Overview This Privacy Policy (the “Policy”) sets out how LAXD (the “Company”) handles personal information and personal data (collectively, “Personal Information”) obtained in connection with the provision of the Service. This Policy applies to all channels operated by the Company, including websites, apps, APIs, and support desks.
1. Information We Collect The information we collect directly includes name, nickname, address, email address, phone number, date of birth, age verification materials (partial ID information, identity images, etc.), profile, payment and billing information (tokenized card data, payment identifiers, etc.), additional information for identity verification, and support history. Information collected automatically includes device information (OS, device identifiers), log information (access time, IP address, referrer, user agent), usage behavior (viewing, searching, purchasing, posting, clicking, etc.), information via cookies and similar technologies, and IP-based location information. Information obtained from third parties includes match results and risk scores from payment processors, identity verification vendors, fraud-prevention providers, and partner services. As a rule, we do not actively collect sensitive information (e.g., race, religion, health, sexual orientation), but it may be included in user submissions or self-disclosures.
2. Purposes of Use We use Personal Information to provide and perform the Service, including account creation, authentication, age verification, purchasing, selling, viewing, content delivery, and customer support. We also use it for charging, payment processing, settlement, refunds, chargeback handling, accounting, and audits. We use it for fraud detection and prevention, security, and legal compliance (AML/CFT, sanctions screening, record retention). We use it to maintain and improve the Service, for quality control, development, statistics and analytics, and personalization. We use it to deliver notices and communications regarding important announcements, service updates, policy changes, and support. For marketing, where required by law or regional regulation, we rely on consent. We also use it for dispute resolution, exercising or defending legal rights, responding to legal and regulatory requests, and data transfers in connection with corporate reorganizations (mergers, acquisitions, asset transfers, etc.).
3. Legal Bases (where EEA/UK apply) We process Personal Information on the bases of performance of a contract, legitimate interests, legal obligations, and consent (which may be withdrawn). Legitimate interests include ensuring service safety, preventing fraud, improving quality, and limited marketing.
4. Cookies and Similar Technologies We use essential cookies, functional cookies, and analytics/advertising cookies. You can manage them via your browser settings and our cookie preference center. Advertising cookies are used based on consent.
5. Sharing and Disclosure We may provide Personal Information to service providers such as cloud and CDN providers, payment/KYC/fraud vendors, email delivery services, customer support providers, analytics providers, and consent-based advertising partners. We may conduct joint use with our subsidiaries and affiliates, handling the data in accordance with this Policy. We may disclose information for legal compliance, in response to governmental requests, to protect rights and safety, or to enforce contracts. We may provide information to a successor in connection with corporate reorganizations. For payments, payment transaction services routed via Hong Kong may be provided by our partners, and we will share necessary payment information with such providers (which comply with PCI DSS and similar standards).
6. International Transfers Personal Information may be transferred to and stored in countries other than the country of collection (e.g., the United States, Hong Kong). We implement appropriate safeguards, such as Standard Contractual Clauses (SCCs), in accordance with applicable laws.
7. Retention We retain Personal Information only for as long as necessary to achieve the purposes of use, for periods required by law, and for a reasonable period needed for dispute resolution and audits. When no longer needed, we securely delete or anonymize it. Age verification materials will be promptly deleted upon fulfillment of their purpose, except for minimal records retained.
8. Security We implement technical and organizational security measures (encryption, access controls, audit logs, vulnerability management, employee access management, etc.) to prevent leakage, loss, or damage of Personal Information. However, we cannot guarantee absolute security for transmission or storage over the internet.
9. Your Rights Subject to applicable law, you have the rights of access, rectification, erasure, restriction of processing, data portability, objection, and withdrawal of consent. To exercise your rights, please contact us via our designated contact point. We may request additional information to verify your identity. You may opt out of marketing emails, but essential service notices cannot be disabled.
10. Children’s Privacy We prohibit the use, posting, or viewing of adult-designated content by persons under 18. If we learn that we have collected Personal Information from a minor, we will promptly take steps such as deletion.
11. Digital Watermarking To prevent misuse, we may embed limited information used for user identification (digital watermarks) into digital content downloaded by users. Embedding is designed to minimize privacy impact and is used only within the purposes of this Policy.
12. Additional Notices for California and Similar Jurisdictions (as applicable) We provide notices and respond to requests regarding consumer rights (e.g., CCPA/CPRA). Where our handling of Personal Information for advertising purposes constitutes a sale or sharing, we will provide appropriate opt-out mechanisms.
13. Policy Updates We may revise this Policy from time to time. Material changes will be notified by reasonable means, and the latest version will be posted on our website (e.g., LAXD Privacy Policy).
14. Controller and Contact The controller of Personal Information is LAXD (please insert the formal legal entity name, registered address, representative, etc.). Please provide a dedicated email address, inquiry form URL, and mailing address. Where appropriate, include contact details for rights requests, complaints and inquiries, and the Data Protection Officer (DPO) or EU/UK representative.