top of page

privacy policy

for the use of

When you are using AcchaLabs’ Services and electronic media, we may collect, process and/or disclose data that identify you or make you identifiable (Personal Data) in accordance with this privacy policy (Policy).

Further, we may either receive your Personal Data directly from you when you are sending emails to us or provide your Personal Data otherwise in the course of other interactions with us, or indirectly from third parties who legally provide your Personal Data to us.

This Policy is meant to inform you which Personal Data we collect, store, process, use and/or disclose, for which purposes and on which legal basis. We further inform you about your rights to protect your Personal Data.

This Policy may be amended or updated from time to time to reflect changes in our practices with respect to the Processing of Personal Data, or changes in applicable law. We encourage you to read this Policy carefully, and to regularly check this page to review any changes we might make in accordance with the terms of this Policy. Your continued use of our Services or website constitutes your agreement to be bound by this Policy, as amended or updated from time to time.

We may process your data outside of the EU. Regardless of where we process it, we will always seek to conform to EU level data privacy and data protection standards. If you have questions, write to us at

Which Personal Data we process

The categories of Personal Data about you that we may Process include:

  • Personal details: name;

  • Contact details: email address; address;

  • Organisation details: role and company details;

  • Technical information (e.g. Device type, IP address).


How we may collect your Personal Data

We may collect Personal Data about you from the following sources:

  • When you contact us via e-mail, telephone or by any other means of contact;

  • Where you have chosen to make such Personal Data public, including via social media profiles;

  • When you visit our websites or use any features on, or through, our websites. When you visit our website, your device and browser may automatically disclose certain information (such as device type, operating system, browser type, browser settings, IP address, language settings, dates and times of connecting to a website and other technical communications information), some of which may constitute Personal Data;

  • When you submit your resume/CV to us for a job application;

  • When you disclose personal data in person, such in a business meeting, in an interview, or at an event.


Creation of Personal Data

In the course of your interaction with AcchaLabs, we may keep records of your interactions with us and details of your transaction history.

For which purposes we use your Personal Data

We use your Personal Data to provide, maintain and improve our Services. We use your Personal Data only if and as long as we have received your explicit prior consent and in accordance with respectively applicable additional legal requirements in your jurisdiction.


We do not sell your Personal Data to third parties.

Lawful basis for Processing Personal Data

In Processing your Personal Data in connection with the purposes set out in this Policy, we may rely on one or more of the following legal bases, depending on the circumstances:

  • we have obtained your explicit prior consent to the Processing (this legal basis is only used in relation to Processing that is entirely voluntary – it is not used for Processing that is necessary or obligatory in any way);

  • the Processing is necessary in connection with any contractual relationship that you may enter into with us;

  • the Processing is required by applicable law;

  • the Processing is necessary to protect the vital interests of any individual; or

  • we have a legitimate interest in carrying out the Processing for the purpose of managing, operating or promoting our business, and that legitimate interest is not overridden by your interests, fundamental rights, or freedoms.


When we are involving third party Processors into the performance of our services and contractual obligations and such involvement requires the sharing of Personal Data, we have entered with our third party Processors into data processing agreements according to Art. 28 of the European General Data Protection Regulation (“GDPR”) and, as far as required, further appropriate safeguards according to Art. 46 – 49 GDPR. The list of third party Processors to which we disclose your Personal Data can be requested by e-mail to


Specifically we can already name the following Data Processors:

Google LLC

To store personal data, email to those who contact us, we use Google’s service - GSuite. This is provided by Google LLC, 1600 Amphitheatre Parkway,Mountain View, CA 94043, United States. For further information please see Google’s Privacy Policy.


To store your personal data, we are working together with “MailChimp”, a service provided by our data processor MailChimp Inc., located in the United States. For further information, please see MailChimp’s Privacy Policy.

ascend by wix

To store your personal data, we are working together with “Ascend by Wix”, a service provided by our data processor, Inc., located in the United States. For further information, please see Wix’s Privacy Policy.

Processing your Sensitive Personal Data

We do not seek to collect or Process your Sensitive Personal Data, except where:

  • the Processing is required or permitted by applicable law;

  • the Processing is necessary for the detection or prevention of crime (including the prevention of fraud);

  • the Processing is necessary for the establishment, exercise or defence of legal rights; or

  • we have obtained your explicit consent prior to Processing your Sensitive Personal Data (as above, this legal basis is only used in relation to Processing that is entirely voluntary – it is not used for Processing that is necessary or obligatory in any way).


Consent and withdrawal

Any consent is provided freely. If you give your consent, you have the right to withdraw your consent at any time.


The withdrawal of consent does not affect the lawfulness of Processing based on consent before its withdrawal.


After your withdrawal we will stop to Process your Personal Data, including storage. This paragraph is only relevant for Processing that is entirely voluntary – it does not apply for Processing that is necessary or obligatory in any way.

To withdraw your consent, click the unsubscribe button on any newsletter your receive from us.


On our web properties, only Google Analytics and YouTube set cookies. We have to set a cookie of our own though, for remembering acceptance or rejection of our cookie banner.

If you have Do Not Track activated in your browser, or if you rejected our cookie banner, we don’t collect any information and won’t let Google set any cookies in your browser.

If you reject the cookie banner, all cookies set by Google Analytics will be removed from your browser. You also have the option of disabling Cookies in your browser setting, and deleting Cookies from your computer’s hard disk at any time. In general, you can block cookies by using your browser’s settings, or by installing a browser add-on such as Privacy Badger or uBlock Origin.

Links to Business Partner and Co-Branded Sites

Certain links contained on AcchaLabs web sites may direct you to co-branded websites maintained by AcchaLabs or to companies which AcchaLabs has established business relationships.

When you submit information to one of these co-branded sites or partner companies, you may be submitting it to both AcchaLabs and these business partners. Under no circumstances may AcchaLabs be held responsible for the privacy practices of these business partners and we therefore strongly encourage you to read their respective privacy policies as they may differ from ours.


Your rights related to data privacy

You have the right to request access to and rectification or erasure of your Personal Data, or restriction of their Processing. Furthermore, you have the right to object Processing as well as to request data portability. If you are in the EU you have the right to file a complaint to the responsible European Data Protection Authority.

Our contact information, Data Controller

If you have a direct business relationship with us, we are a a Data Controller according to Art. 4 para. 7 GDPR.

For any requests you can contact us as follows:

Alessandra Albano

+65 87987457


  • Controller means the entity that decides how and why Personal Data is Processed. In many jurisdictions, the Controller has primary responsibility for complying with applicable data protection laws.

  • Data Protection Authority means an independent public authority that is legally tasked with overseeing compliance with applicable data protection laws.

  • EEA means the European Economic Area.

  • Personal Data means information that is about any individual, or from which any individual is identifiable. Examples of Personal Data that we may Process are provided above in this Policy.

  • Process, Processing or Processed means anything that is done with any Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

  • Processor means any person or entity that Processes Personal Data on behalf of the Controller (other than employees of the Controller).

  • Services means any services provided by Ocean Protocol Foundation.

  • Sensitive Personal Data means Personal Data about race or ethnicity, political opinions, religious or philosophical beliefs, trade union membership, physical or mental health, sexual life, any actual or alleged criminal offences or penalties, or any other information that may be deemed to be sensitive under applicable law.

bottom of page