DISCUSSIONS
DISCUSSIONS

Privacy Policy

How we collect, use, and protect your information

Effective Date: March 12, 2026discussions.worldsupport@discussions.world
Download PDF

1.Introduction

Discussions ("we," "us," or "our") operates the participatory research platform available at discussions.world and via our mobile applications (collectively, the "Platform"). This Privacy Policy explains how we collect, use, disclose, and protect information when you use our Platform.

By using the Platform, you agree to the collection and use of information as described in this Privacy Policy. If you do not agree, please do not use the Platform.

We are committed to data minimization. We collect only what is necessary for Platform functionality and research purposes. We never sell your personal profile to advertisers.

2.Information We Collect

2.1 Information You Provide

  • Email address and username (required for account creation)
  • Password (stored as a one-way cryptographic hash — we cannot read it)
  • Voluntary self-description labels (e.g., 'cancer survivor,' 'retired teacher') — these are optional and not linked to your legal identity
  • Optional demographic information: age range, gender (you choose whether to provide this)
  • Messages, comments, and posts you submit within discussions
  • Poll and survey responses
  • Photos or media you choose to upload

2.2 Information Collected Automatically

  • Approximate location — city or region level only. We never store precise GPS coordinates. Raw location data is bucketed to the city or region level immediately upon receipt.
  • Behavioral signals: time spent on topics, scroll depth, return visits, contribution type (lurk, comment, poll, upload)
  • Search and discovery behavior: keywords and tags used to find topics
  • Device type and operating system (general, not device fingerprint)
  • Session timestamps and project participation history

2.3 Information We Do Not Collect

  • Precise GPS coordinates — we bucket all location to city/region immediately
  • Full legal name (unless you choose to provide it in your profile)
  • Government ID, social security number, or financial account numbers
  • Private messages between users (the Platform does not have private messaging)
  • Contact lists or social graph from your device

3.How We Use Your Information

3.1 Platform Operation

  • To create and manage your account
  • To enable participation in discussions, polls, and surveys
  • To display your contributions to other participants in the same project
  • To send you notifications about projects you have joined or are watching
  • To process token purchases and manage your token balance

3.2 Research and Analytics

The Discussions Platform is a participatory research engine. Aggregated, de-identified behavioral data from your participation may be included in research intelligence products. This is a core function of the Platform and is described in our Terms of Service.

  • Individual user data is never sold or disclosed to third parties in identifiable form
  • Research outputs are aggregated datasets and reports — no individual is identifiable
  • Voluntary self-description labels (e.g., 'water treatment professional') may be used as soft credential signals in aggregated analysis
  • Expert-flagged contributions carry higher analytical weight in research outputs — this is disclosed at the time you are flagged as an expert

3.3 Platform Improvement

  • To understand how participants discover and engage with topics
  • To detect and address technical issues
  • To improve recommendation and filtering systems

4.Data Minimization and Privacy by Design

We apply privacy by design principles throughout the Platform:

  • Location is bucketed to city/region at the point of ingestion — raw GPS is never written to storage
  • Optional demographic data (age, gender) is stored separately from behavioral data and joined only at query time, never at rest
  • Survey responses are stored with your pseudonymous user ID, not your profile
  • You can participate anonymously — your legal identity is never required
  • Blocking signals (topics or users you block) are stored as behavioral data but never disclosed to the blocked party

5.Data Sharing and Disclosure

5.1 We Do Not Sell Your Data

We do not sell, rent, or trade your personal information to advertisers or data brokers. The Platform does not display advertising.

5.2 Research Intelligence Products

Aggregated, de-identified research outputs derived from Platform activity may be licensed to third-party buyers (businesses, researchers, policy organizations). These outputs contain no individually identifiable information.

5.3 Service Providers

We share data with service providers who help operate the Platform, including:

  • Cloudflare — infrastructure, CDN, and security services
  • Stripe — payment processing for token purchases
  • Resend — transactional email delivery

All service providers are contractually bound to use your data only to provide services to us and not for their own purposes.

5.4 Legal Requirements

We may disclose information if required by law, court order, or to protect the rights, property, or safety of Discussions, our users, or the public.

6.Data Retention

  • Account data is retained for the life of your account plus 90 days after deletion
  • Discussion contributions and behavioral data are retained for the duration of the associated research project plus 2 years
  • Aggregated, de-identified research data may be retained indefinitely as it cannot be re-linked to individuals
  • Payment records are retained for 7 years as required by applicable tax law

7.Your Rights and Controls

7.1 Access and Portability

You may request a copy of the personal data we hold about you by contacting us at legal@discussions.world. We will respond within 30 days.

7.2 Correction

You may update your account information at any time through your account settings.

7.3 Deletion

You may request deletion of your account and associated personal data. We will process deletion requests within 30 days. Note that contributions you made to public discussions (comments, poll votes) may remain in aggregated, de-identified research datasets — individual deletion from aggregated datasets is technically not feasible once de-identification has occurred.

7.4 Consent Withdrawal

If you provided consent for specific data uses beyond Platform operation, you may withdraw that consent at any time through your account privacy settings. Withdrawal does not affect data already processed under prior consent.

7.5 Blocking and Filtering

You may block specific topics, users, or content types from your experience. These preferences are respected immediately and applied to all future content delivery.

8.GDPR — European Users

If you are located in the European Economic Area (EEA), the following applies:

  • Legal basis for processing: Contract performance (account and platform services), Legitimate interests (research and analytics), Consent (optional demographic data and research participation beyond Platform operation)
  • Data controller: Discussions, reachable at legal@discussions.world
  • Right to lodge a complaint: You have the right to lodge a complaint with your local data protection authority
  • International transfers: Data is processed on Cloudflare's global infrastructure. We rely on Cloudflare's Standard Contractual Clauses for transfers outside the EEA

9.CCPA — California Users

California residents have the following rights under the California Consumer Privacy Act:

  • Right to know what personal information we collect, use, share, or sell
  • Right to delete personal information we have collected (subject to certain exceptions)
  • Right to opt out of the sale of personal information — we do not sell personal information
  • Right to non-discrimination for exercising your privacy rights

To exercise these rights, contact us at legal@discussions.world with the subject line 'CCPA Request.'

10.Children's Privacy

The Platform is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If you are between 13 and 18, you may use the Platform only with the consent and supervision of a parent or legal guardian.

If we become aware that we have collected personal information from a child under 13 without parental consent, we will take steps to delete that information. Contact us at legal@discussions.world if you believe we have inadvertently collected information from a minor.

11.Security

We implement industry-standard security measures to protect your information:

  • All data transmitted between your device and our servers is encrypted using TLS
  • Passwords are stored as one-way cryptographic hashes (bcrypt)
  • Session tokens are stored in encrypted device storage (Keychain on iOS, Keystore on Android)
  • Access to production data systems is restricted to authorized personnel
  • We conduct regular security reviews of our infrastructure

No method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to protecting your information.

12.Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on the Platform and sending an email to your registered address at least 14 days before the changes take effect. Your continued use of the Platform after the effective date constitutes acceptance of the updated policy.

13.Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy:

We aim to respond to all privacy inquiries within 5 business days.

© 2026 Discussions · discussions.world

HomePrivacyContact