This Privacy Policy explains how WAGMI Game Co., a Delaware corporation with its principal office at 8924 E Pinnacle Peak Road, STE G5, Scottsdale, AZ 85255 ("Company," "we," "us," or "our"), collects, uses, discloses, retains, and protects your personal information when you use our Services, including:

• NiFe WARS digital properties — including nifewars.com, shop.nifewars.com, and associated content;

• Physical collectibles — including comics, trading cards, toys, and limited-edition products bearing NFC authentication tags;

• The COLLECT platform (collect.nifewars.com) — our NFC authentication, digital twin, and collector account service;

• Marketing communications — including email and SMS subscription services; and

• All related content, features, NFTs, community platforms, and functionalities (collectively, the "Services").

By using the Services, you consent to this Privacy Policy.

1. Scope and Eligibility

1.1 Applicability This Policy applies to all users of our Services, including account holders, COLLECT account holders, customers, marketing subscribers, and website visitors.

1.2 Age Restrictions The Services are not directed to children under 13, and we do not knowingly collect personal information from users under 13 without verifiable parental consent, per COPPA (15 U.S.C. §§ 6501–6506). If you are under 13, do not use the Services or provide any personal data. If you are under 18, your parent or guardian must review and consent to this Policy on your behalf. Contact us at support@nifewars.com if you believe we've collected data from a child under 13, and we will delete it promptly.

1.3 Consent Verification We currently do not offer mechanisms for parental consent; thus, use by those under 13 is prohibited.

2. Information We Collect

2.1 Information You Provide

• Account details (e.g., username, email address);

• COLLECT account details — email address (required) and phone number (optional) when registering for the COLLECT platform;

• Marketing subscription details — email address and/or phone number when you sign up for marketing communications via our websites or other opt-in channels;

• Payment information (e.g., billing details, processed via third-party providers like Stripe, Shopify Payments, or PayPal);

• User-generated content (e.g., profile customizations, support communications);

• Communications (e.g., support requests, feedback submissions).

2.2 Automatically Collected

• Device data (e.g., IP address, operating system, device type, unique identifiers, browser type);

• Usage data (e.g., session duration, feature interactions, crash reports);

• NFC scan events — when you scan an NFC-tagged collectible through your COLLECT account, we log the timestamp, the item's unique identifier, and your account ID. We do not log your physical location, GPS coordinates, or any data about the environment in which the scan occurred.

2.3 COLLECT Platform Data When you use the COLLECT platform to authenticate and register NFC-tagged collectibles, we collect:

• Email address (required) — for account creation, authentication, and service communications;

• Phone number (optional) — if provided, used only for account recovery or SMS notifications you opt into;

• Scan event logs — item identifier and timestamp each time you scan a tag via your account;

• Collection registry — a record of which NFC-tagged items you have registered to your account (your "digital twin" collection).

We do not collect biometric data, financial information, physical location data, or GPS coordinates through the COLLECT platform. NFC tags are passive devices that only activate when deliberately scanned — they do not broadcast continuously and cannot be used to track the location of a physical item.

2.4 Blockchain and NFT Data If you own NFTs associated with our Services or interact with our holder benefits (e.g., the holder discount portal), we may collect:

• Public wallet addresses linked to verified NFT ownership;

• Transaction hashes and on-chain interactions relevant to benefit eligibility.

We do not store private keys, seed phrases, or wallet credentials of any kind.

2.5 Third-Party Sources

• Data from analytics providers (e.g., Google Analytics for usage trends);

• Data from third-party platforms where you interact with us (e.g., Shopify customer data when you make a purchase);

• Blockchain platforms (e.g., on-chain data tied to NFT ownership when you connect a wallet for verification purposes).

2.6 Cookies and Tracking We may use cookies, web beacons, or similar technologies to enhance functionality and analyze usage. You may disable cookies via your device settings, though this may limit certain features.

3. How We Use Your Information

We use your information for the following purposes:

• To provide, operate, maintain, and deliver the Services and their features;

• To authenticate NFC-tagged physical collectibles and maintain your COLLECT account and digital twin registry;

• To process transactions and fulfill orders for physical products;

• To verify NFT ownership for the purposes of granting holder benefits, discounts, or access to gated content;

• To send marketing communications (email and/or SMS) you have opted in to receive, and to manage your communication preferences;

• To send transactional and service-related communications (e.g., order confirmations, account notifications, support responses);

• To analyze usage patterns, improve the Services, and personalize your experience;

• To detect, prevent, and address fraud, abuse, security threats, or technical issues (including NFC tag spoofing);

• To enforce our Terms and legal rights;

• To comply with applicable laws, regulations, court orders, or governmental requests;

• To conduct research, development, and testing for new features or services.

4. How We Share Your Information

4.1 Service Providers We share data with third-party vendors (e.g., hosting providers, payment processors, analytics firms, NFC chip authentication infrastructure, email and SMS service providers such as EmailOctopus and Twilio) who assist in operating the Services, bound by confidentiality and data protection agreements.

4.2 Blockchain NFT transactions and wallet addresses are publicly recorded on the blockchain, inherently visible to anyone and beyond our control once submitted.

4.3 Legal Compliance We may disclose information to comply with legal obligations, respond to subpoenas, protect our rights or property, or ensure the safety of users or the public.

4.4 Business Transfers In the event of a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred to a successor entity, subject to this Policy or equivalent protections.

4.5 With Consent We may share data for additional purposes if you provide explicit, informed consent.

4.6 Aggregated Data We may share anonymized or aggregated data (e.g., usage statistics, scan frequency) that cannot identify you, for marketing, research, or other purposes.

5. Data Retention

5.1 Retention Periods We retain personal data only as long as necessary for the purposes outlined herein:

• Account data: Retained while your account is active and for 3 years after inactivity, unless required longer by law (e.g., tax retention under 26 U.S.C. § 6001, up to 7 years);

• COLLECT account data: Email and phone number retained while your COLLECT account is active; deleted upon account closure unless legally required. NFC scan event logs retained for 3 years;

• Marketing subscription data: Retained while you are actively subscribed; promptly removed from active marketing lists upon unsubscribe, though we retain a record of opt-in and opt-out events for compliance purposes;

• NFT records: Stored indefinitely on the blockchain by their nature; associated personal data (e.g., email) is deleted upon account closure unless legally required;

• Analytics data: Retained up to 3 years, anonymized where feasible;

• Support communications: Kept for 5 years for dispute resolution, unless deletion is requested.

5.2 Deletion We delete data upon your request or account closure, except where retention is required by law or blockchain immutability prevents erasure.

5.3 Exceptions Data may be retained longer if necessary for legal defense, audits, or compliance with regulatory obligations.

6. Your Rights and Choices

6.1 Access and Correction You may request access to or correction of your personal data by contacting support@nifewars.com, subject to verification of your identity.

6.2 Deletion You may request deletion of your data, though blockchain records (e.g., NFT ownership) are immutable and cannot be erased.

6.3 Opt-Out Opt out of marketing emails via the unsubscribe link in any marketing message or by emailing support@nifewars.com. Opt out of marketing SMS by replying STOP to any message. Essential service-related notices (e.g., order confirmations, account security) cannot be opted out of while you maintain an account or active purchase.

6.4 CCPA Rights California residents under the CCPA (Cal. Civ. Code § 1798.100 et seq.) have rights to access, delete, and opt out of data sales (we do not sell data), exercisable via support@nifewars.com, with responses within 45 days.

6.5 GDPR Rights EU residents under the GDPR (Regulation (EU) 2016/679) have rights to access, rectify, erase, restrict processing, data portability, and object, exercisable via support@nifewars.com.

6.6 Non-Discrimination We will not discriminate against you for exercising your privacy rights.

7. Security

7.1 Measures We implement reasonable technical, administrative, and organizational measures (e.g., encryption, firewalls, access controls) to protect your data from unauthorized access, loss, or disclosure.

7.2 Limitations No security system is infallible; we cannot guarantee absolute protection against breaches, hacks, or data loss, especially on third-party platforms or blockchain networks. Report suspected breaches to support@nifewars.com immediately.

8. International Transfers

8.1 Transfers Your data may be transferred to and processed in the United States or other countries where our servers or service providers operate, which may have different data protection laws than your jurisdiction.

8.2 Safeguards We use safeguards like Standard Contractual Clauses (per GDPR) or equivalent measures to ensure adequate protection for international transfers, where required by law.

9. Third-Party Services

9.1 Integration The Services integrate third-party services (e.g., Shopify, payment processors, email and SMS service providers, NFC chip authentication infrastructure, blockchain networks). These services are governed by their own privacy policies and terms, not ours.

9.2 Responsibility We are not liable for the practices, security, or reliability of third-party services; you use them at your own risk.

10. NFC Tags — What We Do Not Track

NFC tags embedded in our physical collectibles are authenticity verification tools only. For absolute clarity:

• We do not use NFC tags to track the physical location of any item;

• We do not use NFC tags to track the movements, behavior, or location of any person;

• NFC tags are passive devices — they emit no signal unless deliberately scanned by a compatible device in close proximity;

• Scan event data (timestamp + item ID) is collected only when you voluntarily scan a tag while logged into your COLLECT account;

• We have no real-time or historical knowledge of where a physical tagged collectible is located.

If a tagged collectible is lost or stolen, we cannot assist in its recovery. We recommend retaining proof of purchase for insurance purposes.

11. Changes to This Policy

11.1 Updates We may update this Policy at any time, with changes effective upon posting on our website or within the Services, or via email notice. Continued use after changes signifies your acceptance.

11.2 Material Changes We will provide 30 days' advance notice for material changes affecting your rights, where required by law (e.g., CCPA).

12. Contact Us

For questions, requests, or complaints, contact us at:

Email: support@nifewars.com Address: 8924 E Pinnacle Peak Road, STE G5, Scottsdale, AZ 85255

We aim to respond to inquiries within 30 days, or sooner where legally required (e.g., CCPA, GDPR).

13. SMS & Mobile Messaging Privacy

When you opt in to receive SMS messages from WAGMI Game Co., we collect and use your mobile phone number solely to provide first-party communications related to your interaction with our Services, including account notifications, order updates, reward confirmations, customer support messages, and promotional updates about NiFe WARS products, services, drops, and events.

We do not sell, rent, lease, or share your mobile phone number or SMS opt-in information with third parties or affiliates for their marketing or promotional purposes.

Message frequency varies. You may opt out of receiving SMS messages at any time by replying STOP to any message. Message and data rates may apply. For assistance, reply HELP or contact us at support@nifewars.com.

14. Email Marketing Disclosure (CAN-SPAM)

When you opt in to receive marketing emails — by subscribing through our website, by checking a marketing opt-in box during checkout, or by otherwise expressly consenting — you consent to receive promotional emails from WAGMI Game Co., including product updates, drop announcements, offers, and other commercial communications.

• You may unsubscribe from promotional emails at any time using the unsubscribe link included in each message;

• Separately, transactional or service-related emails (e.g., order receipts, security notices, COLLECT account confirmations) may continue while you maintain an account or active purchase with us, as these are not promotional communications.

15. Refunds, Cancellations & Chargebacks

• Physical Goods: Refunds or replacements (if offered) are governed by the specific product listing, our shop policies, and applicable consumer protection laws.

• NFTs & Digital Collectibles: All NFT and digital collectible purchases are final and non-refundable, except where required by law.

• Chargebacks: Unauthorized or abusive chargebacks may result in account suspension or termination.

16. NFT & Digital Collectibles Disclaimer

NFTs and digital collectibles offered in connection with the Services are provided solely for entertainment and collectibility purposes.

• NFTs are not investments, securities, financial instruments, or investment contracts;

• WAGMI Game Co. does not provide financial, legal, or investment advice;

• We make no guarantees regarding the value, liquidity, or future utility of NFTs or digital collectibles inside or outside the Services.

Market conditions, regulatory changes, and third-party platforms may affect NFTs and digital collectibles beyond our control. Where Services or features tied to NFT holdings are modified, retired, or discontinued, your underlying blockchain ownership remains unaffected, but the corresponding utility within our Services may change or end without compensation, except where required by law.

17. Marketing To Minors

WAGMI Game Co. does not knowingly send marketing emails or SMS messages to individuals under the age of 13 and does not target minors for advertising or promotional campaigns.

If we become aware that marketing communications have been sent to a minor in violation of applicable law, we will take reasonable steps to delete the data and cease communications.

18. Promotions, Giveaways & Discounts

From time to time, WAGMI Game Co. may offer promotions, giveaways, discounts, or contests.

• All promotions are void where prohibited;

• Additional rules, eligibility requirements, and limitations may apply and will be disclosed at the time of the promotion;

• No purchase is necessary unless expressly stated.

19. Accessibility Statement

WAGMI Game Co. is committed to making its digital experiences reasonably accessible to all users. If you experience difficulty accessing any part of our Services, please contact us at support@nifewars.com and we will make reasonable efforts to assist you.

20. Automated Systems & Moderation

Certain features of the Services, including moderation, analytics, personalization, or support tools, may be supported by automated systems or artificial intelligence. These systems are used to enhance functionality, security, and user experience and are subject to human oversight where appropriate.

21. Contact Information

WAGMI Game Co. 8924 E Pinnacle Peak Road, STE G5 Scottsdale, AZ 85255 Email: support@nifewars.com

CALIFORNIA PRIVACY ADDENDUM

(CCPA / CPRA Disclosure)

Effective Date: [Update on publish]

This California Privacy Addendum supplements the WAGMI Game Co. Privacy Policy and applies only to California residents ("Consumers") as defined under the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act ("CCPA/CPRA").

1. Categories of Personal Information Collected

Within the past 12 months, WAGMI Game Co. may have collected the following categories of personal information, as defined by the CCPA/CPRA:

• Identifiers: Name, email address, phone number (if provided), account username, IP address, device identifiers;

• Internet or Network Activity: Usage data, NFC scan event logs, interactions with the Services or website;

• Geolocation Data: Approximate location inferred from IP address only. We do not collect precise geolocation data, and NFC tags do not transmit location data;

• Commercial Information: Purchase history of physical goods or collectibles;

• Blockchain Data: Public wallet addresses and transaction hashes where you have connected a wallet for NFT verification purposes;

• Sensitive Personal Information: Account login credentials and authentication information (used solely for permitted business purposes).

2. Purposes for Collection and Use

We collect and use personal information for the following business and commercial purposes:

• Providing, operating, and maintaining the Services;

• Authenticating NFC-tagged physical collectibles through the COLLECT platform;

• Processing transactions and fulfilling orders;

• Verifying NFT ownership for the purposes of granting holder benefits;

• Communicating with users, including support, updates, and marketing (where permitted);

• Improving performance, analytics, and security;

• Detecting fraud, abuse, or violations of our Terms;

• Complying with legal obligations.

3. Disclosure of Personal Information

We may disclose personal information to service providers and contractors for business purposes, including:

• Hosting and infrastructure providers;

• Payment processors;

• Analytics and security providers;

• Email and SMS service providers;

• NFC chip authentication infrastructure;

• Customer support tools.

All such disclosures are subject to contractual confidentiality and data protection obligations.

4. No Sale or Sharing of Personal Information

WAGMI Game Co. does not sell or share personal information, including sensitive personal information, as those terms are defined under the CCPA and CPRA.

Accordingly:

• We do not offer a "Do Not Sell or Share My Personal Information" link;

• We do not engage in cross-context behavioral advertising;

• We do not exchange personal data for monetary or other valuable consideration.

5. Sensitive Personal Information

WAGMI Game Co. uses sensitive personal information only as reasonably necessary to:

• Provide services;

• Process transactions;

• Maintain security and account integrity;

• Comply with legal obligations.

We do not use sensitive personal information for profiling or advertising purposes.

6. Consumer Rights (California Residents)

California residents have the following rights under the CCPA/CPRA:

• Right to Know: Request disclosure of personal information collected, used, or disclosed;

• Right to Delete: Request deletion of personal information, subject to legal exceptions;

• Right to Correct: Request correction of inaccurate personal information;

• Right to Limit: Limit use of sensitive personal information;

• Right to Non-Discrimination: No adverse treatment for exercising privacy rights.

7. Exercising Your Rights

You may submit a request by contacting us at: support@nifewars.com

We will verify your request using reasonable methods and respond within 45 days, as required by law. Authorized agents may submit requests on your behalf with proper documentation.

8. Global Privacy Control (GPC)

WAGMI Game Co. does not sell or share personal information and therefore does not respond differently to Global Privacy Control (GPC) signals.

9. Minors

We do not knowingly sell or share personal information of consumers under the age of 16. Users under 13 are prohibited from using the Services without verified parental consent, which we do not currently offer.

10. Retention

Personal information is retained only as long as reasonably necessary for the purposes described in this Addendum, unless a longer retention period is required or permitted by law.

11. Changes to This Addendum

We may update this California Privacy Addendum from time to time. Material changes will be posted with an updated effective date.

12. Contact Information

WAGMI Game Co. 8924 E Pinnacle Peak Road, STE G5 Scottsdale, AZ 85255 Email: support@nifewars.com

EUROPEAN UNION / EEA PRIVACY ADDENDUM

(GDPR Disclosure)

Effective Date: [Update on publish]

This EU / EEA Privacy Addendum supplements the WAGMI Game Co. Privacy Policy and applies to users located in the European Union and European Economic Area ("EEA") in accordance with the General Data Protection Regulation (Regulation (EU) 2016/679) ("GDPR").

1. Data Controller

WAGMI Game Co. is the data controller responsible for the processing of your personal data. Contact: support@nifewars.com

2. Lawful Bases for Processing

We process personal data under the following lawful bases pursuant to Article 6 GDPR:

• Contract Performance: To provide the Services, process purchases, manage accounts (including COLLECT accounts), and deliver requested services;

• Consent: For marketing communications, SMS messaging, optional features, and COLLECT account creation;

• Legitimate Interests: To improve security, prevent fraud (including NFC tag spoofing), analyze usage, and enhance user experience;

• Legal Obligation: To comply with applicable laws, accounting, tax, and regulatory requirements.

Where consent is required, it may be withdrawn at any time.

3. Withdrawal of Consent

You have the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

Withdrawal may be exercised by:

• Unsubscribing from emails;

• Replying STOP to SMS messages;

• Closing your COLLECT account;

• Contacting support@nifewars.com.

4. Data Subject Rights

In addition to rights described in our Privacy Policy, EU/EEA users have the right to:

• Lodge a complaint with a supervisory authority in their country of residence, place of work, or where an alleged infringement occurred;

• Object to processing based on legitimate interests;

• Request restriction of processing;

• Request human review of automated decisions where applicable.

5. Automated Decision-Making and Profiling

We do not engage in automated decision-making or profiling that produces legal or similarly significant effects on individuals within the meaning of Article 22 GDPR.

Certain automated systems may be used for fraud prevention, NFC authentication, moderation, analytics, or personalization, subject to human oversight.

6. International Transfers

Personal data may be transferred outside the EEA, including to the United States. Where required, such transfers are safeguarded using Standard Contractual Clauses or other legally recognized mechanisms.

7. EU Representative (Article 27)

WAGMI Game Co. does not currently maintain a designated EU representative. If required under Article 27 GDPR, we will appoint a representative and update this Addendum accordingly.

8. Data Protection Officer

WAGMI Game Co. is not required to appoint a Data Protection Officer under Article 37 GDPR.

9. Contact

For GDPR-related inquiries or to exercise your rights, contact: Email: support@nifewars.com