right to data portability (where applicable);

Right to object to processing (including marketing);

Right to withdraw consent at any time (this does not affect the lawfulness of processing before withdrawal).

To exercise these rights, contact us at contact@strongstone.io. We may require identity verification before processing your request.

If you believe your rights have not been respected, you have the right to file a complaint with the competent supervisory authority.

10. Cookies and Similar Technologies

We use cookies and similar technologies for site functionality, analytics, and personalization. Some cookies are essential for operation, others require your consent. You can manage cookie preferences in your browser settings or through a cookie banner, where provided.

 

©Copyright. All rights reserved. strongstone STSN 2025

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.