Effective Date: May 28, 2026
Last Updated: May 28, 2026

This Privacy Policy describes how Empactus AI (“Empactus AI,” “we,” “us,” or “our”) collects, uses, discloses, and safeguards information when you visit empactusai.com and related properties (the “Site”), engage our consulting and tokenization services, subscribe to our communications, create an account, or connect a digital wallet. By using the Site or our services, you agree to the practices described in this Policy.

1. Who We Are

Empactus AI is a full-stack tokenization firm headquartered at 218 NW 24th Street, Miami, Florida, United States. We provide capital-raising support, token marketing, community development, and commercialization services for real-world assets across multiple asset classes. Because our clients, partners, and users are located in numerous jurisdictions, this Policy is drafted to address applicable data-protection requirements across multiple legal regimes, including the United States, the European Union, and the United Kingdom (GDPR/UK GDPR), and other jurisdictions where comparable laws apply.

2. Information We Collect

2.1 Information You Provide Directly

• Identity and contact data: name, email address, telephone number, company name, mailing address, and similar details submitted through contact forms, consulting intake forms, or correspondence.
• Consulting and engagement data: information you share when discussing a tokenization project, including asset descriptions, business plans, financial information, and project documentation.
• Account data: credentials, profile details, and preferences if you register for an account.
• Newsletter and marketing data: email address and subscription preferences when you opt in to our communications.
• Transaction and offering data: information related to your participation in or inquiry about token offerings, including investor-qualification details where legally required.
• Communications: the content of messages, support requests, and other correspondence you send to us.

2.2 Wallet and Blockchain Information

If you connect a digital wallet to the Site, we may collect your public wallet address and information about your on-chain transactions that are visible on public blockchains. We do not collect, store, or have access to your private keys, seed phrases, or recovery phrases. Information recorded on a public blockchain is, by the nature of the technology, public, immutable, and outside our control.

2.3 Information Collected Automatically

• Device and usage data: IP address, browser type, operating system, referring URLs, pages viewed, and dates/times of access.
• Cookies and similar technologies: small data files used to operate the Site, remember preferences, and analyze traffic. You can manage cookies through your browser settings; disabling some cookies may affect Site functionality.

2.4 Information from Third Parties

We may receive information from analytics providers, payment processors, identity- and investor-verification services, marketing platforms, and business partners, which we combine with information we already hold.

3. How We Use Your Information

• To provide, operate, and improve the Site and our consulting and tokenization services.
• To respond to inquiries, process service requests, and manage client engagements.
• To administer token offerings and related communications, including legally required investor verification, compliance, and record-keeping.
• To send newsletters, updates, and marketing communications you have requested, and to measure their effectiveness.
• To create and maintain accounts and to enable wallet-connect functionality.
• To detect, prevent, and address fraud, security incidents, and misuse.
• To comply with legal, regulatory, tax, accounting, and contractual obligations.
• To establish, exercise, or defend legal claims.

4. Legal Bases for Processing

Where the GDPR, UK GDPR, or similar laws apply, we process personal data on one or more of the following bases: your consent; performance of a contract with you; compliance with a legal obligation; protection of vital interests; and our legitimate interests in operating, securing, and growing our business, provided those interests are not overridden by your rights.

5. How We Share Information

We do not sell your personal information for money. We may share information in the following circumstances:

• Service providers: vendors who perform services on our behalf, such as hosting, analytics, payment processing, identity verification, email delivery, and customer support, bound by confidentiality obligations.
• Professional advisors: lawyers, accountants, auditors, and consultants where reasonably necessary.
• Business transfers: in connection with a merger, acquisition, financing, reorganization, or sale of assets.
• Legal and regulatory: when required by law, regulation, legal process, or governmental request, or to protect rights, property, or safety.
• With your direction or consent: when you ask us to share information or otherwise consent.

6. Cryptocurrency, Tokens, and Investment Risk

Information you submit in connection with token offerings may be subject to securities, anti-money-laundering (AML), know-your-customer (KYC), and sanctions-screening requirements. We may be legally required to collect, retain, and disclose such information to comply with these obligations. Nothing in this Policy constitutes investment, legal, tax, or financial advice, and digital assets involve significant risk, including the potential loss of your entire investment.

7. International Data Transfers

We are based in the United States and may process and store information in the United States and other countries that may not provide the same level of data protection as your jurisdiction. Where required, we rely on appropriate safeguards — such as Standard Contractual Clauses — for cross-border transfers of personal data.

8. Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this Policy, to comply with our legal, regulatory, tax, and accounting obligations, to resolve disputes, and to enforce our agreements. Retention periods vary depending on the type of data and the applicable requirements.

9. Your Rights and Choices

Depending on your jurisdiction, you may have rights to access, correct, delete, or port your personal information; to object to or restrict certain processing; to withdraw consent; and to lodge a complaint with a supervisory authority. Residents of certain U.S. states (including California) may have rights to know, delete, correct, and opt out of certain disclosures, and to be free from discrimination for exercising those rights.

• Marketing opt-out: you may unsubscribe at any time using the link in our emails or by contacting us.
• Cookies: you may manage cookies through your browser settings.
• Requests: to exercise your rights, contact us using the details in Section 13. We may verify your identity before responding.

10. Data Security

We implement reasonable administrative, technical, and organizational measures designed to protect personal information. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security. You are responsible for safeguarding your own account credentials and wallet keys.

11. Third-Party Links and Services

The Site may contain links to third-party websites, wallets, exchanges, and services that we do not control. This Policy does not apply to those third parties, and we encourage you to review their privacy practices.

12. Children’s Privacy

The Site and our services are not directed to individuals under the age of 18, and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can delete it.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the revised version with an updated “Last Updated” date, and material changes may be communicated through the Site or by email. Your continued use of the Site after changes take effect constitutes acceptance of the revised Policy.

14. Contact Us

If you have questions or requests regarding this Privacy Policy or your personal information, please contact us:

Empactus AI
218 NW 24th Street, Miami, Florida, United States
Email: tokenize@empactus.ai
Web: empactusai.com