DLT Tech SHPK (hereinafter the “Service Provider”, “NFTiFay”, “we”, “our”, or “us”) develops and operates the NFT marketplace platform (hereinafter the “Platform”). In the course of providing our services (hereinafter the “Service”), we process personal data relating to you.
We are committed to protecting your personal data. We process personal data in accordance with applicable data protection laws, including, where applicable, the EU General Data Protection Regulation (GDPR) and Albania’s Law No. 124/2024 on Personal Data Protection. KPMG+1
The controller of your personal data is:
DLT Tech SHPK
Address: 8R912+CP6, Rruga Janos Hunyadi, Tiranë, Albania
Email: info@nftifay.com
We may collect and process the following personal data about you:
First name and surname
Email address
Phone number
Wallet address
Information about your transactions on the Platform
Identity document(s), where required (e.g., KYC)
Proof of residence, where required
Payment-related information (where applicable)
Additional information required for KYC / AML compliance
Device and usage information (e.g., IP address, browser type, operating system, and similar technical identifiers)
We process your data for the following purposes (and legal bases, where applicable):
To manage contractual and pre-contractual relations (GDPR Art. 6(1)(b))
To create and manage user profiles and accounts (GDPR Art. 6(1)(b))
To provide customer support and operate the Platform (GDPR Art. 6(1)(b) and/or 6(1)(f))
To ensure security and proper technical functioning of the Platform (GDPR Art. 6(1)(f))
To prevent and detect fraud and to comply with anti-money laundering / counter-terrorism financing obligations (GDPR Art. 6(1)(c) and/or 6(1)(f))
To manage payments, disputes, and rights-related requests (GDPR Art. 6(1)(f); and/or 6(1)(c) where legally required)
Where required, to rely on your consent for specific processing activities (GDPR Art. 6(1)(a))
Some personal data may be mandatory. If you do not provide it, we may be unable to provide all or part of our Services.
We may share personal data with:
Subcontractors and service providers (e.g., hosting providers, payment processors, identity verification/KYC providers, security service providers)
Legal or regulatory authorities where required by law or lawful request
Auditors, accountants, legal counsel, and AML compliance professionals
Where required, third parties are engaged under appropriate contractual safeguards (including data processing agreements).
Subject to legal limitations, you may have the right to:
Access your personal data
Correct inaccurate data
Request deletion of your personal data (“right to be forgotten”), where applicable
Object to processing
Restrict processing
Data portability
Withdraw consent (where processing is based on consent)
To exercise your rights, contact us at info@nftifay.com.
You may also have the right to lodge a complaint with the competent supervisory authority, including the Commissioner for the Right to Information and Personal Data Protection (Albania). DLA Piper Veri Koruma+1
To comply with AML obligations and to protect the Platform, we may use monitoring and third-party tools to detect fraud or suspicious activity. This may involve profiling, subject to applicable law.
We retain personal data for as long as your account is active and as needed to provide the Service. We may retain certain data for longer where necessary:
To comply with legal obligations (including AML/financial compliance)
To establish, exercise, or defend legal claims
For security, fraud prevention, and dispute resolution
Where personal data is transferred outside the European Economic Area (EEA) and the GDPR applies, we implement appropriate safeguards such as the EU Standard Contractual Clauses (SCCs) or other lawful transfer mechanisms. European Commission
We implement appropriate technical and organizational measures designed to protect personal data against unauthorized access, alteration, disclosure, or loss. Access to personal data is limited to authorized personnel under confidentiality obligations.
The Platform may contain links to third-party websites. This Privacy Policy applies only to our Platform. We are not responsible for the privacy practices or content of third-party sites.
We may update this Privacy Policy from time to time. The updated version will be posted on this page with a revised “Last updated” date. Where required, we may request your acceptance of materially updated terms.
DLT Tech SHPK
Address: 8R912+CP6, Rruga Janos Hunyadi, Tiranë, Albania
Email: info@nftifay.com