Document toolboxDocument toolbox

Data Residency Policies

The network’s data residency policies are drawn from the Articles of Association of the Open Constitution AI network. The data residency policies are applied on the network as protocols and controls.

https://docs.muellners.info/data-processing/data-security-and-handling-agreement

https://docs.muellners.info/data-processing/data-processing-agreement

https://docs.muellners.info/data-processing/data-protection

https://docs.muellners.info/data-processing/data-protection/notice-data-processing-and-control

https://docs.muellners.info/data-processing/data-protection/notice-data-residency-security-and-control-policy

https://docs.muellners.info/data-processing/data-protection/notice-data-residency-hosting-and-control-policy

https://docs.muellners.info/data-processing/data-protection/notice-emeritus-citizen

https://docs.muellners.info/data-processing/data-protection/external-ai-services

Network Asset-specific Cookie and Privacy Policy:

https://docs.muellners.info/privacy/cookie-policy

https://docs.muellners.info/privacy/privacy-policy

Data Integrity Policy:

Network AI Services | Open Constitution AI Governance

Policy for Public APIs to access network Assets and meta data

Network APIs | Open Constitution AI Governance

Data Management: transparency and control

​​In accordance with present and upcoming (future timed) data legislation,

a. Foundation is responsible for processing personal data in a lawful, fair and transparent way.

b. Foundation shall only process personal data for a limited and specific purpose.

c. Foundation shall only process the personal data that is necessary for its purposes.

d. Foundation shall ensure that personal data it is processing is accurate and up-to-date.

e. Foundation shall store personal data only for as long as is necessary.

f. Foundation shall keep personal data safe and confidential.

g. Foundation shall be accountable for how it processes personal data.

For the purposes of this policy; What does “processing” mean?

“collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction”

Foundation uses the following criteria(s) as the lawful bases for processing its member’s data:

a. Consent—The member has freely permitted Foundation to process their data. The consents are digitally recorded, e.g., when a member joins Foundation's Slack or Discord server or signs up on a web URL that takes the member to Foundation’s communication systems.

b. Contract - member has voluntarily signed up and joined the membership space, and Foundation needs to process their data to carry out and maintain subscribed membership activities, within the Foundation’s guidelines.

c. Legal obligation - the law requires the Foundation to process the member's data in a particular way: i.e for records, audit, moderation of hatred, free speech on its public forums and community space.

d. Legitimate interest - Foundation is processing a member's data to protect Foundation's statutory compliance with the laws governing the Foundation’s statutory existence in accordance with the business laws of Denmark.

Data Protection Officer(s): Voluntarily organised Foundation members appoint moderators from the community who uphold the community’s Code of Conduct.

Lessor Entity with legitimate Data Processor: A Special Purpose Vehicle( a limited liability registration with a local business registry) is incorporated by the Trust as Finscale ApS, in order to consolidate the intellectual property assignments that took place at the founding of the initiaitive.

Finscale ApS is the processor of the data controller - Foundation and any constituent registered agents(as described in Global Statutes).