AvalonCert Privacy Policy

Last Updated: 13/04/2025

Introduction

Welcome to AvalonCert – your decentralized digital certification platform that utilizes blockchain technology to authenticate and register documents. This Privacy Policy explains how we collect, use, store, and protect your information when you use our services. By accessing and using our platform, you agree to the practices described in this document.

Information We Collect

a) Registration and Authentication Data

• Personal Information:

  • Name, email, profile photo, and any other details provided during registration.

• Social Login Data:

  • Information obtained via social networks (LinkedIn, Facebook, etc.) as permitted by your settings.

• Dual Access Requirement:

  • To access the dashboard and perform transactions, users must first log in via email or social networks and then connect their digital wallet. This redundancy is necessary to ensure the security and integrity of operations on our platform.

• Wallet Data:

  • We use only your wallet address to conduct transactions on the platform. Please note that we will never ask for your private keys, as the security of your wallet is solely your responsibility.

b) Transaction and Certification Data

• Certification Details:

  When performing a certification, we collect the following information:

  • Institution/Company Name:
    Registered on the blockchain with the wallet address (captured in a shortened format, e.g., 0x12345...6789). This data is immutable and cannot be altered—it will always appear alongside the institution/company name.
  • Name of Student/Employee/Patient/Document:
    Sourced from the “category” metadata field. This data is immutable.
  • ID/Registration Number:
    Extracted from the “alphanumericId” metadata field and is also immutable.
  • Course/Training/Certification Name
  • Completion Date
  • Digital Signature
  • Additional Text
  • QR Code Placement:
    The chosen location for the QR Code, which is customized with the AvalonCert logo (seal) and displays the Numeric ID below.
• Note: The mandatory metadata fields include:
  • alphanumericId (e.g., "CERT2025001"),
  • certificateType (e.g., "Graduation", "Declaration", "Report", etc.),
  • category (e.g., "John Doe", "Audit", "Result", etc.),
  • additionalData (extra data).
• Immutability of Data:
  • Please note that all data sent to the blockchain is immutable and indelible, ensuring the integrity and authenticity of the certificates issued.
• Transaction Logs:

  • We maintain transaction logs, differentiating between:

    • Unitary Logs:
      For individual certifications.
    • Bulk Logs:
      For multiple certifications issued at once.
• Certificate Sharing:
  • Our platform features a share button that enables users to share issued certificates on social networks such as LinkedIn and Facebook.

c) Usage and Navigation Data

• Cookies and Tracking Technologies:
  • We collect information on how you navigate and interact with the platform (e.g., IP address, browser type, device information, etc.) to enhance your user experience and perform internal analysis.

d) Third-Party Data

• Gemini AI:
  • We use Gemini 2.0 AI to assist in certificate issuance and to detect fraudulent patterns. Gemini 2.0 AI also guides users on the insertion of sensitive data, ensuring that confidential information is handled appropriately.

How We Use Your Information

• Authentication and Access:
  • The data provided during registration and the wallet connection ensures secure access to the dashboard and enables the execution of transactions.
• Issuance and Verification of Certificates:
  • The data collected during the certification process is used to register, authenticate, and verify certificates on the blockchain (with deterministic deployment on networks such as Base, ETH, Polygon, BSC, and Arbitrum).
• Tokenomics and Transactions:
  • Each certification or transaction on our platform costs 10 AUTHAX tokens, where:
    • 75% of the tokens are burned,
    • 25% go to the treasury,
    • 5% are allocated to the staking contract.
• Service Improvement and Analysis:
  • We use usage data and transaction logs for real-time analytics, service improvements, and enhancing user experience and security.
• Fraud Prevention:
  • Gemini 2.0 AI processes data to identify suspicious patterns and prevent fraudulent activities.
• Social Media Sharing:
  • Users can choose to share their issued certificates on social networks (LinkedIn and Facebook) using our built-in sharing functionality.

Data Storage and Security

• Storage:
  • Your information is stored on secure servers and, where applicable, registered on the blockchain. Data recorded on the blockchain remains immutable and indelible.
• Security Measures:
  • We employ encryption, regular backups, up-to-date security protocols, and strict access controls to protect your information against unauthorized access, disclosure, or alteration.
• Data Retention:
  • Your data will be retained for as long as necessary to fulfill the purposes outlined in this Policy and as required by applicable laws.

Data Sharing and Transfer

• With Third Parties and Partners:
  • We share your information with trusted partners, such as Gemini 2.0 AI, solely for fraud prevention and security analysis purposes.
• Legal Obligations:
  • We may disclose your information if required by law or in response to legal processes, government investigations, or to protect the rights, security, or property of AvalonCert or third parties.
• International Data Transfers:
  • In some instances, data may be transferred to servers outside your country of residence, always in compliance with international data protection laws (e.g., LGPD, GDPR).

Your Rights

You have the following rights regarding your data:

• Access: Request a copy of the personal information we hold about you.
• Correction: Update or correct any inaccurate or incomplete information.
• Deletion: Request the deletion of your personal data, subject to legal obligations for data retention.
• Portability: Request the transfer of your data to another service or platform.
• Withdrawal of Consent: Withdraw your consent for data processing at any time, without affecting the lawfulness of previous processing.

To exercise any of these rights, please contact us using the information provided in the Contact section below.

Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Enhance User Experience: Store preferences and personalize your navigation.
• Usage Analysis: Collect data that helps us understand how you interact with the platform.
• Advertising and Partnerships: In certain cases, to deliver personalized content and advertisements.

You can manage your cookie preferences through your browser settings.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or in response to legal requirements. Significant changes will be communicated to users via on-platform notifications or email.

Contact Us

If you have any questions, requests, or wish to exercise your rights regarding your personal data, please contact us:

• Email: support@avaloncert.org
• Other Channels: Telegram - @AvalonCert

This Privacy Policy is designed to offer complete transparency regarding how we handle your data, reinforcing our commitment to the security, integrity, and privacy of all user information. If you have any questions or need further clarification, please do not hesitate to contact us.