Privacy

1. Introduction and Contact Details of the Controller

1.1 We are pleased that you are visiting our website and thank you for your interest. In the following, we inform you about the handling of your personal data when using our website. Personal data is any data by which you can be personally identified.

1.2 The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Ozren Jovic, Stolzenbergstr. 12, 76532 Baden-Baden, Germany, Tel.: +4915773863205, E-Mail: jovic@posteo.net. The controller is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data.

2. Data Collection When Visiting Our Website

2.1 When you use our website for informational purposes only — i.e. when you do not register or otherwise provide us with information — we only collect data that your browser transmits to our server (so-called server log files). When you visit our website, we collect the following data that is technically necessary to display the website:

• The website visited
• Date and time of access
• Amount of data sent in bytes
• Source/referrer from which you reached the page
• Browser used
• Operating system used
• IP address used (possibly in anonymised form)

Processing is carried out pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data is not passed on or used for any other purpose. We reserve the right to subsequently review the server log files if there are concrete indications of unlawful use.

2.2 This website uses SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content. You can recognise an encrypted connection by the string "https://" in your browser address bar.

3. Hosting & Content Delivery Network

For hosting our website and displaying page content, we use a provider that provides its services itself or through selected sub-contractors exclusively on servers within the European Union.

All data collected on our website is processed on these servers.

We have concluded a data processing agreement with the provider that ensures the protection of our visitors' data and prohibits unauthorised disclosure to third parties.

4. Cookies

To make visiting our website attractive and to enable the use of certain functions, we use cookies — small text files stored on your device. Some of these cookies are automatically deleted when you close your browser (so-called session cookies); others remain on your device and allow page settings to be saved (so-called persistent cookies). In the latter case, you can find the storage duration in the cookie settings of your web browser.

Where individual cookies we use also process personal data, this is done pursuant to Art. 6(1)(b) GDPR for the performance of a contract, pursuant to Art. 6(1)(a) GDPR in the case of consent, or pursuant to Art. 6(1)(f) GDPR to safeguard our legitimate interests in the best possible functionality of the website.

You can configure your browser to notify you about cookies and to decide individually whether to accept them, or to exclude cookies for certain cases or in general.

Please note that if you do not accept cookies, the functionality of our website may be limited.

5. Contact

When you contact us (e.g. by email), personal data is collected. The data is stored and used exclusively for the purpose of responding to your enquiry and for the associated technical administration.

The legal basis for processing this data is our legitimate interest in responding to your request pursuant to Art. 6(1)(f) GDPR. If your contact is aimed at concluding a contract, the additional legal basis is Art. 6(1)(b) GDPR. Your data will be deleted once your enquiry has been fully processed and there are no statutory retention obligations.

6. Tools and Other

Consent Tool

This website uses a consent tool to obtain effective user consent for cookies and cookie-based applications that require consent. The tool is displayed when you visit the site as an interactive interface, allowing you to grant consent for specific cookies and/or cookie-based applications. Only cookies/services requiring consent are loaded once you grant the corresponding consent. This ensures that such cookies are only placed on your device if you have given your consent.

The tool sets technically necessary cookies to store your cookie preferences. Personal user data is generally not processed in this context.

The legal basis is Art. 6(1)(f) GDPR on the basis of our legitimate interest in compliant, user-specific and user-friendly consent management, and additionally Art. 6(1)(c) GDPR as we are legally obliged to make non-essential cookies subject to user consent.

7. Web3 Features: Wallet, Blockchain, IPFS & localStorage

7.1 Wallet Connection and Base Network

PIXEL_ERA is a Web3 application on the Base Network. When you connect a wallet or interact with smart contracts, technical data is processed — in particular your public wallet address, transaction data, smart contract interactions, and any token- or NFT-related metadata.

Purpose: Provision of the requested Web3 function, execution and documentation of transactions.
Legal basis: Art. 6(1)(b) GDPR where processing is necessary to perform the function you requested; otherwise Art. 6(1)(f) GDPR.

Note: Data on public blockchains is generally permanent, immutable, and publicly visible. Subsequent deletion or modification is technically not possible as a rule.

7.2 Wallet Providers

To connect to PIXEL_ERA you use a compatible browser wallet, e.g. MetaMask, Coinbase Wallet or another EIP-1193-compatible wallet. The actual wallet infrastructure and individual processing operations are carried out by the respective wallet provider. We have only limited influence over this data processing. The privacy policy of your wallet provider also applies.

7.3 Uploaded Content / IPFS / Pinata

When you upload content, it may be made available via IPFS and technically pinned through Pinata. Data processed may include image files, technical metadata, IPFS CIDs, and links to blockchain data.

Purpose: Provision, storage, referencing and retrieval of your chosen content.
Legal basis: Art. 6(1)(b) GDPR.

Note: Content published via IPFS may remain permanently publicly accessible in practice and may be retrieved, stored or redistributed by third parties. Please do not upload sensitive or personal content if you do not wish this to happen.

7.4 localStorage / Local Browser Storage

We use localStorage to provide the website and wallet functionality. The following entries may be used:

• pixelera_consent – stores your decision regarding the consent banner
• pixelera_connected – stores the technical wallet connection status locally
• pixelera_address – stores the connected public wallet address locally in the browser

Legal basis: § 25(2) TDDDG where technically necessary; for subsequent processing Art. 6(1)(b) or Art. 6(1)(f) GDPR.
Retention: Until deleted by you or technically replaced.

8. Your Rights

8.1 Applicable data protection law grants you the following rights as a data subject with regard to the processing of your personal data:

• Right of access pursuant to Art. 15 GDPR;
• Right to rectification pursuant to Art. 16 GDPR;
• Right to erasure pursuant to Art. 17 GDPR;
• Right to restriction of processing pursuant to Art. 18 GDPR;
• Right to notification pursuant to Art. 19 GDPR;
• Right to data portability pursuant to Art. 20 GDPR;
• Right to withdraw consent pursuant to Art. 7(3) GDPR;
• Right to lodge a complaint pursuant to Art. 77 GDPR.

8.2 RIGHT TO OBJECT

WHERE WE PROCESS YOUR PERSONAL DATA ON THE BASIS OF A LEGITIMATE INTEREST PURSUANT TO ART. 6(1)(f) GDPR, YOU HAVE THE RIGHT TO OBJECT TO SUCH PROCESSING AT ANY TIME ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION, WITH EFFECT FOR THE FUTURE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL CEASE PROCESSING THE DATA CONCERNED. FURTHER PROCESSING REMAINS RESERVED WHERE WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR WHERE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE OR DEFENCE OF LEGAL CLAIMS.

WHERE YOUR PERSONAL DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME. IF YOU EXERCISE THIS RIGHT, WE WILL CEASE PROCESSING YOUR DATA FOR DIRECT MARKETING PURPOSES.

9. Retention Period for Personal Data

The retention period for personal data is determined by the applicable legal basis, the purpose of processing and, where relevant, the applicable statutory retention periods (e.g. commercial and tax law).

Personal data processed on the basis of explicit consent pursuant to Art. 6(1)(a) GDPR will be retained until you withdraw your consent.

Personal data processed on the basis of Art. 6(1)(f) GDPR will be retained until you exercise your right to object under Art. 21(1) GDPR, unless we can demonstrate compelling legitimate grounds for processing that override your interests, rights and freedoms, or processing serves the establishment, exercise or defence of legal claims.

Where no specific information is provided in this policy, stored personal data will be deleted when it is no longer necessary for the purposes for which it was collected or otherwise processed.