Privacy Policy

1.Scope of this Policy

This Policy applies to information processed by LASTSHIFT in connection with the Service. It does not apply to:

1. third-party websites, applications, or services that may be linked from the Service;
2. public blockchain networks (including the Solana blockchain), which are decentralized systems not operated or controlled by LASTSHIFT; or
3. information you choose to disclose to third parties outside the Service.

We encourage you to review the privacy policies of any third-party services you interact with.

2.Information We Do Not Collect

We do not collect, request, or store the following categories of personal information:

• Names, email addresses, telephone numbers, or postal addresses;
• Government-issued identifiers (such as Social Security numbers, driver's license numbers, or passport numbers);
• Financial account numbers, credit or debit card numbers, or banking information;
• Biometric, health, or precise geolocation data;
• Account passwords (we do not operate a traditional account system).

The Service does not require, and does not implement, any "Know Your Customer" (KYC) or identity verification process.

3.Information We Do Collect

3.1 Public Wallet Addresses and On-Chain Activity

When you connect a digital wallet, submit a proof of work, or interact with on-chain features of the Service (including, without limitation, token burns, payments, and minting events), we record the public blockchain wallet addresses involved and the corresponding on-chain transaction data. This information is necessary to verify on-chain activity and to enable the core functionality of the Service.

Public wallet addresses and the transactions associated with them are, by design, publicly accessible on the underlying blockchain network. We do not treat such information as personal data, and we do not link wallet addresses to any off-chain identity.

3.2 Technical and Log Information

When you access the Service, our infrastructure providers automatically collect and log certain technical information that is generated by the operation of any standard internet-connected service, including:

• Internet Protocol (IP) address;
• Browser type and version;
• Operating system and device type;
• Referring URL and pages viewed;
• Date, time, and duration of requests.

This information is used to operate, maintain, secure, and improve the Service, and to detect, prevent, and respond to fraud, abuse, or violations of our terms of service.

3.3 Cookies and Similar Technologies

The Service uses cookies and similar tracking technologies as described in Section 5 below.

4.How We Use Information

We use the information described in Section 3 for the following purposes:

1. to operate, provide, maintain, and improve the Service;
2. to verify on-chain activity submitted by users;
3. to measure and analyze aggregate usage of the Service;
4. to measure the effectiveness of our advertising and to build and serve retargeting audiences;
5. to detect, prevent, investigate, and respond to security incidents, fraud, abuse, or unlawful activity;
6. to comply with applicable legal obligations and to enforce our terms of service.

We do not sell, rent, or trade information to third parties for monetary consideration. We do not use the information described in this Policy to make decisions that produce legal or similarly significant effects about individuals.

5.Cookies and Third-Party Tracking Technologies

The Service uses the following third-party tracking technologies:

5.1 X (Twitter) Advertising Pixel

We use the X (Twitter) advertising pixel, provided by X Corp., on the homepage of the Service. The pixel may set cookies and collect technical information (such as IP address, browser user-agent, page URL, and timestamps) for the purposes of measuring the effectiveness of advertising and building retargeting audiences. We do not receive individually identifying information from the pixel; we receive only aggregated audience and performance data.

You may opt out of X's interest-based advertising and ad personalization at any time at: https://x.com/settings/personalization

5.2 Google Analytics 4

We use Google Analytics 4, a web analytics service provided by Google LLC ("Google"), site-wide. Google Analytics uses cookies and similar identifiers to collect and analyze information about how visitors use the Service, including pages visited, referring URLs, device class, and approximate location derived from IP address. The information generated by these cookies is transmitted to and stored by Google.

You may opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on, available at: https://tools.google.com/dlpage/gaoptout

5.3 Browser Controls

You may also configure your browser to block, restrict, or delete cookies. Most browsers allow you to refuse third-party cookies entirely. Disabling cookies may affect the functionality of certain features of the Service.

6.Disclosure of Information

We may disclose information described in this Policy to the following categories of recipients:

1. Service providers and infrastructure partners, including hosting and platform providers (such as Vercel Inc.) and database and authentication providers (such as Supabase, Inc.), who process information on our behalf and under contractual confidentiality obligations;
2. Advertising and analytics partners, as described in Section 5;
3. Legal and regulatory authorities, where disclosure is required to comply with applicable law, legal process, or a valid governmental request, or where we believe in good faith that disclosure is necessary to protect our rights, the rights of others, or the security of the Service;
4. Acquirers, in connection with a merger, acquisition, reorganization, financing, sale of assets, or similar transaction, subject to standard confidentiality protections.

We do not sell personal information.

7.Legal Bases for Processing (EEA, UK, and Similar Jurisdictions)

To the extent the General Data Protection Regulation (GDPR), the UK GDPR, or similar laws apply, we rely on the following legal bases for processing the information described in Section 3:

• Legitimate interests, including the operation, security, improvement, and promotion of the Service, and the prevention of fraud and abuse;
• Performance of a contract, where processing is necessary to provide the Service you have requested;
• Consent, where required by law for advertising cookies and similar technologies;
• Legal obligation, where processing is necessary to comply with applicable law.

Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

8.Your Rights and Choices

Subject to applicable law, you may have the following rights with respect to information about you:

1. the right to request access to information we hold about you;
2. the right to request correction of inaccurate information;
3. the right to request deletion of information;
4. the right to object to or restrict certain processing;
5. the right to data portability;
6. the right to opt out of targeted advertising or the "sharing" of personal information for cross-context behavioral advertising, where applicable; and
7. the right to lodge a complaint with a supervisory authority in your jurisdiction.

Because the Service does not collect names, email addresses, or other identifiers that we can use to authenticate a request to a specific natural person, our ability to act on individual rights requests is inherently limited. Where you can identify a particular wallet address or on-chain transaction at issue, we will use reasonable efforts to respond.

To exercise any of these rights, please contact us using the information in Section 14.

9.Data Retention

We retain information only for as long as is necessary to fulfill the purposes described in this Policy, unless a longer retention period is required or permitted by law.

• On-chain data, including public wallet addresses and transaction records, is retained indefinitely as a function of the underlying blockchain and cannot be deleted by LASTSHIFT.
• Server-side technical and log information is retained on standard provider rotation schedules (typically thirty (30) to ninety (90) days).
• Aggregated and anonymized analytics data may be retained for longer periods for statistical and historical purposes.

10.Security

We implement reasonable administrative, technical, and physical safeguards designed to protect information from unauthorized access, use, alteration, disclosure, or destruction. However, no method of transmission over the internet or method of electronic storage is one hundred percent (100%) secure, and we cannot guarantee absolute security.

11.International Data Transfers

The Service is operated from infrastructure located in the United States and may be accessed from, and information may be processed in, jurisdictions other than the one in which you reside. By using the Service, you acknowledge that information may be transferred to and processed in such jurisdictions, which may have data protection laws different from those of your home jurisdiction.

12.Children's Privacy

The Service is not directed to, and we do not knowingly collect information from, children under the age of thirteen (13) (or such other age as may be defined as a "child" under applicable law). If you believe that we have inadvertently collected such information, please contact us at the address in Section 14 and we will take appropriate steps to delete it.

13.Changes to this Policy

We may update this Policy from time to time. When we do, we will revise the "Last Updated" date at the top of this Policy and, where appropriate, provide additional notice through the Service. Material changes will take effect upon posting unless otherwise stated. Your continued use of the Service after the effective date of any updated Policy constitutes your acceptance of the updated terms.

14.Contact

For questions, comments, or requests relating to this Policy, please contact: