3.9 KiB
PRIVACY POLICY
Last updated 2022-03-17
This privacy policy describes our privacy policy, which goes into effect on 2022-03-17 and was last updated on 2022-03-17.
This document describes what, how, and why we collect, store, use and share (“process”) your information when you use our services.
1. What information do we collect?
Personal information you disclose to us
We collect personal information that you voluntarily provide to us when you register on the Services, or contact us. In particular we collect the following information:
- email addresses
- usernames
- Your name, if you send us an email.
- Parameters of your multi-factor authentication devices, such as the protocol it uses or the public key.
We do not process sensitive information.
Personal information other disclose to us
Other users may submit user-generated content to the Services. These are typically free-form data, such as comments, posts, and messages.
If you find that another user has posted personal information about you, you can report the infringing content to us.
2. How do we process your information?
We process your personal information for the following purposes:
- To allow you to register and log in to the Services.
- To respond to user inquiries
- To attest to connected services, that you have logged in
- To enable user-to-user communications
3. What legal basis does our processing rely on?
We process your data entirely on consent. As described below, you can withdraw your consent at any time.
4. when and with whom do we share your information?
We may need to share your personal information (username) in the following situations:
- We share your personal information to other users, if you publish public user-generated content, or user-generated content shared with other users.
- We publish your username in a protected form to the public, so that other users and approved third parties can verify your identity.
5. how long do we keep your information?
We keep your personal information for as long as you have an account with us. The only exception is the aforementioned protected username, which is stored indefinitely, because it is stored in an append-only “transparency log”.
6. How do we protect your information?
We have implemented appropriate and reasonable technical security measures to protect the aforementioned personal information from unauthorized access, use, disclosure, modification, or destruction.
Private or shared data is encrypted on your device and sent to us over a secure connection. We are unable to access the contents of such data, and neither is an attacker.
7. What are your privacy rights?
The right to access
A user can request a copy of all information we have about them.
The right to rectification
A user can request change of personal information. Most of the time this is possible to do via the provided interface. Currently it is not possible to change the username.
The right to erasure
A user can request erasure of personal information. This is possible to do via the provided interface.
The right to restrict processing
This is currently only possible by deleting the personal information in question.
The Right to Data Portability
This is currently only possible by requesting a copy of all information we have about you.
8. Controls for do-not-track features
We honor Do-Not-Track browser signals or operating system settings, by simply not performing tracking on anyone.
9. Non-EU Users
This privacy policy applies to all users, from every country. If your legislation has a stricter privacy law, please contact us.
10. Updates to this privacy policy
We may update this privacy policy from time to time. We will notify you of any changes by posting the new policy on the Services. If changes affect your privacy negatively, you will have to re-consent to the new policy.
11. Contact us
For privacy-related questions, please email lotte@chir.rs.