# Privacy Policy **Last Updated: 03/23/2026** *** ## 1. Who We Are **Markov Lab** (hereinafter "Markov Labs", "we", "us", or "our") is a **French simplified joint-stock company** (société par actions simplifiée — SAS) governed by French law. Markov Labs operates the website markovlabs.xyz and associated documentation, dashboards, and tools (together, the "Services"). Markov Labs is the **data controller** for the processing described in this Privacy Policy. *** ## 2. Purpose This Privacy Policy explains what personal data we collect, why we process it, how long we keep it, and what rights you have under the General Data Protection Regulation (GDPR). *** ## 3. Data We Collect ### 3.1 Data You Provide * **Contact data:** email address (if you contact us via support or partnerships) * **Communications:** content of messages, feedback, or inquiries you send us ### 3.2 Technical and Usage Data * **Connection data:** IP address, date and time of access, browser type and version * **Device data:** operating system, screen resolution, language settings * **Usage data:** pages visited, interactions with the Documentation ### 3.3 Blockchain Data When you interact with vaults curated by Markov Labs, the following data may be publicly available on-chain: * Wallet address (public key) * Transaction hashes and amounts * Smart contract interactions Markov Labs does not control public blockchains and is not the data controller for on-chain data. See Section 9. ### 3.4 Cookies We use strictly necessary cookies only (session management, security). We do not use advertising or tracking cookies. If this changes, we will update this policy and request your consent where required. *** ## 4. Why We Process Your Data | Purpose | Data Used | Legal Basis (GDPR Art. 6) | | ------------------------------------ | ----------------------------------- | ------------------------- | | Responding to inquiries | Contact data, communications | Legitimate interest | | Operating and improving the Services | Technical data, usage data | Legitimate interest | | Security and abuse prevention | IP address, logs, technical signals | Legitimate interest | | Legal and regulatory compliance | Any data as required | Legal obligation | *** ## 5. Who We Share Data With ### 5.1 Service Providers We may share data with processors who assist us with hosting, analytics, and security. These providers act under our instructions and are bound by data processing agreements. ### 5.2 Legal Authorities We may disclose data to comply with legal obligations, court orders, or regulatory requests. ### 5.3 No Sale of Data We do not sell your personal data. *** ## 6. International Transfers If your data is transferred outside the European Economic Area, we ensure appropriate safeguards are in place, including: * Standard Contractual Clauses approved by the European Commission * Additional technical measures (encryption, access controls) *** ## 7. Data Retention | Data Type | Retention Period | | ----------------------- | --------------------------------------- | | Support communications | Duration of the exchange + 3 years | | Technical/security logs | 12 months | | Cookie data | Maximum 13 months (per CNIL guidelines) | Data is deleted or anonymized once the retention period expires, unless a longer period is required by law. *** ## 8. Your Rights Under the GDPR, you have the right to: | Right | Description | | -------------------- | ------------------------------------------------- | | **Access** | Obtain a copy of your personal data | | **Rectification** | Correct inaccurate data | | **Erasure** | Request deletion of your data | | **Restriction** | Restrict processing in certain cases | | **Objection** | Object to processing based on legitimate interest | | **Portability** | Receive your data in a structured format | | **Withdraw consent** | Where processing is based on consent | To exercise your rights, contact us at: **** We will respond within one month. We may ask for identity verification before processing your request. *** ## 9. Blockchain Data Notice Public blockchains are decentralized and transparent. Data recorded on-chain (wallet addresses, transaction amounts, smart contract interactions) may be **permanent and publicly accessible**. Markov Labs is not the data controller for data processed by blockchain networks. The rights of erasure and rectification may be technically impossible for on-chain data. **Recommendation:** Do not include directly identifying personal information (name, email) in blockchain transactions or metadata. *** ## 10. Minors The Services are not intended for individuals under 18. We do not knowingly collect data from minors. *** ## 11. Third-Party Links The Services may contain links to third-party websites. This Privacy Policy does not apply to those sites. We encourage you to review their privacy policies. *** ## 12. Changes We may update this Privacy Policy at any time. Material changes will be indicated by updating the "Last Updated" date. Continued use of the Services constitutes acceptance. *** ## 13. Contact For any privacy-related questions: **Email:** **Entity:** Markov Lab (SAS) *** ## 14. Supervisory Authority If you believe your rights are not respected, you may lodge a complaint with the **CNIL**: **CNIL — 3 Place de Fontenoy — TSA 80715 — 75334 Paris Cedex 07** Website: cnil.fr --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.markovlabs.xyz/disclosures/privacy-policy.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.