EmpoorioChain: Privacy Policy

Introduction

EmpoorioChain operates a decentralized ecosystem that includes the EmpoorioChain blockchain, the DracmaS (DMS) token, and 18 dApps spanning sectors such as finance, gaming, healthcare, supply chain, and more. We are committed to transparency and user empowerment, ensuring that your personal information is handled responsibly and in accordance with applicable laws. This Privacy Policy applies to all users interacting with any part of our ecosystem, including website visitors, dApp users, token holders, and participants in our services.

Our ecosystem is designed to prioritize user control and data security, leveraging blockchain technology to provide immutable and transparent data management. We collect and process data to enhance user experience, facilitate transactions, and comply with legal obligations. This policy details the types of data we collect, how we use it, and the measures we take to protect it, ensuring that you can engage with our services with confidence.

Last updated: April 21, 2025.

Data We Collect

We collect various types of data to provide, maintain, and improve our services across the EmpoorioChain ecosystem. The data we collect depends on how you interact with our platform, including the EmpoorioChain blockchain, DracmaS token transactions, and our 18 dApps. The categories of data we collect are outlined below.

• Personal Information: When you register for an account, participate in dApps, or interact with our services, we may collect personal information such as your name, email address, phone number, and wallet address. This data is used to verify your identity, facilitate transactions, and communicate with you.
• Transaction Data: We collect data related to transactions involving DracmaS tokens or interactions with our dApps, such as wallet addresses, transaction amounts, timestamps, and smart contract interactions. This data is recorded on the EmpoorioChain blockchain and is publicly verifiable due to the transparent nature of blockchain technology.
• Usage Data: We collect information about how you use our services, including IP addresses, browser types, device information, session duration, and pages visited. This data helps us improve user experience, monitor performance, and detect potential security issues.
• Analytics Data: We use analytics tools to collect aggregated data on user behavior, such as click patterns, feature usage, and engagement metrics. This data is anonymized and used to enhance our services and dApps.
• Third-Party Data: If you connect third-party services (e.g., external wallets, identity providers) to our ecosystem, we may receive data from those services, such as authentication tokens or linked account information, to facilitate seamless integration.

The pie chart below visually represents the categories of data we collect, providing a clear breakdown of the types of information we handle.

Pie chart representing the categories of data collected by EmpoorioChain’s ecosystem.

How We Use Your Data

EmpoorioChain uses the data we collect to provide, maintain, and improve our services across the EmpoorioChain blockchain, DracmaS token, and our 18 dApps. The purposes for which we use your data are outlined below.

• Service Delivery: We use personal information and transaction data to facilitate services, such as processing DracmaS transactions, enabling dApp interactions (e.g., GameEarn, HealthRecordChain), and verifying user identities.
• User Experience: Usage and analytics data help us understand how users interact with our ecosystem, allowing us to improve features, optimize performance, and enhance user interfaces across our dApps.
• Security and Fraud Prevention: We use data to monitor for suspicious activity, prevent fraud, and ensure the security of our ecosystem. For example, transaction data helps us detect and prevent unauthorized access to user wallets.
• Compliance and Legal Obligations: We process data to comply with legal obligations, such as anti-money laundering (AML) and know-your-customer (KYC) requirements, as well as to respond to regulatory requests.
• Communication: We use personal information to communicate with you, such as sending transaction confirmations, service updates, or security alerts.
• Research and Development: Anonymized and aggregated data is used for research purposes, such as improving blockchain scalability or developing new dApps, ensuring user privacy is maintained.

We do not sell your personal information to third parties. Data is only used for the purposes outlined above, and we ensure that all processing activities comply with applicable data protection laws.

Data Sharing and Disclosure

EmpoorioChain may share your data under specific circumstances to provide services, comply with legal obligations, or protect our ecosystem. The scenarios under which we share data are outlined below.

• Service Providers: We share data with trusted third-party service providers who assist in delivering our services, such as cloud hosting providers, payment processors, and analytics firms. These providers are contractually obligated to protect your data and comply with applicable laws.
• Blockchain Transparency: Transaction data on the EmpoorioChain blockchain, such as wallet addresses and transaction amounts, is publicly verifiable due to the transparent nature of blockchain technology. However, this data is pseudonymized and does not directly identify you unless linked to other personal information.
• Legal and Regulatory Requirements: We may disclose data to comply with legal obligations, such as responding to court orders, subpoenas, or regulatory requests (e.g., AML/KYC compliance).
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity, with assurances that it will continue to be protected under this Privacy Policy.
• With Your Consent: We may share data with third parties if you provide explicit consent, such as opting to share health data with a research institution via the HealthNFT dApp.

We ensure that any data shared is limited to what is necessary for the specified purpose and is protected through contractual agreements and security measures.

Data Protection Measures

EmpoorioChain employs industry-leading security measures to protect your data across our ecosystem, including the EmpoorioChain blockchain, DracmaS token, and 18 dApps. We use a multi-layered approach to safeguard your information, ensuring the highest standards of security.

• Encryption: All data transmitted within our ecosystem is encrypted using AES-256 encryption standards, ensuring that your information remains secure during transit and at rest.
• Post-Quantum Cryptography: We implement post-quantum cryptography to protect against future quantum computing threats, ensuring long-term data security for blockchain transactions and user data.
• Access Controls: We use strict access controls to limit data access to authorized personnel only, with multi-factor authentication (MFA) required for all internal systems.
• Anonymization: Where possible, we anonymize or pseudonymize data to protect user identities, particularly for analytics and research purposes.
• Regular Audits: We conduct regular security audits and penetration testing to identify and address vulnerabilities, ensuring 99.9% uptime and data integrity.
• Smart Contract Security: Our smart contracts are audited by third-party experts to prevent vulnerabilities, ensuring secure interactions across our dApps.

The shield diagram below illustrates the layers of security measures we employ to protect your data, highlighting our commitment to privacy and security.

Shield diagram illustrating the layers of security measures protecting user data in EmpoorioChain’s ecosystem.

Your Rights

EmpoorioChain is committed to empowering users with control over their data. Depending on your jurisdiction, you have the following rights regarding your personal information:

• Right to Access: You can request access to the personal information we hold about you, including details on how it is processed.
• Right to Rectification: You can request corrections to inaccurate or incomplete data we hold about you.
• Right to Erasure: You can request the deletion of your personal information, subject to legal obligations (e.g., AML/KYC records must be retained for 5 years).
• Right to Restrict Processing: You can request that we limit the processing of your data under certain circumstances, such as during a dispute.
• Right to Data Portability: You can request a copy of your data in a machine-readable format to transfer to another service provider.
• Right to Object: You can object to the processing of your data for specific purposes, such as marketing.
• Right to Withdraw Consent: Where processing is based on consent, you can withdraw your consent at any time, without affecting the lawfulness of prior processing.

To exercise your rights, contact our Data Protection Officer (DPO) at privacy@empoorio.com. We will respond to your request within 30 days, in accordance with GDPR and CCPA requirements. Note that due to the nature of blockchain technology, some data (e.g., transaction records on EmpoorioChain) is immutable and cannot be deleted, but we will anonymize associated personal information where possible.

Cookies and Tracking Technologies

EmpoorioChain uses cookies and similar tracking technologies to enhance user experience, analyze usage, and improve our services across our website and dApps. The types of cookies we use include:

• Essential Cookies: Necessary for the operation of our services, such as enabling user authentication and session management.
• Performance Cookies: Collect anonymized data on how users interact with our services, helping us improve performance and functionality.
• Analytics Cookies: Used to gather aggregated data on user behavior, such as page views and click patterns, to enhance our services.
• Marketing Cookies: Used to deliver personalized content and advertisements, such as promoting new dApps or features.

You can manage your cookie preferences through our Cookie Consent Tool, accessible on our website and dApps. You may also disable cookies via your browser settings, but this may affect the functionality of our services. For more information, please review our Cookie Policy.

Data Retention

EmpoorioChain retains your data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or to comply with legal obligations. The retention periods vary depending on the type of data and applicable laws:

• Personal Information: Retained for the duration of your account’s active status, plus 5 years to comply with AML/KYC requirements, after which it is anonymized or deleted.
• Transaction Data: Stored indefinitely on the EmpoorioChain blockchain due to its immutable nature, but associated personal information is anonymized after 5 years.
• Usage and Analytics Data: Retained for 2 years for performance analysis, then anonymized for long-term research purposes.

Once data is no longer needed, we securely delete or anonymize it, ensuring that it cannot be linked to an individual. For example, after a user closes their account, their email address is removed from our database within 30 days, but transaction records remain on the blockchain in a pseudonymized form.

International Data Transfers

EmpoorioChain operates globally, and your data may be transferred to and processed in countries outside your jurisdiction, including regions with different data protection laws. We ensure that all international data transfers comply with applicable regulations, such as GDPR’s requirements for cross-border transfers.

To protect your data during international transfers, we use Standard Contractual Clauses (SCCs) approved by the European Commission, ensuring that recipients in other jurisdictions provide an adequate level of data protection. For example, if your data is transferred from the EU to a service provider in the US, we execute SCCs to safeguard your information. Additionally, our encryption and post-quantum cryptography measures ensure that data remains secure during transit, regardless of location.

Children’s Privacy

EmpoorioChain’s services are not intended for children under the age of 16, in accordance with the Children’s Online Privacy Protection Act (COPPA) and GDPR’s age of consent provisions. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information immediately.

If you are a parent or guardian and believe that your child has provided us with personal information, please contact our Data Protection Officer at privacy@empoorio.com, and we will promptly address the issue.

Changes to This Privacy Policy

EmpoorioChain may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or services. We will notify you of significant changes by posting a notice on our website, sending an email, or providing an in-app notification, depending on the nature of the update. Changes will take effect immediately upon posting, unless otherwise specified.

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your data. Your continued use of our services after changes are posted constitutes your acceptance of the updated policy.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer (DPO):

• Email: privacy@empoorio.com
• Phone: +1-800-PRIVACY-LINE
• Address: EmpoorioChain Data Protection Office, 123 Innovation Drive, Tech City, CA 94043, USA

For users in the European Economic Area (EEA), our EU representative can be contacted at eu-representative@empoorio.com. We are committed to addressing your concerns promptly and transparently, ensuring your privacy rights are upheld.