Legal

AthID Privacy Policy

Effective Date: 1 March 2026

Operator: Standard Plinth Pty Ltd (Australia)

1. Introduction

This Privacy Policy explains how Standard Plinth Pty Ltd (“Standard Plinth”, “we”, “us”, “our”) collects, uses, stores, and discloses personal information in connection with AthID.

AthID is a digital identity and ownership credential service.

We are committed to handling personal information in accordance with:

• The Privacy Act 1988 (Cth)
• The Australian Privacy Principles (APPs)

By using AthID, you agree to this Privacy Policy.

2. What Personal Information We Collect

We may collect the following categories of personal information:

Identity Information

• Full name
• Email address
• Date of birth (if required)
• Government-issued ID (if verification required)
• Photographic verification (if required)

Account Information

• Login credentials
• Authentication method
• Device information
• IP address
• Access timestamps

Wallet Information

• Wallet address
• Wallet binding records
• Public key data
• Credential issuance records

Publisher-Provided Information

Where you register via an integrated publisher, we may receive:

• Identity verification data
• Confirmation of purchase
• Publisher transaction reference

We do not collect financial payment details directly unless explicitly stated.

Payments are processed by third-party providers (e.g., Stripe) under their own privacy policies.

3. How We Collect Information

We collect personal information:

• Directly from you when you register
• Through identity verification processes
• From integrated publishers via API
• Automatically through system logs
• From third-party verification providers (where applicable)

4. Why We Collect Personal Information

We collect and use personal information to:

• Create and maintain your AthID account
• Verify identity where required
• Issue ownership credentials
• Enforce access control
• Bind wallets to identity
• Prevent fraud or abuse
• Maintain system security
• Comply with legal obligations

We do not sell personal information.

We do not use personal information for speculative profiling or advertising resale.

5. Devnet Beta Environment

During the Beta:

• Ownership credentials are issued on a development network.
• Activity logs may be retained for system testing.
• Data may be used to improve system performance and reliability.
• Beta participation data may be retained for security auditing purposes.

6. Disclosure of Personal Information

We may disclose personal information:

To Service Providers

• Cloud infrastructure providers
• Identity verification providers
• Security monitoring services
• Email service providers

To Integrated Publishers

• Confirmation of identity verification status
• Ownership credential confirmation
• Access validation status

To Regulators or Authorities

• Where required by law
• In response to court orders or lawful requests

We do not disclose personal information to data brokers.

7. International Data Transfers

Some service providers may store or process data outside Australia.

Where this occurs, we take reasonable steps to ensure appropriate safeguards are in place consistent with Australian Privacy Principles.

8. Data Security

We implement technical and organisational measures to protect personal information, including:

• Encrypted transmission (HTTPS/TLS)
• Secure key management practices
• Role-based access control
• Logging and monitoring
• Secure infrastructure providers

No system can guarantee absolute security, but we take reasonable steps to protect data against misuse, interference, and loss.

9. Data Retention

We retain personal information:

• For as long as your account remains active
• As required for legal or compliance purposes
• For security auditing purposes

You may request account deletion, subject to legal retention obligations.

Certain technical records (such as credential issuance logs) may be retained for system integrity and audit purposes.

10. Access and Correction

You may request:

• Access to personal information we hold about you
• Correction of inaccurate or incomplete information

Requests can be made via: hello@athenium.au

We will respond within a reasonable timeframe.

11. Account Deletion

You may request deletion of your AthID account.

Deletion may result in:

• Loss of access to issued credentials
• Removal of wallet binding
• Inability to access associated content

Certain records may be retained where legally required or necessary for system integrity.

12. Cookies and Tracking

AthID may use:

• Essential session cookies
• Security cookies
• Authentication tokens

We do not use tracking cookies for advertising resale.

13. Complaints

If you believe we have breached your privacy rights, you may contact us at:

hello@athenium.au

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

14. Changes to This Policy

We may update this Privacy Policy from time to time.

We will notify users of material changes via email or in-app notification.