Privacy Policy

Last Revised: April 2024
Parcl Limited, a British Virgin Islands company (“Company”) is committed to protecting User’s privacy. Company has
prepared this Privacy Policy (this “Policy”) to describe to User Company’s practices regarding the Personal Information
(as defined below) Company collects, why Company collects it, and how Company uses and discloses it. This Policy
should be read in conjunction with Company’s Terms of Use (the “Terms”), into which this Policy is incorporated by
reference. User is encouraged to read the Terms first, as certain terms used in this Policy are defined in the Terms.

1. ACCEPTANCE OF THE POLICY
User’s privacy matters to Company, so User should take the time to get to know Company’s policies and practices. Please
understand that Company reserves the right to change any of Company’s policies and practices at any time, but User can
always find the latest version of this Policy here on this page. User’s continued use of the Service after Company makes
changes is deemed to be acceptance of those changes, so please check this Policy periodically for updates.
This Policy describes the types of information Company collects from User or that User may provide when User uses the
Service and Company’s practices for collecting, using, maintaining, protecting, and disclosing that information.
Please read this Policy carefully to understand Company’s practices regarding User’s information and how Company will
treat it. If User does not agree with Company’s policies and practices, then please do not use the Service. By using the
Service, User agrees to the terms of this Policy.

2. PERSONAL INFORMATION COMPANY COLLECTS
As used herein, “Personal Information” means information that identifies or is reasonably capable of identifying an
individual, directly or indirectly, and information that is capable of being associated with an identified or reasonably
identifiable individual. 

2.1 Personal Information Company Collects from User. Company (or Company’s Affiliates) may
collect and store the following categories of Personal Information directly from User:

(a) Online identifier information, such as IP addresses, Wallet addresses and other data connected
to User’s Wallets, domain names, and similar identifying names or addresses (collectively, “Online Identifier
Information”);

(b) Device information, such as hardware, software, operating system, browser, device name, and
language preferences (collectively, “Device Information”);

(c) Usage data, such as system activity, internal and external information related to the Service,
clickstream information (collectively, “Usage Data”); and

(d) Geolocation data, such as information about User’s device location (“Geolocation Data”).
Automatic collection of Personal Information may involve the use of Cookies, described in greater detail
below. Company does not currently store Online Identifier Information, Device Information, Usage Data, or
Geolocation Data on Company’s systems; however, please be aware that third-parties with which Company might
interact might store such information.

2.2 Personal Information That May Be Collected Automatically. Company (or Company’s Affiliates)
may collect and store the following categories of Personal Information automatically through User’s use of the
Service:

(a) Online Identifier Information; and

(b) Additional information, at Company’s discretion, to comply with legal obligations.

2.3 Personal Information Company Collects from Third Parties. Company (or Company’s Affiliates)
may collect and/or verify the following categories of Personal Information about User from third parties:

(a) Online Identifier Information; and,

(b) Additional information, at Company’s discretion, to comply with legal obligations.

2.4 Accuracy and Retention of Personal Information. Company takes reasonable and practicable steps
to ensure that User’s Personal Information held by Company is

(i) accurate with regard to the purposes for which it is
to be used, and

(ii) not kept longer than is necessary for the fulfillment of the purpose for which it is to be used. 

3. INTENDED FOR USERS 18+
Company does not knowingly collect data from or market to anyone under 18 years of age. Company does not knowingly
solicit data from or market to anyone under 18 years of age. By using the Service, User represents that User is at least 18
years old, or that User is the parent or guardian of such a minor and consents to such minor dependent’s use of the
Service. If Company learns that Personal Information, from Users less than 18 years of age has been collected, Company
will discontinue User’s access to the Service, to the extent that is possible, and take reasonable measures to promptly
delete such data from Company’s records. If User becomes aware of any data Company may have collected from anyone
under age 18, please contact Company at legal@parcllimited.com.

4. HOW COMPANY USES USER’S PERSONAL INFORMATION
Company collects Personal Information about User in an attempt to provide User with the best experience possible,
protect User from risks related to improper use and fraud, and help Company maintain and improve the Service. Company
may use User’s Personal Information to:

4.1 Provide User with the Service. Company uses User’s Personal Information to provide User with the
Service pursuant to the Terms.

4.2 Comply with Legal and Regulatory Requirements. Company processes User’s Personal
Information as required by applicable laws and regulations. 

4.3 Detect and Prevent Fraud. Company processes User’s Personal Information to detect and prevent
fraud.

4.4 Protect the Security and Integrity of the Service. Company uses User’s Personal Information to
maintain the security of User’s Wallet and the Service itself. 

4.5 Other Business Purposes. Company may use User’s Personal Information for additional purposes if
disclosed to User before Company collects User’s Personal Information or if Company obtains User’s consent. 

5. HOW COMPANY SHARES USER’S PERSONAL INFORMATION
Company will never sell, share, rent, or trade User’s Personal Information with third parties for their commercial
purposes. Further, Company will not share User’s Personal Information with third parties, except as described below:

5.1 Third-Party Service Providers. Company may share User’s Personal Information with third-party
service providers for business or commercial purposes, including fraud detection and prevention, security threat
detection, customer support, data analytics, information technology, advertising and marketing, network
infrastructure, storage, and transaction monitoring. Company shares User’s Personal Information with these service
providers only so that they can provide Company with their services, and Company prohibits its service providers
from using or disclosing User’s Personal Information for any other purpose.

5.2 Law Enforcement. Company may be compelled to share User’s Personal Information with law
enforcement, government officials, and/or regulators. 

5.3 Corporate Transactions. Company may disclose Personal Information in the event of a proposed or
consummated merger, acquisition, reorganization, asset sale, or similar corporate transaction, or in the event of a
bankruptcy or dissolution. 

5.4 Professional Advisors. Company may share User’s Personal Information with Company’s
professional advisors, including legal, accounting, or other consulting services for purposes of audits or to comply
with Company’s legal obligations. 

5.5 Consent. Company may share User’s Personal Information with User’s consent. 

If Company decides to modify the purpose for which User’s Personal Information is collected and used, Company will
amend this Policy. 

6. COOKIES
When User accesses the Service, Company may make use of the standard practice of placing tiny data files called cookies,
flash cookies, pixel tags, or other tracking tools (herein, “Cookies”) on User’s computer or other devices used to visit the
Service. Company uses Cookies to help Company recognize User as a customer, collect information about User’s use of
the Service to better customize the Service and content for User, and collect information about User’s computer or other
access devices to:

(i) ensure that User’s Account security has not been compromised by detecting irregular, suspicious, or
potentially fraudulent activities; and

(ii) assess and improve the Service and advertising campaigns.
User can also learn more about Cookies by visiting http://www.allaboutcookies.org, which includes additional useful
information on Cookies and how to block Cookies on different types of browsers and mobile devices. Please note that if
User rejects Cookies, User will not be able to use some or all of the Service. If User does not consent to the placing of
Cookies on User’s device, please do not visit, access, or use the Service.

7. INFORMATION SECURITY
No security is foolproof, and the internet is an insecure medium. Company cannot guarantee absolute security, but
Company works hard to protect Company and User from unauthorized access to or unauthorized alteration, disclosure, or
destruction of Personal Information Company collects and stores. Measures Company takes include encryption of
Company website communications with SSL; periodic review of Company’s Personal Information collection, storage, and
processing practices; and restricted access to User’s Personal Information on a need-to-know basis for Company’s
employees, contractors and agents who are subject to strict contractual confidentiality obligations and may be disciplined
or terminated if they fail to meet these obligations.

8. INFORMATION FOR PERSONS SUBJECT TO EU DATA PROTECTION LAW
While customers who are located in the European Union (“EU”), European Economic Area (“EEA”) or the Channel
Islands, or other locations subject to EU data protection law (collectively, “Europe”) are customers of Company’s
Panamanian entity, Company recognizes and, to the extent applicable to Company, adheres to relevant EU data protection
laws. For purposes of this section, “personal data” has the meaning provided in the General Data Protection Regulation
(EU) 2016/679 (“GDPR”).

8.1 Lawful Bases for Processing. Company processes personal data subject to GDPR on one or more of
the following legal bases:

(a) Legal Obligations: to conduct anti-fraud and to fulfill Company’s retention and other legal
obligations;

(b) Contractual Obligations: to satisfy Company’s obligations to User under the Terms, including
to provide User with the Service and customer support services, and to optimize and enhance the Service;

(c) Legitimate Interest: to monitor the usage of the Service, conduct automated and manual
security checks of the Service, to protect Company’s rights; and

(d) Consent: to market Company and the Service. User may withdraw User’s consent at any time
without affecting the lawfulness of processing based on consent before consent is withdrawn. 

8.2 European Privacy Rights. European residents have the following rights under GDPR, subject to
certain exceptions provided under the law, with respect to their personal data:

(a) Rights to Access and Rectification: User may submit a request that Company disclose the
personal data that Company processes about User and correct any inaccurate personal data.

(b) Right to Erasure: User may submit a request that Company delete the personal data that
Company has about User.

(c) Right to Restriction of Processing: User has the right to restrict or object to Company’s
processing of User’s personal data under certain circumstances.

(d) Right to Data Portability: User has the right to receive the personal data User has provided to
Company in an electronic format and to transmit that personal data to another data controller.

To submit a request to exercise these rights, please contact Company using the methods described at the end of this
Policy. When handling requests to exercise European privacy rights, Company checks the identity of the requesting party
to ensure that he or she is the person legally entitled to make such request. This will require User to provide Company
with User’s unique Wallet identification. While Company maintains a policy to respond to these requests free of charge,
should User’s request be repetitive or unduly onerous, Company reserves the right to charge User a reasonable fee for
compliance with User’s request.

9. COLLECTION AND TRANSFER OF DATA OUTSIDE THE EEA
The Service operates with many of Company’s systems based in North America. As a result, Company may transfer
personal data to Europe, the United States, or other third countries, under the following conditions:

9.1 Contractual Obligation. Where transfers are necessary to satisfy Company’s obligation to User under
the Terms, including to provide User with the Service and customer support services, and to optimize and enhance
the Service; and

9.2 Consent. Where User has consented to the transfer of User’s personal data to another country.
Where transfers to a third country are based on User’s consent, User may withdraw User’s consent at any time. Please
understand, however, that the Service may not be available if Company is unable to transfer personal data to other
countries.
When Company transfers personal data to third countries, Company endeavors to ensure adequate safeguards are
implemented, for example through the use of standard contractual clauses or Privacy Shield certification.

10. BRITISH VIRGIN ISLANDS PRIVACY NOTICE
This Section 10 explains the manner in which Company and its Affiliates collect, process, and maintain User’s Personal
Information.
Company and its Affiliates are committed to processing Personal Information in accordance with applicable law. In their
use of Personal Information, certain members of Company or its Affiliates will be characterized under applicable law as a
data controller, whilst certain of Company’s service providers, Affiliates, and delegates may act as data processors under
applicable law.

10.1 Personal Information. By virtue of using the Service, Company and its Affiliates may collect, record,
store, transfer, and otherwise process Personal Information by which individuals may be directly or indirectly
identified. Company and its Affiliates may combine Personal Information that User provides with Personal
Information that Company and its Affiliates collect from User. This may include Personal Information that the
Company collects when User uses the Services, such as User’s Wallet information.

10.2 Why is User’s Personal Information Processed. The storage, processing, and use of Personal
Information by Company or its Affiliates will take place for lawful purposes, including:

(a) to comply with any applicable legal, tax, or regulatory obligations on Company or its
Affiliates under any applicable laws and regulations;

(b) to perform a contract to which User is a party or for taking pre-contractual steps at User’s
request;

(c) to operate Company, including managing and administering the PRCL Tokens, Airdrops, and
Company’s and its Affiliates’ businesses on an on-going basis which enables Company and User to satisfy
their contractual duties and obligations to each other;

(d) to verify the identity of Company and its Affiliates to third parties for any purpose which
Company and its Affiliates may consider necessary or desirable;

(e) to assist Company and its Affiliates in the improvement and optimisation of advertising
(including through marketing material and content) its Services;

(f) for risk management and risk control purposes relating to Company and its Affiliates;

(g) to pursue Company’s and its Affiliates’ legitimate interests:

(i) for direct marketing purposes; or

(ii) to help detect, prevent, investigate, and prosecute fraud and/or other criminal activity, and share this
data with legal, compliance, risk, and managerial staff to assess suspicious activities; and/or

(h) where User otherwise consents to the processing of its Personal Information for any other
specific purpose.

10.3 Data Controller. As a data controller, the Company or its Affiliates will only use User’s Personal
Information for the purposes for which it was collected as set out in this Privacy Policy. If Company or its Affiliates
needs to use User’s Personal Information for an unrelated purpose, Company will contact User. In certain
circumstances, Company may share User’s Personal Information with regulatory, prosecuting, and other
governmental agencies or departments, and parties to litigation (whether pending or threatened), in any country or
territory.

10.4 Transfer of Personal Information Outside the British Virgin Islands. Company may transfer
User’s Personal Information outside of the British Virgin Islands, as permitted under applicable law. Neither
Company nor its Affiliates will sell User’s Personal Information.

10.5 User’s Rights. User may have certain rights under applicable law, including:

(a) the right to be informed as to how Company and its Affiliates collect and use User’s Personal
Information;

(b) the right to access User’s Personal Information;

(c) the right to require Company and its Affiliates to stop direct marketing;

(d) the right to have inaccurate or incomplete Personal Information corrected;

(e) the right to withdraw User’s consent and require Company and its Affiliates to stop processing
or restrict the processing, or not begin the processing, of User’s Personal Information;

(f) the right to be notified of a data breach (unless the breach is unlikely to be prejudicial); and

(g) the right to require Company and its Affiliates to delete User’s Personal Information in some
limited circumstances.

Please note that if User does not wish to provide Company or its Affiliates with requested Personal Information or
subsequently wishes to withdraw User’s consent, User may not be able to receive PRCL Tokens or participate in an
Airdrop as it will affect Company’s ability to provide its Services to User.

10.6 Retention of Personal Information. The Personal Information shall not be held by Company or its
Affiliates for longer than necessary with regard to the purposes of the data processing.

11. CONTACT US
If User has questions or concerns regarding this policy or Company’s use of User’s Personal Information, please feel free
to email Company at legal@parcllimited.com; or write to Company at:

Parcl Limited
Attn: Data Protection Officer
Jayla Place, 2nd Floor
Road Town, Tortola
British Virgin Islands VG1110