Privacy Policy

Effective Date: September 2025

Chamomile ("we," "our," "us") respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy explains how we collect, use, store, and safeguard your information when you visit our website and when you submit a contact request or request access to our Data Room.

By using our website, you agree to the practices described in this Privacy Policy.

1. Information We Collect

When you complete our contact form or request access to the Data Room, you may be asked to provide certain personal information. This typically includes your full name, email address, LinkedIn profile, Telegram ID, and phone number.

We do not intentionally collect sensitive categories of personal data (such as health, biometric, or financial account information) through our website.

2. How We Use Your Information

We use the information you provide strictly for the following purposes: to review and respond to your contact request; to assess and process your request for access to our Data Room; to communicate with you regarding Chamomile's project updates, subject to your consent; and to ensure compliance with applicable legal and regulatory obligations. Your phone number, if provided, will be used solely to facilitate communication related to your request.

We do not sell, rent, or share your information with third parties for marketing purposes.

3. Data Room Access and Confidentiality

Access to the Chamomile Data Room is discretionary and subject to our internal approval process. We may deny access at our sole discretion without obligation to provide reasons. Any information shared within the Data Room is considered proprietary and confidential. By accessing the Data Room, you agree not to copy, distribute, disclose, or use its contents for any purpose other than assessing a potential partnership or investment opportunity with Chamomile. Any breach of this confidentiality obligation may result in legal action.

4. Legal Basis for Processing

We process your personal information on the following legal bases: consent when you submit a form requesting contact or access; legitimate interest to evaluate potential partnerships and protect the integrity of our project; and compliance with law where processing is necessary to comply with regulatory requirements.

5. Data Storage and Security

We store your data securely with enterprise-grade cloud providers that implement internationally recognized security standards, including encryption of data at rest and in transit (TLS 1.3+), regular penetration testing and vulnerability scanning, SOC 2 Type II and GDPR-aligned controls, role-based access management and multi-factor authentication, and continuous monitoring, backups, and resilience against regional failures. We apply the principle of least privilege, defense in depth, and continuous improvement in our security practices.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes described above or as required by law. If you withdraw your consent or request deletion, we will delete your data unless retention is legally required.

7. Your Rights

Depending on your jurisdiction (including under GDPR, UK GDPR, and CCPA/CPRA), you may have the following rights: to access the personal data we hold about you; to request correction of inaccurate or incomplete data; to request deletion of your data ("right to be forgotten"); to request restriction of processing; to object to processing based on legitimate interests; and to request a copy of your data in a portable format.

You may exercise these rights by contacting us at: privacy@chamomile.fund. We will respond in accordance with applicable laws.

8. Cookies and Tracking

Our landing page uses only strictly necessary cookies to ensure basic functionality of the website. We do not use tracking, analytics, or advertising cookies at this stage.

If this changes in the future, we will update this Privacy Policy and provide you with appropriate options for consent.

9. International Data Transfers

Your data may be stored or processed outside your country of residence. In such cases, we ensure appropriate safeguards are in place, including standard contractual clauses or equivalent mechanisms recognized under GDPR and other applicable laws.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law, regulation, or our business practices. The updated version will be posted on this page with a new Effective Date.

11. Contact Us

If you have any questions about this Privacy Policy or how your data is handled, please contact us at:

Email: privacy@chamomile.fund
Subject line: Privacy Request