Effective Date: 25 DEC 2025
1. Introduction
jatiya.org (“the Platform,” “we,” “us,” or “our”) is committed to protecting personal data and respecting the privacy rights of all users.
This GDPR Policy explains how we collect, use, store, share, and protect personal data in accordance with:
EU General Data Protection Regulation (GDPR) – Regulation (EU) 2016/679
International data protection principles
Applicable national and regional privacy laws
This policy applies to all users who access or interact with the Platform, including visitors, registered users, contributors, and public reviewers.
For the purposes of the GDPR, NationalParliament.org acts as the Data Controller for personal data processed through the Platform.
Contact for data protection matters:
📧 legal@jatiya.org
We process personal data only when at least one lawful basis applies:
Consent – where users voluntarily provide data
Legitimate Interest – platform security, moderation, and civic transparency
Legal Obligation – compliance with laws or lawful authority requests
Contractual Necessity – account creation and platform services
Public Interest – civic participation and democratic engagement (where applicable)
Name or username
Email address
Account credentials
Public comments, reviews, or feedback
Communications with the Platform
IP address
Browser type and device information
Date and time of access
Usage logs and security data
We do not intentionally collect special category data (e.g. political opinions, biometric data, health data).
If such data is voluntarily disclosed by users, it is processed at the user’s own risk and subject to moderation or removal.
Personal data is processed strictly for:
User account management
Public review and participation features
Moderation and abuse prevention
Platform security and fraud prevention
Legal compliance
Statistical and analytical improvement (anonymized where possible)
Users acknowledge that:
Reviews, comments, and ratings may be publicly visible
Personal data included in public content is shared at the user’s discretion
The Platform is not responsible for third-party reuse of publicly available content
Personal data is retained only for as long as necessary:
Active accounts: for the duration of use
Inactive accounts: archived or deleted after a reasonable period
Legal or compliance data: retained as required by law
Users may request deletion subject to legal obligations.
Users located in the EU (and equivalent jurisdictions) have the right to:
Access their personal data
Rectify inaccurate or incomplete data
Erase personal data (“Right to be Forgotten”)
Restrict processing
Object to processing
Data portability
Withdraw consent at any time
Lodge a complaint with a supervisory authority
Requests can be submitted via the contact details above.
We do not sell personal data.
Data may be shared only with:
Trusted service providers (hosting, security, analytics)
Legal authorities when required by law
Moderation or security partners under confidentiality agreements
All third parties are required to comply with GDPR or equivalent protections.
Where data is transferred outside the EU/EEA, we ensure:
Adequate protection mechanisms (Standard Contractual Clauses or equivalent)
Compliance with GDPR Chapter V requirements
We implement appropriate technical and organizational safeguards, including:
Encryption where appropriate
Access controls
Secure hosting environments
Monitoring and incident response procedures
No system is completely secure, but we take reasonable steps to protect all data.
The Platform may use:
Essential cookies (security, session management)
Limited analytics cookies
Users are informed and may manage cookie preferences where required by law.
The Platform is not intended for children under the age required by applicable law without parental consent.
We do not knowingly collect data from minors without lawful authorization.
In the event of a personal data breach:
We will notify relevant authorities where required
Affected users will be informed if there is a high risk to their rights and freedoms
This GDPR Policy may be updated periodically.
Changes take effect upon publication on the Platform.
For GDPR or privacy-related requests:
📧 member@jatiya.org