Перейти к содержимому
Legal · Plain language version

Privacy policy

Short version: we use your data only to deliver the service you requested. We do not sell it. You can export or delete it at any time. Full legal version, side-by-side plain-language version, and change history below.

Last updated · April 2026 · v4.1 · Diff from v4.0

Jump to

1 · What we collect 2 · Why we collect it 3 · Who we share with 4 · Your rights 5 · AI processing 6 · Contact us

1 · What we collect

To deliver public services, we collect the minimum identifying information required by law for each service — typically your verified government ID reference, contact info, and the specific data fields the service requires (e.g. address for a permit, income for a subsidy).

  • Identity: verified government ID reference (not the ID itself).
  • Contact: email, phone, preferred language.
  • Service-specific: only what a given service legally requires.
  • Session: IP, device type, page views — retained 90 days.

2 · Why we collect it

We collect data only to fulfill the specific service you requested. We do not use it for marketing, profiling unrelated services, or secondary purposes. When the service completes, associated working data is purged within 30 days; long-term records are retained only where law requires.

3 · Who we share with

We share your data with other public bodies only when you explicitly consent to a cross-agency transfer, or where law requires (e.g. court order). Every such share is logged in your private audit trail.

We never sell data. We do not share with commercial partners. Technical processors (infrastructure, AI vendors) sign binding data-handling agreements published at vendors.new-institution.gov.

4 · Your rights

  • Right to view — a machine-readable copy of everything we hold about you.
  • Right to correct — amend any inaccuracy within 48 hours.
  • Right to erase — subject to legal retention rules; the limits are published.
  • Right to port — export to another jurisdiction or personal vault.
  • Right to audit — see every internal access to your record.
  • Right to appeal — any automated decision, within 30 days, no friction.

5 · AI processing

When the Civic Assistant answers a question for you, it reads only the profile fields strictly relevant. It does not retain your conversation on shared servers by default — a transient memory window is cleared between sessions.

AI-assisted decisions are logged to the public decision log (anonymized) and to your private audit trail (full). Every AI decision is appealable; the appeal triggers a human review within one business day.

6 · Contact us

Data-protection officer: dpo@new-institution.gov. Written requests receive a response within 10 business days. For urgent issues, use the Privacy Escalation form in your account.