1. Introduction

This Privacy Policy describes how Anymax LLC (“we,” “us,” or “our”) collects, uses, discloses, and otherwise processes personal data (including zero-party data) from individuals in the United States, the European Union (EU), the United Kingdom (UK), Canada, Australia, and South America when:

  • Visiting our website at anyma.com (“Website”);

  • Interacting with our profiles on social media; or

  • Otherwise engaging with our products or services.

Zero-party data is any data that you proactively and intentionally share with us—such as your preferences or specific requests—usually collected through sign-up forms or similar mechanisms.

We are committed to protecting your personal data and adhering to the relevant privacy regulations, including but not limited to:

  • United States: Federal Trade Commission (FTC) guidelines, relevant state privacy laws (e.g., California Consumer Privacy Act “CCPA,” New York’s SHIELD Act), and other applicable laws.

  • European Union: General Data Protection Regulation (GDPR).

  • United Kingdom: UK GDPR and the Data Protection Act 2018.

  • Canada: Personal Information Protection and Electronic Documents Act (PIPEDA) and any applicable provincial legislation.

  • Australia: Privacy Act 1988 (Cth) and the Australian Privacy Principles.

  • South America: Applicable local data protection laws, including Brazil’s General Data Protection Law (LGPD), and any other relevant legislation.

By using our Website, signing up for our notifications, or interacting with our services, you agree to the collection and use of information in accordance with this Privacy Policy.

1.1 Contact Details

Controller (If You Reside in the EU or UK) / Business (If You Reside in the U.S.) / Responsible Entity (Elsewhere)

Anymax LLC
c/o Pryor Cashman LLP (Nicholas Saady, Esq.)
7 Times Square
New York, New York 10036, United States
Email: info@anyma.com

If you have any questions or concerns about how we process personal data, or if you wish to exercise any of your legal rights, please contact us at the above address.

2. Scope of Data Processing, Processing Purposes, and Legal Bases

We collect and process personal data—particularly sign-up data and targeting data—to provide our services, communicate with users, and maintain our Website. Depending on your jurisdiction, we rely on one or more of the following legal bases:

  1. Consent: Where required by applicable law (e.g., GDPR Art. 6(1)(a), CCPA, PIPEDA), we obtain consent before collecting and processing personal data. This generally applies to optional and marketing-related data collection (e.g., email list signups, zero-party data preferences, or personalized advertising).

  2. Performance of a Contract: Where data processing is necessary to perform a contract with you (GDPR Art. 6(1)(b)) or to take steps at your request before entering into a contract.

  3. Legal Obligation: Where we are required by law to collect or share personal data (GDPR Art. 6(1)(c)).

  4. Legitimate Interests: Where data processing is necessary for our legitimate interests (GDPR Art. 6(1)(f)) in the U.S. and internationally, unless overridden by your data protection rights. These interests may include improving our Website, preventing fraud, or ensuring network security.

Zero-Party Data (e.g., event preferences, self-reported interests) is collected only if you voluntarily provide it—for instance, via sign-up forms or online surveys. This information is used to tailor communications and offerings based on your explicit interests.

2.1 Types of Data Collected

  1. Contact Information: Such as name, email address, postal address, and telephone number.

  2. Sign-Up Data: For newsletter subscriptions, event notifications, or account creation.

  3. Targeting Data: Data used to personalize ads and marketing communications (e.g., preferences, interests, or usage patterns).

  4. Usage Data: IP address, browser type, device information, operating system, and usage logs.

  5. Zero-Party Data: Self-reported preferences or interests you voluntarily submit for personalization or event updates.

2.2 International Data Transfers

We may transfer personal data to service providers or business partners located in countries outside of your jurisdiction, including the United States, the European Economic Area (EEA), the UK, Canada, Australia, and South America. Where data is transferred internationally, we ensure appropriate safeguards, such as:

  • Adequacy Decisions: For transfers from the EU/UK to certain countries with recognized data protection standards.

  • Standard Contractual Clauses: Adopted by the European Commission for transfers from the EU/UK to other regions, supplemented by additional security measures if necessary.

  • Other Lawful Transfer Mechanisms: Including consent or necessity for performance of a contract.

In all cases, we will take reasonable measures to ensure that your personal data is processed securely and in accordance with this Privacy Policy and applicable data protection laws.

2.3 Storage Duration

We retain personal data only as long as necessary to fulfill the purposes described in this Policy or as required by law. We will delete or anonymize data when it is no longer needed or if you validly request its deletion (subject to any legal retention requirements).

2.4 Your Rights

Depending on your jurisdiction, you may have some or all of the following rights in relation to your personal data:

  • Right to Know/Access: Request to know or access the personal data we hold about you.

  • Right to Rectification: Request corrections to inaccurate or incomplete data.

  • Right to Deletion/Erasure: Request deletion of your data, subject to legal obligations.

  • Right to Restriction of Processing: Request limited processing of your data in certain circumstances.

  • Right to Data Portability: Obtain a copy of your data in a structured, commonly used format.

  • Right to Object: Object to data processing based on our legitimate interests or for direct marketing.

  • Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time.

To exercise any of these rights, contact us at info@anyma.com. We will respond in accordance with applicable laws.

Additional Jurisdiction-Specific Rights

  • California Residents (CCPA): You may have the right to opt out of the sale of personal information (if applicable) and to not be discriminated against for exercising any of your privacy rights.

  • Canada (PIPEDA): You may have the right to challenge our compliance with applicable privacy legislation.

  • Australia (APPs): You may complain to the Office of the Australian Information Commissioner if you believe we have breached the Australian Privacy Principles.

  • Brazil (LGPD): You may have rights similar to those under GDPR, including the right to data portability and deletion.

Please note that the availability and scope of these rights may differ according to your location and local laws.

2.5 Obligation to Provide Data

Certain personal data (e.g., sign-up information) may be necessary to provide requested services. If you do not provide the required data, we may be unable to offer certain services or fulfill a contract with you.

2.6 No Automated Decision-Making

We do not use fully automated decision-making processes (e.g., profiling that produces legal effects) without human intervention. If this changes, we will inform you where required by law.

2.7 Contacting Us

When you contact us (e.g., via email, phone, or Website form), we process the personal data you provide to respond to your inquiry. This is based on our legitimate interest in communicating with you or performing a contract/pre-contractual measures, as relevant.

3. Data Processing on Our Website

3.1 Log Files and Security

When you visit our Website, our servers automatically collect certain information (e.g., IP address, browser type, pages visited, and timestamps). We process this data to ensure the security and stability of our Website, to detect or prevent fraud, and to improve our services. The lawful basis includes our legitimate interests under GDPR Art. 6(1)(f) and analogous principles under relevant local laws.

3.2 Cookies and Similar Technologies

We use cookies and similar tracking technologies to:

  • Operate and personalize our Website.

  • Conduct analytics (e.g., Google Tag Manager, Meta Pixel).

  • Provide targeted advertising based on your interests (with your consent where required by law).

Depending on your location, we may request consent for non-essential cookies. You can manage cookie preferences through your browser settings or our cookie banner. Please note that disabling cookies may affect the functionality of our Website.

4. Third-Party Services

We may use third-party services (e.g., payment processors, email marketing platforms, analytics providers) that process personal data on our behalf or as separate controllers. These service providers may have their own privacy policies. Some of the main third parties we engage with include:

  • Squarespace (website hosting/design),

  • Shopify (e-commerce services),

  • Mailchimp or MessageBird (“bird”) for email/SMS marketing,

  • Meta (Facebook/Instagram analytics and marketing),

  • Google (analytics, marketing tags, conversion tracking),

  • Twitter (social sharing),

Where required, we use Standard Contractual Clauses or other lawful mechanisms to secure international data transfers.

5. Social Media

We maintain profiles on social networks (e.g., Facebook, Instagram). These platforms independently process personal data. If you interact with us via these platforms, we process the data you provide (e.g., messages, comments). We have legitimate interests in maintaining an online presence and communicating with you. For more details on how these platforms handle personal data, please review their respective privacy policies.

Targeting Data: We may use anonymized or aggregated “lookalike” or “exclusion” audiences for targeted advertising. We do not share personally identifiable information with event partners unless required for service delivery and only with appropriate agreements in place.

6. Event Notifications and Zero-Party Data

By signing up for event notifications or newsletters, you consent to the collection and use of your personal data (e.g., name, email address, and phone number) for the stated purpose, such as sending event announcements or promotional updates. Zero-party data you provide about your interests or event preferences is used solely for tailored communications. You may unsubscribe at any time using the “unsubscribe” link in emails, replying “STOP” to SMS messages, or emailing info@anyma.com.

7. Data Security

We use industry-standard administrative, technical, and physical safeguards to protect personal data against unauthorized access, loss, misuse, or alteration. While we strive to protect your data, no security system is foolproof. Please contact us if you believe your data has been compromised.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our data practices or legal obligations. Any changes will be posted on this page with an updated “Last Updated” date. Please review this page periodically to stay informed of any modifications.

9. Questions and Comments

If you have questions, concerns, or comments regarding this Privacy Policy, or wish to exercise any of your privacy rights, please contact us:

Anymax LLC
c/o Pryor Cashman LLP (Nicholas Saady, Esq.)
7 Times Square
New York, New York 10036
United States
Email: info@anyma.com

We will make every effort to address your inquiry in a timely and transparent manner, in accordance with applicable privacy laws.