Fankado Privacy Policy

Effective date: Oct 5, 2025

This Privacy Policy describes how Fankado, Inc. (“Fankado,” “we,” “us,” or “our”) collects, uses, discloses, and safeguards personal information when you use our websites, apps, and services that link to this Policy (collectively, the “Service”), as well as our marketing, events, social media, creator programs, and promotions.

By using the Service, you agree to the practices described here. If you do not agree, do not use the Service.

1. Personal information we collect

We collect information in three main ways: (A) you provide it; (B) it’s collected automatically; and (C) we receive it from third parties.

A. Information you provide

• Contact & profile data: name, email, phone, mailing/shipping address; age or date of birth (for eligibility checks); username; avatar or display image.
• Verification data: Government-issued ID, date of birth, selfies/liveness checks, proof-of-control over official social channels (e.g., posting a one-time code), public agent/management contact details you provide for verification.
• Social handles and visibility settings: (e.g., X/Twitter, Instagram, TikTok), your creator follow/subscribe choices, and messaging preferences.
• Account security: passwords or credential fragments (hashed/salted where applicable), multi-factor details.
• Purchase & fulfillment data: items purchased (Cards, Packs), quantities, price paid, currency, order IDs, delivery preferences, shipping details (printed cards).
• Financial & payout data (Creators): tax forms (e.g., W-9/W-8), payout preferences, bank/processor account tokens; information needed to calculate and remit creator revenue shares and to resolve chargebacks/fraud.
• Compliance data: KYC/AML screening outputs (where required), sanctions screening results, proof of identity, age, or residency for Promotions/AMOE eligibility.
• Communications: emails, support chats, survey responses, feedback.
• User-generated content: profile information, comments, ratings, photos, artwork or other materials you upload, and associated metadata.

B. Automatic data collection

• Device & network data: IP address, device identifiers, OS, browser type, screen resolution, language, carrier, approximate location (city/region), and similar diagnostics.
• Online activity data: pages viewed, links clicked, time on page, referring/exit pages, in-app events, session dates/times, marketing campaign attribution, email open/click signals.
• Location data (if enabled): coarse or precise device location.
• Cookies, local storage, pixels, and SDKs: We use cookies and similar technologies to operate and secure the Service, remember your preferences, perform analytics, measure campaigns, and (where applicable) support advertising.

C. Information from third parties

• Payment, fraud, and risk partners: payment processors, chargeback/fraud prevention tools, identity verification and sanctions-screening vendors.
• Screening vendors: verification signals (e.g., public blue-check status, platform account metadata, agent/management listings) and results from identity and sanctions-screening vendors.
• Login/linked services: if you choose to link or log in via a third-party service, we receive profile elements permitted by that service’s settings.
• Marketing/analytics partners: channel performance, attribution data, audience insights.
• Public sources: public profiles, social content you tag to us, public records.

2. How we use personal information

• Provide and improve the Service: operate accounts; process orders; ship printed Cards; enable opening windows; provide creator portals; calculate revenue shares; debug and improve performance.
• Enable creator-to-buyer communications; share your chosen identifiers with creators whose products you purchased.
• Payments, payouts, and tax: process purchases and refunds; evaluate and manage chargebacks; generate tax forms and comply with obligations.
• Security, fraud, and compliance: authenticate users; detect, prevent, and investigate fraud or manipulation; enforce Terms.
• Identity Verification: verify creator identity and authenticity.
• Communications: transactional messages, support responses, marketing where permitted.
• Research and analytics: analyze engagement, Pack open rates, rarity performance, testing, and QA.
• Promotions and AMOE: administer giveaways, verify eligibility, deliver prizes.
• Legal: comply with law, protect rights, safety, and property.
• Create de-identified/aggregated data: for analytics and business purposes.

Legal bases for processing (EEA/UK/Switzerland). Where applicable, we rely on: performance of a contract; legitimate interests (e.g., security, fraud prevention, product improvement, marketing to existing users); consent (where required); and legal obligations.

3. How we share personal information

• Creators: your display name, purchased items, and any opt-in social handles/contact details, for support and updates. Creators are independent controllers and must comply with law and preferences.
• Service providers: hosting, cloud, security, fraud/chargeback prevention, identity verification, email/SMS, analytics, printing, shipping, professional advisors.
• Verification & compliance vendors: for identity and sanctions screening.
• Payment & payout processors: to process purchases and payouts.
• Login/linked platforms: according to your settings.
• Marketing and analytics partners: to measure and improve campaigns and the Service.
• Promotion vendors: entry management, winner selection, prize fulfillment.
• Authorities and legal requests: to comply with law or protect safety.
• Business transferees: in connection with mergers, acquisitions, financings, or sale of assets.
• Other users/public: content you make public can be viewed or shared by others.

We do not sell your personal information for money. We may “share” identifiers and online activity data with advertising/analytics providers in a way that could be considered “targeted advertising” or “sharing” under certain U.S. state laws; see Your Privacy Rights for how to opt out.

4. Your choices

• Access, correction, deletion: via account settings or privacy request.
• Marketing opt-out: unsubscribe via links in emails.
• Cookies & analytics: browser controls or cookie banner.
• Linked services: adjust sharing in third-party accounts.
• Do Not Track: we do not respond to DNT signals at this time.

5. Your privacy rights

Depending on your jurisdiction, you may have the right to request access, correction, deletion, portability, restriction/objection, or opt-out of targeted advertising and sale. Submit requests at privacy@fankado.com. We will verify identity and respond per law.

Appeals: If we deny your request, you may appeal by replying or emailing privacy@fankado.com with “Appeal” in the subject.

California: This Policy serves as notice at collection. We disclose categories described above, retain as below, and do not collect sensitive information for inferring characteristics.

EEA/UK/Switzerland: You may contact your local data protection authority. Where we rely on consent, you may withdraw at any time. For creator verification, we rely on contract performance, legitimate interests, and legal obligations.

6. Retention

We retain personal information as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. De-identified/aggregated data may be retained indefinitely.

7. Security

We employ administrative, technical, and physical safeguards appropriate to data sensitivity (e.g., encryption, access controls, monitoring). No system is perfectly secure; you use the Service at your own risk.

8. International data transfers

We are based in the United States and use service providers worldwide. If your information is transferred internationally, we implement appropriate safeguards (e.g., Standard Contractual Clauses where applicable).

9. Children

The Service is not for individuals under 18. If you believe we collected a child’s personal information in violation of law, contact privacy@fankado.com and we will delete it as required.

10. Third-party sites and services

The Service may link to or integrate third-party services. Their handling of your information is governed by their policies; we are not responsible for their practices.

11. Changes to this Policy

We may update this Policy from time to time. If we make material changes, we will notify you by updating the effective date and providing additional notice as required. Continued use after the effective date indicates acceptance.

12. Contact us

Email (privacy): privacy@fankado.com
Email (general): support@fankado.com
Postal mail: Fankado, Inc., Attn: Privacy, 60 Rausch Street, San Francisco, CA, 94103

Notes for Creators (payout recipients)

We process tax forms, payout preferences, and fraud/chargeback signals to calculate Net Revenue and manage holds/reserves in line with our Terms. We may require identity verification and sanctions screening before releasing funds. We may disclose Creator information to payment/payout processors, tax authorities (as required), and professional advisors.