-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathprivacy.html
More file actions
365 lines (328 loc) · 19 KB
/
privacy.html
File metadata and controls
365 lines (328 loc) · 19 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
<!doctype html>
<html lang="en">
<head>
<meta charset="utf-8" />
<title>Privacy Policy • Devexly</title>
<meta name="viewport" content="width=device-width, initial-scale=1" />
<meta name="description" content="Devexly Privacy Policy: how we collect, use, disclose, and protect personal information for our website and services." />
<link rel="canonical" href="https://devexly.org/privacy-policy" />
<!-- Open Graph -->
<meta property="og:title" content="Privacy Policy • Devexly" />
<meta property="og:description" content="How Devexly collects, uses, discloses, and protects personal information." />
<meta property="og:type" content="website" />
<meta property="og:url" content="https://devexly.org/privacy-policy" />
<!-- Twitter -->
<meta name="twitter:card" content="summary" />
<meta name="twitter:title" content="Privacy Policy • Devexly" />
<meta name="twitter:description" content="How Devexly collects, uses, discloses, and protects personal information." />
<style>
:root {
--brand: #357A74;
--ink: #0b0f14;
--muted: #5b6673;
--bg: #ffffff;
--line: #e6e8eb;
--radius: 14px;
--maxw: 880px;
}
@media (prefers-color-scheme: dark) {
:root {
--bg: #0b0f14;
--ink: #f5f7fb;
--muted: #a6b0bf;
--line: #2a3340;
}
body { color-scheme: dark; }
}
* { box-sizing: border-box; }
html, body { margin:0; padding:0; background:var(--bg); color:var(--ink); }
body { font: 16px/1.6 system-ui, -apple-system, Segoe UI, Roboto, Inter, "Helvetica Neue", Arial, "Noto Sans", "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; }
a { color: var(--brand); text-decoration: none; }
a:hover { text-decoration: underline; }
header, main, footer { width: 100%; display: block; }
.wrap { max-width: var(--maxw); margin: 0 auto; padding: 24px; }
header .title { font-size: 2rem; font-weight: 750; margin: 8px 0 6px; letter-spacing: -0.01em; }
.eyebrow { color: var(--muted); font-size: 0.95rem; }
.card {
border: 1px solid var(--line);
border-radius: var(--radius);
padding: 16px 18px;
background: rgba(0,0,0,0.01);
}
nav.toc { margin: 16px 0 28px; }
nav.toc ol { margin: 8px 0 0 1.25rem; padding: 0; }
nav.toc li { margin: 6px 0; }
h2 { margin-top: 28px; font-size: 1.35rem; }
h3 { margin-top: 18px; font-size: 1.1rem; }
ul, ol { padding-left: 1.25rem; }
code, .mono { font-family: ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", "Courier New", monospace; font-size: .95em; }
.pill {
display: inline-block; padding: 2px 8px; border: 1px solid var(--line); border-radius: 999px; color: var(--muted); font-size: .85rem;
}
hr { border: none; border-top: 1px solid var(--line); margin: 28px 0; }
.fineprint { color: var(--muted); font-size: .95rem; }
.summary {
background: rgba(53,122,116,0.06);
border: 1px solid rgba(53,122,116,0.25);
}
/* Cookie banner */
.cookie-banner {
position: fixed; inset: auto 16px 16px 16px;
max-width: 680px; background: var(--bg);
border: 1px solid var(--line); border-radius: var(--radius);
box-shadow: 0 8px 28px rgba(0,0,0,.12);
padding: 14px 16px; display: none; z-index: 9999;
}
.cookie-actions { display: flex; gap: 8px; flex-wrap: wrap; margin-top: 10px; }
.btn {
appearance: none; border: 1px solid var(--line); background: #fff; color: var(--ink);
border-radius: 10px; padding: 8px 12px; cursor: pointer;
}
@media (prefers-color-scheme: dark) {
.btn { background: #121921; }
}
.btn.primary { background: var(--brand); color: #fff; border-color: transparent; }
</style>
<!-- Structured Data -->
<script type="application/ld+json">
{
"@context":"https://schema.org",
"@type":"WebPage",
"name":"Privacy Policy",
"url":"https://devexly.org/privacy-policy",
"isPartOf": {
"@type":"Organization",
"name":"Devexly",
"url":"https://devexly.org",
"email":"contact@devexly.org"
},
"datePublished":"2025-11-04",
"dateModified":"2025-11-04",
"description":"Devexly Privacy Policy for the website and services."
}
</script>
</head>
<body>
<header class="wrap" role="banner">
<div class="eyebrow">Devexly</div>
<h1 class="title">Privacy Policy</h1>
<div class="fineprint">Effective date: <time datetime="2025-11-04">November 4, 2025</time></div>
</header>
<main class="wrap" role="main">
<section class="card summary" aria-labelledby="summary">
<h2 id="summary">Short summary (non-binding)</h2>
<p>We collect minimal business contact and usage data to run our Site, reply to inquiries, deliver client work, and meet legal duties. We don’t sell your data. You can contact us any time to exercise privacy rights.</p>
</section>
<nav class="card toc" aria-label="Table of contents">
<strong>On this page</strong>
<ol>
<li><a href="#who-we-are">Who we are</a></li>
<li><a href="#scope">1) Scope</a></li>
<li><a href="#personal-information">2) Personal Information We Collect</a></li>
<li><a href="#use-of-personal-information">3) How We Use Personal Information</a></li>
<li><a href="#legal-bases">4) Legal Bases (EEA/UK)</a></li>
<li><a href="#sharing">5) How We Share Information</a></li>
<li><a href="#cookies">6) Cookies & Analytics</a></li>
<li><a href="#retention">7) Data Retention</a></li>
<li><a href="#blockchains">8) Blockchains, Wallets, and Public Data</a></li>
<li><a href="#roles">9) Role as Processor vs Controller</a></li>
<li><a href="#transfers">10) International Data Transfers</a></li>
<li><a href="#security">11) Security</a></li>
<li><a href="#children">12) Children’s Privacy</a></li>
<li><a href="#rights">13) Your Privacy Rights</a></li>
<li><a href="#third-parties">14) Third-Party Links</a></li>
<li><a href="#changes">15) Changes to This Policy</a></li>
<li><a href="#contact">16) Contact Us</a></li>
</ol>
</nav>
<section id="who-we-are">
<h2>Who we are</h2>
<p><strong>Devexly</strong> (“Devexly,” “we,” “us,” or “our”) provides blockchain engineering and ecosystem development services. This Privacy Policy explains how we collect, use, disclose, and protect personal information when you visit <span class="mono">devexly.org</span> (the “Site”) or interact with us for sales, support, talent/recruiting, or client work.</p>
<p>If you have questions, contact us at <a href="mailto:contact@devexly.org">contact@devexly.org</a>.</p>
</section>
<section id="scope">
<h2>1) Scope</h2>
<p>This Policy covers:</p>
<ul>
<li>Visitors to our Site</li>
<li>Prospective and current clients and partners</li>
<li>Job applicants and contractors</li>
<li>Individuals who contact us by email or through forms</li>
</ul>
<p>It does not cover information that is inherently public on blockchains (see <a href="#blockchains">§8</a>), or data we process strictly on behalf of clients as a processor (see <a href="#roles">§9</a>).</p>
</section>
<section id="personal-information">
<h2>2) Personal Information We Collect</h2>
<h3>A. Information you provide directly</h3>
<ul>
<li><strong>Contact details:</strong> name, email address, company, role, and the content of messages you send us.</li>
<li><strong>Business information:</strong> project goals, requirements, statements of work, and contractual details.</li>
<li><strong>Recruiting:</strong> CV/resume data, links (e.g., GitHub, LinkedIn), portfolio, and communications.</li>
<li><strong>Billing:</strong> invoicing details, payment confirmations, and necessary tax/finance records.<br />
<em>Note:</em> We use third-party payment providers where possible and do not store full payment card numbers on our systems.</li>
</ul>
<h3>B. Information collected automatically (Site)</h3>
<ul>
<li><strong>Device/usage data:</strong> IP address, browser type, operating system, pages viewed, timestamps, referring URLs.</li>
<li><strong>Cookies & similar tech:</strong> see <a href="#cookies">§6 (Cookies & Analytics)</a>.</li>
</ul>
<h3>C. Information from third parties</h3>
<ul>
<li>Public sources (e.g., GitHub, public package registries, conference sites)</li>
<li>Referrals and partners who introduce you to us</li>
<li>Recruiting platforms and professional networks (e.g., LinkedIn) where you’ve made information available</li>
</ul>
</section>
<section id="use-of-personal-information">
<h2>3) How We Use Personal Information</h2>
<p>We use personal information to:</p>
<ul>
<li>Operate, secure, and improve the Site</li>
<li>Respond to inquiries; provide proposals, SOWs, and statements of work</li>
<li>Deliver and support services (including developer tools, SDKs, integrations, and documentation)</li>
<li>Manage our relationship with you (accounting, billing, and contract administration)</li>
<li>Conduct recruiting and talent operations</li>
<li>Send administrative messages and service communications</li>
<li>Comply with legal obligations and enforce agreements</li>
</ul>
<p>We do not use your personal information for automated decision-making that produces legal or similarly significant effects.</p>
</section>
<section id="legal-bases">
<h2>4) Legal Bases (EEA/UK)</h2>
<p>If you are in the EEA/UK, we process personal data under these legal bases:</p>
<ul>
<li><strong>Performance of a contract</strong> (Art. 6(1)(b) GDPR) — to provide requested services or pre-contract steps</li>
<li><strong>Legitimate interests</strong> (Art. 6(1)(f)) — e.g., Site security, business operations, B2B communications</li>
<li><strong>Consent</strong> (Art. 6(1)(a)) — where required (e.g., certain cookies/analytics or marketing)</li>
<li><strong>Legal obligation</strong> (Art. 6(1)(c)) — tax, accounting, compliance</li>
</ul>
<p>You may withdraw consent at any time where applicable.</p>
</section>
<section id="sharing">
<h2>5) How We Share Information</h2>
<p>We share information with:</p>
<ul>
<li><strong>Service providers / processors:</strong> cloud hosting, email, analytics, error logging, CRM, accounting, recruiting tools — strictly under contractual confidentiality and data-processing terms</li>
<li><strong>Professional advisors:</strong> legal, audit, finance, and compliance advisors</li>
<li><strong>Law enforcement or regulators:</strong> when required by applicable law or to defend legal claims</li>
<li><strong>Business transfers:</strong> in connection with a merger, acquisition, or similar transaction</li>
</ul>
<p>We do not sell personal information and we do not share it for cross-context behavioral advertising as those terms are defined under applicable U.S. state laws.</p>
</section>
<section id="cookies">
<h2>6) Cookies & Analytics</h2>
<p>We may use cookies or similar technologies to operate the Site, remember preferences, and understand aggregate usage. Where required by law, we will present a consent banner and honor your choices.</p>
<ul>
<li><span class="pill">Essential</span> necessary for core functionality (no consent required).</li>
<li><span class="pill">Analytics</span> help us measure traffic and performance.</li>
</ul>
<p>Your browser may offer “Do Not Track” (DNT) signals; because there is no common industry standard, we do not respond to DNT at this time. We do respond to consent choices where required.</p>
</section>
<section id="retention">
<h2>7) Data Retention</h2>
<p>We keep personal information only as long as necessary for the purposes described above, including to comply with legal, tax, and accounting obligations:</p>
<ul>
<li><strong>General inquiries & contact form data:</strong> up to 24 months after last interaction</li>
<li><strong>Client/accounting records (invoices, contracts):</strong> up to 7 years</li>
<li><strong>Recruiting records:</strong> up to 24 months (or shorter if you request deletion, subject to legal limits)</li>
<li><strong>Security logs:</strong> up to 12 months</li>
</ul>
<p>We may retain anonymized or aggregated data that does not identify you.</p>
</section>
<section id="blockchains">
<h2>8) Blockchains, Wallets, and Public Data</h2>
<p>Interactions with smart contracts and public blockchains are typically public and immutable. Wallet addresses, transaction hashes, and on-chain metadata are stored on decentralized networks outside our control. Anyone may read or analyze this data, including us and third parties.</p>
<p><strong>Linkability:</strong> A wallet address may become associated with you if you disclose it or if it is otherwise linked. Treat blockchain activity as public.</p>
<p><strong>Off-chain services:</strong> When we provide off-chain services (e.g., dashboards, APIs), we process related metadata as described in this Policy.</p>
</section>
<section id="roles">
<h2>9) Role as Processor vs Controller</h2>
<p>For our own Site and business operations, we act as a controller.</p>
<p>When delivering services under a client’s instructions (e.g., hosting, analytics pipelines, issue triage, QA), we often act as a processor. If applicable, we will enter into a Data Processing Agreement (DPA) with clients and follow their documented instructions.</p>
</section>
<section id="transfers">
<h2>10) International Data Transfers</h2>
<p>We may transfer personal data across borders (e.g., to service providers). Where required for EEA/UK data, we rely on lawful transfer mechanisms such as the EU Standard Contractual Clauses (SCCs) and the UK IDTA/Addendum, plus supplementary measures where appropriate.</p>
</section>
<section id="security">
<h2>11) Security</h2>
<p>We use reasonable and appropriate technical and organizational measures to protect personal information, including encryption in transit (TLS), access controls, least-privilege practices, and regular updates/patching. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.</p>
</section>
<section id="children">
<h2>12) Children’s Privacy</h2>
<p>Our Site and services are intended for business and professional audiences. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us and we will take appropriate action.</p>
</section>
<section id="rights">
<h2>13) Your Privacy Rights</h2>
<h3>EEA/UK (GDPR)</h3>
<p>You may have the right to access, rectify, erase, restrict, object, port your data, and withdraw consent (where processing is based on consent). You also have the right to lodge a complaint with your local supervisory authority.</p>
<h3>United States (e.g., California, Colorado, Virginia, etc.)</h3>
<p>Subject to applicability, you may have the right to know/access, correct, delete, and opt out of certain uses (e.g., sale or targeted advertising). We do not sell or share personal information for cross-context behavioral advertising. You also have the right not to be discriminated against for exercising your rights.</p>
<p><strong>How to exercise rights:</strong> email <a href="mailto:contact@devexly.org">contact@devexly.org</a>. We may verify your identity and request additional information to process your request. Authorized agents may submit requests subject to verification.</p>
</section>
<section id="third-parties">
<h2>14) Third-Party Links</h2>
<p>The Site may link to third-party sites or services (e.g., GitHub). We are not responsible for their privacy practices. Review their policies before providing personal information.</p>
</section>
<section id="changes">
<h2>15) Changes to This Policy</h2>
<p>We may update this Policy from time to time. The “Effective date” at the top indicates when it was last revised. Significant changes will be posted on this page; your continued use of the Site after changes means you accept the updated Policy.</p>
</section>
<section id="contact">
<h2>16) Contact Us</h2>
<address>
<strong>Devexly</strong><br />
Email: <a href="mailto:contact@devexly.org">contact@devexly.org</a>
</address>
</section>
<hr />
<p class="fineprint">© <span id="y"></span> Devexly. All rights reserved.</p>
</main>
<footer class="wrap" role="contentinfo">
</footer>
<!-- Lightweight cookie banner stub -->
<div class="cookie-banner" id="cookieBanner" role="dialog" aria-live="polite" aria-label="Cookie consent">
<div><strong>Cookies & analytics</strong> — We use essential cookies and, with your permission, analytics to improve the Site. See <a href="#cookies">§6</a>.</div>
<div class="cookie-actions">
<button class="btn" id="cookieReject">Reject non-essential</button>
<button class="btn primary" id="cookieAccept">Accept all</button>
<button class="btn" id="cookiePrefs">Preferences…</button>
</div>
</div>
<script>
// Year
document.getElementById('y').textContent = new Date().getFullYear();
// Very simple consent storage (localStorage). Replace with your CMP if needed.
const BANNER_KEY = 'devexly.consent.v1';
const banner = document.getElementById('cookieBanner');
function showBanner() { banner.style.display = 'block'; }
function hideBanner() { banner.style.display = 'none'; }
function saveConsent(value) {
localStorage.setItem(BANNER_KEY, JSON.stringify({
choice: value,
ts: new Date().toISOString()
}));
}
function getConsent() {
try { return JSON.parse(localStorage.getItem(BANNER_KEY)); } catch { return null; }
}
// Wire buttons
document.getElementById('cookieAccept').addEventListener('click', function () {
saveConsent('accept_all'); hideBanner();
// TODO: load analytics scripts here if you use them
});
document.getElementById('cookieReject').addEventListener('click', function () {
saveConsent('reject_non_essential'); hideBanner();
// TODO: ensure analytics scripts do NOT load
});
document.getElementById('cookiePrefs').addEventListener('click', function () {
// Minimal stub — plug in a real preferences UI as needed.
alert('Preference center not implemented in this stub.');
});
// Init
if (!getConsent()) { showBanner(); }
// Example: gated analytics loader (replace with your vendor)
// if (getConsent()?.choice === 'accept_all') { /* load analytics */ }
</script>
</body>
</html>