EVO Labs DAO Privacy Policy

EVO Labs DAO (“we,” “us,” or “our”), a non-profit decentralized autonomous organization registered in the Marshall Islands, is committed to protecting your privacy and ensuring transparency in how we handle your information. This Privacy Policy explains how we collect, use, share, and protect your personal information when you access or use our website, forum, grant application processes, token minting, and related services (collectively, the “Platform”). By using the Platform, you consent to the practices described in this Privacy Policy.

• Basic Account Information: Name and email address (provided during account creation or grant applications). Wallet address (associated with a compatible wallet for SBT minting and governance participation).
• User Content: Content you submit, such as forum posts, grant proposals, comments, or other materials (“User Content”), which may include personal information you choose to share.
• KYC/AML Data: For grant applications or procurement requests exceeding certain funding thresholds, we may require identity verification (e.g., name, address, or government-issued ID) through registered third-party providers. This data is not stored by EVO Labs DAO.

• To create and manage your account, process SBT minting, and enable participation in governance (e.g., voting on proposals).
• To process and evaluate grant applications or procurement requests.
• To display your User Content (e.g., forum posts or proposals) on the Platform and foster collaboration.
• To send notifications, updates, or community announcements via Push Protocol or email (e.g., governance proposals or project milestones).
• To bundle and store User Content, including project notes, designs, and articles, on decentralized platforms like Arweave for up to 200 years, ensuring open-source accessibility as outlined in our whitepaper.
• To conduct KYC/AML checks for high-value funding requests, as required by law, using third-party providers.

• Public Sharing: User Content (e.g., forum posts, grant proposals, project outputs) is published openly on the Platform and stored on decentralized networks (e.g., Arweave, IPFS) to support our open-source mission. This content is accessible to the public, including non-DAO members, unless restricted to specific governance areas (e.g., CORE team workspace). Your wallet address may be visible on-chain during governance activities (e.g., voting via Snapshot) or Treasury transactions.
• Third-Party Service Providers: We use third-party tools to operate the Platform, including Web3Auth (for account authentication and SBT minting), Push Protocol (for notifications, chat, and video communication), Snapshot (for on-chain voting), Arweave/IPFS (for decentralized data storage), Kleros (for dispute resolution), and Fleek (for decentralized hosting). These providers may process your information under their own privacy policies, which we encourage you to review.
• KYC/AML Providers: For high-value funding requests, third-party KYC/AML providers may process identity verification data. This data is not stored by EVO Labs DAO and is handled solely by the provider in accordance with their privacy policies.
• Legal Compliance: We may disclose information if required by law, regulation, or legal process (e.g., court orders or subpoenas) or to protect the rights, safety, or property of EVO Labs DAO, its users, or the public.

• Open-Source Commitment: Consistent with our mission, User Content and project outputs are stored on decentralized platforms (e.g., Arweave, IPFS, or web3.storage) to ensure long-term accessibility (up to 200 years). This data is publicly available to support replication and innovation, except for restricted governance areas.
• Immutability: Data stored on Arweave and IPFS is immutable and cannot be deleted or modified once uploaded. By submitting User Content, you acknowledge and consent to this permanent storage.

• You can review and update your account information (e.g., name, email) via the Platform’s settings.
• Wallet addresses are tied to your Web3Auth account and cannot be modified without re-minting an SBT.
• You can opt out of non-essential notifications (e.g., community updates). Governance-related notifications may be mandatory for SBT holders.
• KYC/AML data is managed by third-party providers and not stored by us. Contact the relevant provider for access or deletion requests.
• Due to decentralized storage, User Content cannot be deleted once published. You are responsible for ensuring content does not include sensitive personal information before submission.
• You may request a copy of your account information (e.g., name, email) by contacting us, subject to verification.

We implement reasonable technical and organizational measures to protect your information, including reliance on secure third-party services (e.g., Web3Auth’s multi-factor authentication and multi-party computation).

You are responsible for securing your wallet credentials and ensuring the safety of your transactions. We are not liable for losses due to compromised wallets or unauthorized access.

Our use of decentralized storage (e.g., Arweave, IPFS) enhances data resilience and reduces reliance on centralized servers.

The Platform integrates third-party services critical to its operation. These services operate under their own privacy policies, and we are not responsible for their practices or performance.

We encourage you to review the privacy policies of Web3Auth, Push Protocol, Snapshot, Arweave, IPFS, Fleek, and Kleros before using the Platform.

As a decentralized Platform, your information (e.g., wallet addresses, User Content) may be processed and stored across multiple jurisdictions via blockchain networks and third-party services. By using the Platform, you consent to the transfer of your information to jurisdictions that may have different data protection laws.

The Platform is not intended for individuals under 18 years old. We do not knowingly collect personal information from children. If you believe a child has provided us with information, please contact us to have it removed.

We may update this Privacy Policy to reflect changes in our practices, technology, or legal requirements. Major changes will be communicated via on-platform notifications, email, or other reasonable means at least 30 days before taking effect. Continued use of the Platform after changes constitutes acceptance of the updated Privacy Policy.

For questions, concerns, or requests regarding your privacy, contact us via:

• On-Chain Form: evo-labs.io/contact
• Email: info@evo-labs.io

For governance-related inquiries, you may also submit a DAO Community Proposal through the Platform.

By using the EVO Labs Platform, you acknowledge that you have read, understood, and agree to this Privacy Policy.