Privacy Policy

Last Updated: November 2, 2025

1. Introduction

NOIDONOTCONSENT.ORG ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

2. Information We Collect

2.1 Personal Information

We collect the following types of personal information:

• Email Address: Required for vote confirmations and declaration submissions
• Country Information: Required for voting and declaration submissions
• Comments: Optional comments you submit with votes
• IP Address: Collected for security and analytics purposes
• Declaration Content: Title, subtitle, body, and tags you submit

2.2 Automatically Collected Information

• Browser type and version
• Operating system
• Pages visited and time spent on site
• Referring website
• Date and time of visits

3. How We Use Your Information

We use your information for the following purposes:

• Service Operation: To provide voting and declaration services
• Communication: To send vote confirmations and notifications
• Pseudonymous Display: To generate and display Voter IDs
• Content Moderation: To review and approve submissions
• Security: To prevent fraud and abuse
• Analytics: To improve our service and user experience

4. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on:

• Consent: When you voluntarily provide information
• Legitimate Interest: To operate and improve our service
• Contract Performance: To fulfill our service obligations

5. Pseudonymous Voting System

Our voting system uses pseudonymous Voter IDs to protect your privacy:

• Voter IDs are generated from your email using SHA-256 hashing
• Only the first 10 characters of the hash are used as your Voter ID
• Your actual email address is never displayed publicly
• Voter IDs cannot be reverse-engineered to reveal your email
• You can choose whether to display your vote publicly

6. Data Sharing and Disclosure

6.1 Public Information

The following information may be displayed publicly:

• Voter IDs (if you consent to public display)
• Vote counts and comments (associated with Voter IDs)
• Declaration content (after approval)
• Country information (in aggregated form)

6.2 Third-Party Services

We may share information with:

• Email Service Providers: To send notifications and confirmations
• Cloudflare: For security and performance (Turnstile captcha)
• Hosting Providers: To operate our website

6.3 Legal Requirements

We may disclose information when required by law or to:

• Comply with legal obligations
• Protect our rights and property
• Prevent fraud or abuse
• Ensure user safety

7. Data Security

We implement appropriate security measures to protect your information:

• SSL/TLS encryption for data transmission
• Secure database storage
• Regular security updates
• Access controls and authentication
• Regular backups and monitoring

8. Data Retention

We retain your information for the following periods:

• Vote Data: Indefinitely (as part of public ledger)
• Email Addresses: Until you request deletion
• Declaration Submissions: Until you request deletion
• Analytics Data: 2 years maximum

9. Your Rights (GDPR/CCPA)

9.1 Right to Access

You have the right to request copies of your personal data.

9.2 Right to Rectification

You have the right to request correction of inaccurate personal data.

9.3 Right to Erasure

You have the right to request deletion of your personal data, subject to legal obligations.

9.4 Right to Restrict Processing

You have the right to request restriction of processing of your personal data.

9.5 Right to Data Portability

You have the right to request transfer of your data to another service.

9.6 Right to Object

You have the right to object to processing of your personal data.

9.7 Right to Withdraw Consent

You have the right to withdraw consent at any time.

10. Cookies and Tracking

10.1 Essential Cookies

We use essential cookies for:

• Session management
• Security (Turnstile captcha)
• Basic functionality

10.2 Analytics

We may use analytics to understand usage patterns and improve our service.

11. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers.

12. Children's Privacy

Our service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information.

13. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

• Right to know what personal information is collected
• Right to know whether personal information is sold or disclosed
• Right to say no to the sale of personal information
• Right to access your personal information
• Right to equal service and price

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.

15. Contact Information

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

• Email: admin@noidonotconsent.org
• Website: https://noidonotconsent.org

16. Data Protection Officer

For GDPR-related inquiries, you can contact our Data Protection Officer at admin@noidonotconsent.org

17. Supervisory Authority

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with your local data protection supervisory authority.

By using our service, you acknowledge that you have read and understood this Privacy Policy.