Last Update June 9, 2025

Privacy Policy

This Privacy Policy for Coordinate Labs Pte. Ltd. (collectively with its affiliates, "Company", "we", "us" "our") describes how we collect, use and disclose information about users of the Company's website (www.axis.to, the "Site"), and any related services, tools and features, including the Axis service (collectively, the "Services"). For the purposes of this Privacy Policy, "you" and "your" means you as the user of the Services. Please read this Privacy Policy carefully. By using, accessing, or downloading any of the Services, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy. If you do not agree to this Privacy Policy, please do not use, access or download any of the Services.

1. Updating This Privacy Policy

We may modify this Privacy Policy from time to time in which case we will update the "Last Revised" date at the top of this Privacy Policy. If we make material changes to the way in which we use information we collect, we will use reasonable efforts to notify you (such as by emailing you at the last email address you provided us, by posting notice of such changes on the Site, or by other means consistent with applicable law) and will take additional steps as required by applicable law. If you do not agree to any updates to this Privacy Policy please do not access or continue to use the Services.

2. Information We Collect and Use

When you access or use the Services, we may collect (directly or through third-party providers) certain categories of information about you from a variety of sources, which comprises:

Information provided during "Know Your Customer" ("KYC") and Anti-Money Laundering ("AML") processes for institutional clients, which includes personal identifying information. This may include:

  • Basic Information: Name, Address, Date of Birth, Nationality, Country of Residence, Phone Number, Email Address
  • Identification Information: Utility bills (or other proof of address), photographs, Government-issued identification (such as identification cards, passports, driver's licenses, etc.), tax ID number, employment information, proof of residency, visa information, organizational documents, and information regarding ultimate beneficial owners
  • Financial Information: Income/net assets/wealth verification statements

2.2 Blockchain and Wallet Information

  • Wallet addresses you connect to our Services
  • Transaction data publicly visible on blockchain networks
  • Holdings, purchases, sales, or transfers of tokens, which may then be associated with other data you have provided to us
  • Interaction data with smart contracts through our Protocol

2.3 Technical Information

  • Website usage analytics through Vercel Analytics
  • IP addresses and geolocation data (for compliance and restriction enforcement)
  • Browser type, device information, and operating system
  • Log files and usage patterns when interacting with our Services

We process the data provided and collected to provide the Services, personalize your experience with the Services, and improve the Services. Specifically, we use your data to:

  • Identify you as a user in our system and classify you as Primary or Secondary User
  • Identify your place of residence or registered office for compliance purposes
  • Provide you with our Services and enable protocol interactions
  • Improve the administration of our Services and quality of experience when you interact with our Services
  • Provide customer support and respond to your requests and inquiries
  • Investigate and address conduct that may violate our Terms of Service
  • Detect, prevent, and address fraud, violations of our terms or policies, and/or other harmful or unlawful activity
  • Send you administrative notifications, such as security, support, and maintenance advisories
  • Send you newsletters, promotional materials, and other notices related to our Services
  • Comply with applicable laws, cooperate with investigations by law enforcement or other authorities of suspected violations of law, and/or to pursue or defend against legal threats and/or claims
  • Act in any other way we may describe when you provide the personal data

3. How We Share Your Information

In certain circumstances, the Company may share your information with third parties for legitimate purposes subject to this Privacy Policy. Such circumstances comprise of:

  • Blockchain analysis service providers for compliance and security monitoring
  • Data analytics vendors, including Vercel Analytics for website usage analysis
  • KYC/AML service providers for institutional client verification
  • Professional advisors, such as auditors, law firms, accounting firms, or compliance service providers
  • Related entities: Coordinate 33 Limited and Coordinate Origin Limited, to provide the Services
  • Legal compliance: To comply with applicable law or any obligations thereunder, including cooperation with law enforcement, judicial orders, and regulatory inquiries
  • Business transactions: In connection with an asset sale, merger, bankruptcy, or other business transaction
  • Safety and security: To enforce any applicable terms of service and to ensure the safety and security of the Company and/or its users
  • Corporate structure: With any parent companies, subsidiaries, joint ventures, or other companies under common control with us, in which case we will require such entities to honor this Privacy Policy
  • User-requested sharing: When you request us to share certain information with third parties, such as through your use of wallet integrations

4. Legal Basis Under GDPR

The legal bases for the processing of personal data of natural persons in the European Economic Area (EEA) are detailed in the General Data Protection Regulation (GDPR). The legal bases for processing your personal data are:

  • Contract performance: In the case of the initiation of a contract or an ongoing contractual relationship, the legal basis follows from Art. 6 (1) lit. b GDPR
  • Legal obligations: We are obliged by law to process your data, e.g. by Financial Regulations, Anti Money Laundering Laws, Tax Laws etc; the legal basis for such processing is Art. 6 (1) lit. c GDPR
  • Legitimate interests: Our legitimate interests under Art. 6 (1) lit. f GDPR; our legitimate interests are e.g. to safeguard the security and stability of our Services; to monitor the use of our Services in order to comply with all applicable laws; to detect, prevent, and address fraud, violations of our terms or policies, and/or other harmful or unlawful activity; to improve our Services; and for certain limited promotional purposes
  • Consent: If you have given your consent to process your data, the legal basis is Art. 6 (1) lit. a GDPR

5. Cookies and Other Tracking Technologies

Do Not Track Signals: Your browser settings may allow you to transmit a "Do Not Track" signal when you visit various websites. Like many websites, our website is not designed to respond to "Do Not Track" signals received from browsers.

Cookies and Other Tracking Technologies: Most browsers accept cookies automatically, but you may be able to control the way in which your devices permit the use of cookies and other tracking technologies. If you so choose, you may block or delete our cookies from your browser; however, blocking or deleting cookies may cause some of the Services to work incorrectly.

Analytics: We use Vercel Analytics to understand website usage patterns. You can control tracking preferences through your browser settings.

The legal bases for the setting of cookies are legitimate interests under Art. 6 para. 1 letter f) GDPR and, if applicable, your consent in accordance with Art. 6 (1) (a) GDPR. In the case of the initiation of a contract or an ongoing contractual relationship, the legal basis also follows from Art. 6 para. 1 sentence 1 letter b) GDPR.

6. Third Party Services and Links

We may provide links to websites or other online platforms operated by third parties, including third-party DeFi protocols such as decentralized exchanges. If you follow links to sites not affiliated or controlled by us, you should review their privacy and security policies and other terms and conditions. We do not guarantee and are not responsible for the privacy or security of these sites. Our inclusion of such links does not imply any endorsement of the content on such platforms or of their owners or operators.

7. Third Party Wallet Extensions

Certain transactions conducted via our Services will require you to connect a wallet to the Services. By using such wallet to conduct transactions via the Services, you agree that your interactions with such third party wallets are governed by the privacy policy for the applicable wallet. We expressly disclaim any and all liability for actions arising from your use of third party wallets, including but without limitation, to actions relating to the use and/or disclosure of personal information by such third party wallets.

8. Public Information Observed From Blockchains

We collect data from activity that is publicly visible and/or accessible on blockchains, including the Plasma network. This may include blockchain addresses and information regarding holdings, purchases, sales, or transfers of tokens, which may then be associated with other data you have provided to us.

9. Data Security

We use appropriate technical and organizational measures to prevent accidental or intentional manipulation, partial or total loss, destruction or unauthorized access to your data by third parties. Our security measures are continuously improved in line with technological developments.

Please be aware that, despite our reasonable efforts to protect your information, no security measures are perfect or impenetrable, and we cannot guarantee "perfect security." You are responsible for the security of your digital wallet(s), and we urge you to take steps to ensure it is and remains secure.

In the event that any information under our custody and control is compromised as a result of a breach of security, we will take steps to investigate and remediate the situation and, in accordance with applicable laws and regulations, notify those individuals whose information may have been compromised.

10. Data Access and Control

You may have certain rights with respect to your personal data:

European Economic Area Users: If you are a user in the European Economic Area, you have certain rights under the European General Data Protection Regulation ("GDPR"). These include the right to:

  • Request access and obtain a copy of your personal data
  • Request rectification or erasure
  • Object to or restrict the processing of your personal data
  • Request portability of your personal data
  • Withdraw your consent at any time (where processing is based on consent)

If you wish to exercise your rights under the GDPR or other applicable data protection or privacy laws, please contact us at legal@axis.to, specify your request, and reference the applicable law. We may ask you to verify your identity, or ask for more information about your request. We will consider and act upon any request in accordance with applicable law.

Notwithstanding the above, we cannot edit or delete any information that is stored on a blockchain, as we do not have custody or control over any blockchains.

11. Data Retention

We may retain your data as long as you continue to use the Services, or for as long as is necessary to fulfill the purposes outlined in this Privacy Policy. We may continue to retain your data even after you cease to use the Services if such retention is reasonably necessary to comply with our legal obligations, to resolve disputes, prevent fraud and abuse, enforce our Terms or other agreements, and/or protect our legitimate interests. Where your data is no longer required for these purposes, we will delete it.

12. International Transfers

Your information may be transferred to and processed in countries outside of your jurisdiction, including Singapore and the British Virgin Islands, where data protection laws may differ. By using our Services, you consent to such transfers. We ensure that any such transfers comply with applicable data protection laws and implement appropriate safeguards.

13. Children's Privacy

Children under the age of 18 are not permitted to use the Services, and we do not seek or knowingly collect any personal information about children under 18 years of age. If we become aware that we have unknowingly collected information about a child under 18 years of age, we will make commercially reasonable efforts to delete such information from our database.

14. Rights of Data Subjects Under GDPR

This section applies to you if you are able to avail yourself of certain rights under GDPR:

Right to Information, Rectification, Deletion: You have the right to request information (Art. 15 GDPR) about your personal data and related information. In addition, you can request the correction (Art. 16 GDPR) and the deletion (Art. 17 para. 1 GDPR) of your personal data. You can also request that the processing of your personal data be restricted (Art. 18 GDPR). Furthermore, you have the right to receive your personal data or to have it transmitted to another responsible body (Art. 20 GDPR).

Revocation of Consent: You can revoke your consent in accordance with Art. 6 (1) sentence 1 (a) GDPR at any time with immediate effect in accordance with Art. 7 (3) sentence 1 GDPR.

Objection to Profiling and Direct Marketing: In certain cases, you have the right to object (Art. 21 GDPR) to the data processing. In particular, you have the right to object at any time to the processing of your data based on Art. 6 (1) sentence 1 (f) GDPR (data processing on the basis of a balancing of interests) in accordance with Art. 21 (1) GDPR.

Right to Lodge a Complaint: If you believe that we have not complied with data protection regulations when processing your data, you can submit a complaint to the supervisory authority responsible for us.

15. How to Contact Us

Should you have any questions about our privacy practices or this Privacy Policy, please email us at legal@axis.to or contact us at:

Coordinate Labs Pte. Ltd.

138 Robinson Road, #05-02, Oxley Tower

Singapore 068906