Introduction

Welcome to instapump.fun ("we", "our", "us"). We are committed to protecting your personal data and respecting your privacy. This GDPR Privacy Policy explains how we collect, use, and share your personal data when accessing public information on social media applications.

Who We Are

instapump.fun is a website providing innovative services that allow content creators to tokenize their content, thereby unlocking its value through their followers and fans. As a data controller, we determine the purposes and means of processing your personal data.

Data We Collect

• Identity Data: Usernames and handles of social media accounts.
• Content Data: Public posts including images, videos (reels), and captions.
• Engagement Data: Number of likes on posts.

How We Collect Data

We do not collect information from our users. We ONLY display content from popular Instagram accounts that is already publicly available and distributable as per the policy at Instagram's Data Policy. We collect publicly available data from Instagram by accessing popular public posts made by certain Instagram handles. This data is displayed on our website based on hashtags that are of interest to our users. Additionally, we allow content creators to tokenize their content to engage with their followers and fans in new ways.

How We Use Your Data

• To display public Instagram posts on our website for user engagement.
• To allow users to view and interact with public Instagram content related to specific hashtags.
• To enable fans or followers of content creators to tokenize the content, allowing them to unlock its value.

The data is only used for displaying and tokenizing content to engage users and for helping to redirect more traffic to the original creator’s fan page on Instagram.

Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Legitimate Interests: The processing is necessary for our legitimate interests in providing a service that displays public Instagram content and allows fans or followers of content creators to tokenize their content for user engagement, thereby unlocking its value to the content creator themselves. We have carefully balanced these interests against the potential impact on the privacy and rights of the individuals whose data we process.

Specifically, we ensure that:

• The data we collect is already publicly available.
• Our processing activities are transparent, and we provide clear information about how we use the data.
• We only use data in ways that individuals would reasonably expect when they make their posts public.
• We implement robust security measures to protect the data we process.
• Individuals have rights under GDPR, including the right to object to our processing of their data, and we provide mechanisms to exercise these rights.

Data Subjects' Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data, including:

• Request Access: To your personal data.
• Request Correction: Of the personal data that we hold about you.
• Request Erasure: Of your personal data.
• Object to Processing: Of your personal data.
• Request Restriction of Processing: Of your personal data.
• Request the Transfer: Of your personal data to you or to a third party.
• Withdraw Consent: At any time where we are relying on consent to process your personal data.

Sharing Your Data

We may share your personal data with:

• Service Providers: Third parties who provide IT and system administration services.
• Professional Advisers: Including lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
• Regulators and Other Authorities: Who require reporting of processing activities in certain circumstances.

International Transfers

Your data will not be transferred to or processed in countries outside of the EEA. The data we collect is only displayed on our website, which is hosted within the EU.

Data Security

We take the security of your personal data very seriously and have implemented appropriate measures to protect it. These measures include:

• Access Controls: Only authorized personnel have access to personal data, and access is granted based on the principle of least privilege.
• Encryption: We use encryption protocols to protect personal data both in transit and at rest, ensuring that your data is secure from unauthorized access during transmission and storage.
• Network Security: Our systems are protected by firewalls, intrusion detection systems, and other network security measures to prevent unauthorized access and attacks.
• Data Minimization: We limit the amount of personal data collected and processed to what is necessary for our purposes, reducing the risk of data exposure.
• Regular Audits: We conduct regular security audits and assessments to identify and address potential vulnerabilities in our systems.
• Employee Training: All employees are trained on data protection best practices and the importance of maintaining the security and confidentiality of personal data.
• Incident Response: We have a robust incident response plan in place to quickly identify, contain, and remediate any data breaches or security incidents.
• Secure Development Practices: Our software development processes follow secure coding practices to ensure that our applications are free from security vulnerabilities.
• Physical Security: Our data centers and offices are secured with physical security measures, including access controls and surveillance, to prevent unauthorized physical access to our systems and data.

By implementing these measures, we strive to ensure that your personal data is protected from accidental loss, unauthorized access, use, alteration, or disclosure.

Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Specifically:

• Engagement-Based Retention: We retain the collected data for as long as there is engagement with the content. Engagement in this context refers to the minting or tokenization of the content by users on our platform.
• Automatic Deletion: If no engagement (minting or tokenization) is detected within 24 hours of collecting the data, the data will be automatically deleted from our systems to ensure it is not retained unnecessarily.

By adhering to this data retention policy, we ensure that personal data is only kept for the minimum amount of time required to achieve our objectives and that unused data is promptly deleted to protect your privacy.

Contact Us

If you have any questions about this GDPR Privacy Policy, including any requests to exercise your legal rights, please contact us at:

Email: info@instapump.fun

Address: Harju maakond, Tallinn, Kesklinna linnaosa, Tornimäe tn 5, 10145

Changes to This Policy

We may update this GDPR Privacy Policy from time to time in response to changing legal, technical, or business developments. We will take appropriate measures to inform you, consistent with the significance of the changes we make. Specifically:

• Notification Methods: We will notify you of significant changes to this policy through one or more of the following methods:
• Email Notification: We will send an email to the address associated with your account, informing you of the changes.
• Website Notification: We will post a notice on our website, highlighting the changes made to the policy.
• In-App Notification: If applicable, we will provide a notification within the app or platform informing you of the updates.
• Advance Notice: Where feasible, we will provide you with advance notice of any significant changes to this policy. This will give you the opportunity to review the changes and understand their implications before they take effect.
• Reviewing the Policy: We encourage you to periodically review this GDPR Privacy Policy to stay informed about how we are protecting your personal data. The "Last Updated" date at the top of this policy will indicate when it was most recently revised.

By keeping you informed of significant changes to our privacy practices, we ensure transparency and help you stay aware of how your personal data is being handled.