Privacy : Rainbow Family Europe

1. Personal Data Collection

Mandatory Data: To ensure authenticity and trust within the platform, all users must provide the following mandatory data upon registration:
- A profile picture consisting of a memory that siblings remember well. This image should represent a significant moment in their shared history.
- A username, which may be a pseudonym or the user’s full legal name.

Purpose of Data Collection: Data is collected for the sole purpose of providing a safe and respectful environment for users to engage in meaningful cultural exchange and dialogue. This includes:
- Facilitating user interactions (e.g., messaging, content sharing).
- Ensuring compliance with platform guidelines (e.g., verifying user identities to prevent impersonation).
- Enabling account recovery and communication with users regarding platform updates.
Data Processing: All personal data will be processed in accordance with applicable data protection regulations, including the General Data Protection Regulation (GDPR), and will not be used for marketing or sold to third parties.

Indigenous Data Sovereignty: We recognize and respect the rights of Indigenous Peoples to control their own data. Any data related to Indigenous users, communities, or content will not be shared, sold, or disclosed to third parties without explicit consent.
Data Control: Users retain full control over their personal data and can request modifications or deletions at any time. Indigenous communities may also request the removal or protection of content they consider sensitive.

User Choice of Anonymity: Users can choose to remain anonymous by using a pseudonym. However, they must upload a profile picture of a meaningful sibling memory, which does not need to include any facial image for verification.
Data Protection: We take extensive measures to ensure that users’ personal information, including their choice of anonymity or full name, is protected from unauthorized access or breaches. Sensitive data will be encrypted and stored securely.

User Consent: Users are required to provide informed consent when sharing personal data or Indigenous knowledge. The principle of Free, Prior, and Informed Consent (FPIC) is strictly upheld for any content shared by or about Indigenous Peoples.
Revocation of Consent: Users have the right to revoke consent for the use or sharing of their data at any time. Upon request, their data will be removed from the platform’s databases.

Limited Access: Rainbow Family Europe will not share user data with third parties, except where required by law or where explicit consent is provided by the user.
Data Sharing: If data is shared with third-party service providers for technical purposes (e.g., hosting), these providers must comply with the same data protection standards as Rainbow Family Europe.

Right to Access: Users have the right to request access to their personal data, as well as information on how it is being used. Requests will be processed in accordance with GDPR guidelines and responded to within 30 days.
Right to Deletion: Users can request the deletion of their account and all associated data at any time. Deleted data will be permanently removed from our servers.