Privacy Policy

Last updated: April 7, 2025

This Privacy Policy describes how onyxgem.xyz (“we”, “our”, or “the Company”) collects, uses, stores, and protects your personal information when you visit our website or interact with our services. We are committed to safeguarding your privacy and ensuring that your personal data is handled in a transparent and lawful manner.

By using onyxgem.xyz, you agree to the practices described in this policy. If you do not agree, please discontinue use of our services immediately.

1. Information Collection

We collect information that you voluntarily provide to us, as well as data automatically collected when you browse our website. This enables us to improve our services and deliver a personalised experience.

1.1 Personal Information You Provide

• Contact details: name, email address, phone number (when you fill in forms, subscribe to newsletters, or contact us via [email protected]).
• Account credentials: if you create an account on onyxgem.xyz, we collect your username and encrypted password.
• Payment information: billing address, transaction details, and payment method data (processed securely by third-party payment processors; we do not store full credit card numbers).
• Communications: any messages, feedback, or support requests you send to us.

1.2 Automatically Collected Information

• Device & usage data: IP address, browser type and version, operating system, referring URLs, pages viewed, and the date/time of each request.
• Cookies & tracking technologies: we use cookies, web beacons, and similar technologies to enhance functionality and analyse trends (see Section 4 – Cookies).
• Location data: approximate geographic location derived from your IP address (only at a city/region level).

2. Use of Information

We use the collected data for the following legitimate business purposes:

• Service delivery: to operate, maintain, and provide the features of onyxgem.xyz, including processing transactions and managing user accounts.
• Customer support: to respond to your inquiries, troubleshoot issues, and send service-related communications.
• Improvement & analytics: to understand how users interact with our website, optimise content, and improve user experience.
• Marketing & updates: with your consent, we may send you promotional materials, newsletters, or updates about our services. You can opt out at any time.
• Legal compliance & security: to detect and prevent fraud, abuse, or illegal activities, and to comply with applicable legal obligations.

We will never sell your personal information to third parties. Data sharing only occurs as described in this policy or with your explicit consent.

3. Data Protection

We implement robust technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction.

• Encryption: all data transmitted between your browser and our servers is encrypted using TLS 1.3 (HTTPS). Sensitive data (e.g., passwords) is hashed and salted.
• Access controls: only authorised personnel have access to personal data, and they are bound by confidentiality agreements.
• Regular audits: we perform periodic security reviews, vulnerability scans, and penetration tests.
• Data minimisation: we collect only the information necessary for the purposes described in this policy.
• Incident response: in the unlikely event of a data breach, we will notify affected users and relevant authorities within 72 hours as required by law.

While we strive to protect your data, no method of transmission over the internet is 100% secure. We encourage you to use strong passwords and keep your login credentials confidential.

4. Cookies