Last updated: 4 July 2026
MC2 NB Energy Limited trading as TrustDraw, a company registered in Ireland ("we", "us", or "our"), is committed to protecting your privacy and personal data.
This Privacy Policy explains how we collect, use, share, and protect your personal information when you use our website, services, and API (collectively, the "Service"). This policy applies to all users of TrustDraw.
We comply with the General Data Protection Regulation (GDPR), the Irish Data Protection Act 2018, and other applicable data protection laws. As a data controller, we determine how and why your personal data is processed.
Contact for Data Protection Inquiries:info@trustdraw.com
We collect different types of personal data depending on how you interact with our Service:
If you create a public profile, we collect:
Note: Public profile data is visible to other TrustDraw users and may be displayed on public audit pages.
Under GDPR, we must have a legal basis to process your personal data. We rely on the following:
We use your personal data for the following purposes:
We do not: Sell your personal data, use it for advertising targeting, or share it for marketing purposes without your consent.
We share your personal data with trusted third-party service providers who assist us in operating our Service. All processors are contractually bound to protect your data and use it only for specified purposes.
Important: Draw results, blockchain transaction hashes, and associated metadata are permanently recorded on public blockchains (Polygon, Base). This data cannot be deleted or modified once recorded. By using our Service, you acknowledge that draw data you mark as "public" will be accessible to anyone with blockchain access.
We may disclose your personal data:
TrustDraw is based in Ireland (EU). However, some of our service providers may process data outside the European Economic Area (EEA), including in the United States.
When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place:
Paddle (UK-based) and blockchain networks operate internationally. By using the Service, you consent to these international data transfers under the safeguards described.
We retain your personal data only as long as necessary for the purposes described in this Privacy Policy or as required by law.
Note on blockchain data: Data recorded on public blockchains (Polygon, Base) is immutable and cannot be deleted. This is a fundamental characteristic of blockchain technology.
We use cookies and similar technologies to operate our Service and enhance your experience.
These cookies are essential for the Service to function and cannot be disabled.
Analytics and Marketing Cookies: We do not currently use analytics or marketing cookies. If we introduce them in the future, we will request your consent and provide the option to opt out.
Managing Cookies: You can control cookie settings through your browser. However, disabling essential cookies will prevent you from using key features of the Service.
Under GDPR, you have the following rights regarding your personal data:
Exercising Your Rights: To exercise any of these rights, contact us at info@trustdraw.com. We will respond within 30 days of your request.
Identity Verification: To protect your privacy, we may request proof of identity before fulfilling data subject requests.
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:
Data Breach Notification: In the event of a data breach affecting your personal data, we will notify you and the relevant supervisory authority within 72 hours as required by GDPR.
While we take security seriously, no method of transmission or storage is 100% secure. You are responsible for keeping your account credentials confidential.
Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately at info@trustdraw.com, and we will delete it promptly.
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or Service features.
Material changes will be communicated via email or prominent notice on our website at least 30 days before taking effect. We encourage you to review this Privacy Policy periodically.
Continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy.
As we are based in Ireland, our lead supervisory authority is the Irish Data Protection Commission (DPC):
Data Protection Commission
21 Fitzwilliam Square South
Dublin 2, D02 RD28, Ireland
Website: www.dataprotection.ie
Phone: +353 (0)761 104 800
If you are located in another EU/EEA country, you also have the right to lodge a complaint with your local supervisory authority.
If you have questions about this Privacy Policy, wish to exercise your data protection rights, or have concerns about how we handle your personal data, please contact us:
MC2 NB Energy Limited trading as TrustDraw
Data Protection Inquiries: info@trustdraw.com
Website: trustdraw.com
We will respond to your inquiry within 30 days as required by GDPR.