Privacy Policy

AI 4 Society Observatory is a volunteer-driven, open-source transparency initiative that tracks AI-related societal risks and solutions. We are not a company. We do not sell data, run advertising, or monetize user information in any way.

When you sign in with Google, we receive and store:

• Your name (as set in your Google account)
• Your email address
• Your profile photo URL

We do not request access to your contacts, calendar, drive, or any other Google service. We use the minimum OAuth scopes required for authentication.

• Authentication — to verify your identity and maintain your session
• Role-based access — to determine which admin features you can use (if you are a contributor)
• Audit trail — review decisions (approve/reject) are logged with your user ID and timestamp so that all editorial actions are accountable and reversible
• Activity tracking — we record your last active timestamp (updated at most once per hour) to monitor contributor engagement

• No tracking pixels, fingerprinting, or behavioral analytics
• No third-party analytics services (no Google Analytics, no Mixpanel)
• No advertising or ad-related data sharing
• No selling, renting, or trading of personal data
• No profiling or automated decision-making about users

Public: Approved signals, observatory nodes, editorial hooks, and aggregate vote counts are visible to all visitors. These contain no personal data.

Private: Individual votes, review decisions, contributor identities, and application details are only visible to authenticated users with appropriate roles. Your email and name are never displayed publicly.

All data is stored in Google Cloud Firestore (Firebase), hosted in Google's cloud infrastructure. Authentication is handled by Firebase Authentication. We use Firestore security rules to enforce role-based access control at the database level.

All connections use HTTPS/TLS encryption in transit. Data at rest is encrypted by Google Cloud's default encryption.

• Approved signals are retained for 90 days, then archived. Archives are deleted after 1 year.
• Rejected signals are deleted within 30 days.
• Contributor accounts remain active until you request deletion or are deactivated by a lead.

We use only essential cookies required for Firebase Authentication session management. No marketing, preference, or analytics cookies are set. No cookie consent banner is needed because we don't use non-essential cookies.

You can at any time:

• Sign out — ends your session immediately
• Request data export — we will provide all data associated with your account
• Request deletion — we will delete your user document and anonymize your review history

To exercise these rights, contact us at info@ai4society.io.

We use the following third-party services:

• Google Firebase — authentication, database, hosting, cloud functions
• Google Gemini API — AI-powered signal classification and analysis (processes news articles, not user data)
• Google Imagen API — generates editorial illustrations (no user data involved)

No user personal data is sent to AI models. The AI agents process publicly available news articles only.

We may update this policy as the project evolves. Changes will be reflected by updating the "Last updated" date at the top. For significant changes, we will notify active contributors via the admin console.

For privacy questions or data requests: info@ai4society.io

Learn more about the project