Privacy Policy

Legal Notice

Onlydust.com is an online service edited by Wagmi SAS, a French simplified joint stock company registered in the trade and companies register of Paris under number 908 233 638, headquartered at 60 rue François 1er, 75008 Paris, France.

The purpose of this document is to provide information regarding the processing of personal data by the Company in compliance with article 13 of the GDPR.

For all questions or requests, you may contact us at the following email address: [email protected].

Legal Notice
Table of contents
1. Definitions
2. Foreword
3. Personal Data We collect
4. How do We process Your Personal Data
5. How do We store Your Personal Data
6. Your rights
7. How do We secure Your Personal Data
8. Cookies

1. Definitions

Where drafted in upper case, whether singular or plural, the following definitions are applicable to the entire Privacy Policy.

Account refers to a User's dedicated and individualized digital interface on the Platform and granting access to the Services.
Cookie refers to a small file stored by a server in the terminal, as defined in this Privacy Policy.
Personal Data refers to any information relating to an identified or identifiable natural person, as defined in article 4 of the GDPR.
Platform refers to onlydust.com, including all its subdomains.
The Company, We, Us, Our refers to Wagmi SAS, as identified in the Legal Notice.
Service refers to the service provided by the Company, as described on the Platform and in the T&Cs.
T&Cs refers to the terms and conditions applicable to the Service and available on the Platform.
User, You, Your refers to any data subject to the collection and processing of Personal Data by the Company.

Any term defined in article 4 of the GDPR and mentioned in this Privacy Policy shall have the same meaning.

2. Foreword

We firmly believe that trust is the foundation of successful and enduring relationships, and the protection of Your Personal Data and privacy is no exception. That's why we are committed to handling Your Personal Data with the highest level of care, ensuring that its collection and processing are conducted in full compliance with the applicable legal framework.

This Privacy Policy will describe how Your Personal Data is processed when You navigate on the Platform and use Our Service.

We may amend this Privacy Policy from time to time, in which case We will update You by any available means, including by way of notification on the Platform.

3. Personal Data We collect

3.1 Personal Data required to use the Platform

Account creation. Users must connect their GitHub account on the Platform to access the Service. For this purpose, We need to collect and process the following Personal Data:

GitHub Username;
Social media account (Telegram, LinkedIn, X..)
Email address.

The legal basis for this processing is (i) Your consent and (ii) Our need to perform a contract to which You are a party (Our T&Cs).

Provision of the Service. As described in the T&Cs, the Service allows You to get funds for the development of projects. In order to assess your eligibility for discretionary grants (Fellowship or Project Grants, as defined in our T&Cs), we may need to process the following personal data:

For natural persons:

First and last name (identity document);
Birth date;
Nationality;
Postal address (proof of residence);
Bank details (IBAN and BIC numbers);
Phone number;
Selfie;
Wallet address.

For legal persons:

First name and last name of the legal representative;
Phone number of the legal representative;
Name of the legal entity;
Postal address of the legal entity;
Wallet address.

We will also process these Personal Data to (i) detect and prevent fraud and other harmful activities, and (ii) to enforce our agreements with third parties and (iii) enforce our T&Cs.

When assessing your eligibility for a Fellowship or Project Grant, we may process your contributions, public GitHub activity, interactions on the Platform and the consistency of your involvement. This processing is based on our legitimate interest to promote impactful contributors and fund relevant open-source projects.

The legal basis for this processing is Our need to perform a contract to which You are a party (Our T&Cs).

3.2 Personal Data We collect from third-parties

Additional Account information. You can give Us access to the information of Your GitHub profile. If You do not want to give Us such an access, You can modify Your confidentiality set up on GitHub. Such additional information could include for example Your phone number associated with Your Telegram account, Your Twitter account URL and Your Discord username.

Some of this information, as indicated in your account settings, is part of your public GitHub profile page and will therefore be publicly visible through the Platform.

We only collect that information with Your consent.

3.3 Personal Data that You chose to provide to Us

Communications. We collect and process Personal Data in order to respond to any questions, requests or feedback that Users may submit to us, including:

Github Identification information (email address, first and last name);
The content of the message that You send to Us.

This processing is based on Your consent and Our legitimate interest in managing Our relationship with You.

3.4 Information collected automatically when You use the Platform

Navigational information. In order to enhance the User experience, We need to understand Your interactions with the Services. We may use the following Personal Data to perform analytics, debug, and conduct research on the performance of Our Platform and You use of the Service:

Unique identifiers (browser type and settings, device type and settings, operating system);
Interaction information (IP address, system activity, date and time of the requests);
Pages and Services You browse on the Platform.

To do so, We rely on Our legitimate interest to (i) understand how Our Platform is browsed by Users; and (ii) improve the Platform based on such Personal Data.

Users are never compelled to provide Personal Data that We may request. However, We draw Your attention to the fact that if You refuse, access to the Services may be limited, suspended or impossible.

In any event, and regardless of the purpose of the processing in question, We will adhere to a strict principle of data minimisation and will therefore only collect and process Personal Data that is necessary for the purposes mentioned above.

4. How do We process Your Personal Data

The Company acts as a data controller regarding User's Personal Data.

We share Your Personal Data with service providers who assist Us in fulfilling the purposes specified in this Privacy Policy. As Our subcontractors, such service providers may have access to Your Personal Data for the sole purpose of carrying out the specific tasks assigned to them. Our service providers are:

Datadog for monitoring our Platform. For this purpose, we share the following Personal Data: Navigational information. For more information You can consult Datadog's privacy policy.
Amazon Web Services and Heroku for Data storage. For this purpose we share the following Personal Data: all Personal Data listed in section 3. For more information on those providers, You can consult AWS privacy policy.
Sumsub for KYC. For this purpose we share the following Personal Data: all Personal Data listed in section 3. For more information, you can consult Sumsub privacy policy.

Where appropriate, We will share Your Personal Data with the relevant courts and any other governmental and/or public authority requesting access to Personal Data, to the extent legally permitted.

In any event, We will only disclose Your Personal Data to the above-mentioned recipients on a strict need-to-know basis and only to the extent necessary to achieve the identified processing purposes.

When possible, the Personal Data We collect from You is stored and processed at data centers in the European Union. However, in the cases set forth above, Your Personal Data may be transferred to countries located outside of the European Union who provide an equivalent level of protection. In the event of transfer to other countries, the protection of Your Personal Data will be ensured by adequate safeguards such as the signature of standard contractual clauses approved by the European Commission.

5. How do We store Your Personal Data

We will store Personal Data as long as You use the Platform and more broadly any of Our Services.

Once Your Account has been inactive for a certain period of time, or If You choose to delete Your online Account or end Our relationship in any manner, We will nevertheless keep and store Your Personal Data for a certain period of time.

We will keep Your Personal Data at least 3 years after the end of Our relationship (materialized, for instance, by the deletion of Your Account), for various legal reasons, including statute of limitation rules and potential litigation where We may be involved and where We might need Your Personal Data.

If We consider that it is not necessary to keep Your Personal Data in Our active database, We will archive it and ensure that access to it is restricted to a limited number of persons with a genuine need to access the Personal Data.

This includes, at the moment, all of the Personal Data We process.

6. Your rights

Users are informed that they have the following rights regarding the processing of their Personal Data:

A right of access to the Personal Data We collect;
A right to the rectification and/or erasure of the Personal Data We collect;
A right to the restriction of the processing;
A right to Personal Data portability.
A right to specify instructions defining how We shall manage Your Personal Data after Your death under the conditions of French law.

To exercise Your rights or for any question on privacy, You shall make a request by email at [email protected].

We will process the requests within a reasonable timeframe taking into account the complexity and the number of requests. We shall strive to reply without undue delay and at the latest within one (1) month of receipt of the request.

The exercise of the rights offered by the GDPR are in practice free. However, where Your requests may involve important costs, You may have to bear some of them.

Finally, Users have the option to refer to the competent supervisory authority, the French Commission Nationale Informatique et Libertés ("CNIL"), in order to submit a claim. Contact information of the CNIL can be found on its website.

7. How do We secure Your Personal Data

We implement security measures to protect Your Personal Data, such as:

Our database is encrypted by SSL;
All persons with access to Your Personal Data are bound by a duty of confidentiality and may be subject to disciplinary action and/or other sanctions if they fail to comply with these obligations;
Personal Data is hosted and processed on secure servers located within the European Union and operated by Our subcontractors acting in accordance with the requirements of the GDPR.

In the event that the integrity, confidentiality or security of the Your Personal Data is compromised, We undertake (i) to notify the CNIL of the breach within 24 hours of becoming aware of it and (ii) to inform You as soon as possible when the breach is likely to result in a high risk to the rights and freedoms of that person.

8. Cookies

A Cookie is a small computer file playing the same role as a tracker, stored and read for instance at the moment where a website is visited, an email is read or a mobile app is used, whatever the device used.

In compliance with EU privacy regulations, Users are informed that "non-essential" Cookies may be deposited on their device without their consent. Non-essential Cookies include (i) Cookies having as their essential purpose to allow or enable electronic communications and (ii) are strictly necessary for the provision of online communication service.