ETHRAEON operates under human authority. We do not collect personal data without explicit consent. We do not make automated decisions. You have full rights to access, correct, or delete your data. We maintain constitutional constraints on AI systems that prevent unauthorized data processing.
Privacy Policy
Effective Date: January 16, 2026
Authority: AC-1 (Jason Prohaska)
1. Introduction
ETHRAEON is a constitutional AI governance framework. This Privacy Policy explains how we collect, use, and protect information in accordance with human authority principles and applicable data protection laws including GDPR.
2. Constitutional Constraints
ETHRAEON operates under the following constitutional constraints:
- Human Authority Absolute: No AI system may make decisions about personal data processing without explicit human authorization.
- Evidence Chain Mandatory: All data processing activities are logged in immutable evidence chains (Canon).
- Deterministic Execution: Data processing follows pre-authorized rules only. No autonomous interpretation.
- Compliance by Design: Privacy protections are built into system architecture, not added afterward.
See AI Governance Policy and Constitutional Rules (Canon) for technical details.
3. Data We Collect
3.1 Information You Provide
- Contact Information: If you contact us for support or data requests (email address, name)
- Feedback: Content you voluntarily submit through feedback mechanisms
3.2 Automatically Collected Information
- Server Logs: IP address, browser type, access times, pages visited (standard web server logs)
- Cloudflare Analytics: Anonymous traffic analytics for security and performance (see Cookie Policy)
3.3 Information We Do NOT Collect
- We do NOT use third-party advertising or tracking networks
- We do NOT sell personal data to third parties
- We do NOT create user profiles for behavioral targeting
- We do NOT use AI systems to make inferences about users without consent
4. How We Use Information
- Service Operation: To provide access to ETHRAEON documentation and interfaces
- Security: To detect and prevent security threats (DDoS protection, abuse prevention)
- Technical Improvement: To understand usage patterns and improve documentation (aggregate analytics only)
- Legal Compliance: To comply with legal obligations and respond to lawful requests
5. Legal Basis for Processing (GDPR)
- Legitimate Interests: Service operation, security, technical improvement (Article 6(1)(f))
- Consent: Where explicitly requested for specific features (Article 6(1)(a))
- Legal Obligation: Compliance with applicable laws (Article 6(1)(c))
6. Data Sharing and Disclosure
We do NOT share personal data with third parties except:
- Service Providers: Cloudflare (CDN, DDoS protection) - see their privacy policy
- Legal Requirements: When required by law, court order, or government request
- Security Threats: To prevent fraud, abuse, or security threats (with legitimate interest basis)
7. Data Retention
- Server Logs: Retained for 90 days, then deleted
- Support Requests: Retained for 2 years after resolution
- Canon Evidence: Immutable records retained indefinitely (contains NO personal data)
8. Your Rights (GDPR)
You have the following rights:
- Right to Access: Request a copy of your personal data
- Right to Rectification: Correct inaccurate personal data
- Right to Erasure: Request deletion of your personal data
- Right to Restrict Processing: Limit how we use your data
- Right to Data Portability: Receive your data in machine-readable format
- Right to Object: Object to processing based on legitimate interests
- Right to Withdraw Consent: Withdraw consent at any time (where applicable)
9. How to Exercise Your Rights
To exercise any of these rights, contact:
- Email: [email protected]
- Response Time: Within 30 days of verified request
- Verification: We may request identification to verify requests
10. International Data Transfers
ETHRAEON infrastructure is located in the European Union. If you access from outside the EU, your data may be transferred internationally. We ensure appropriate safeguards for such transfers.
11. Children's Privacy
ETHRAEON does not knowingly collect information from children under 16. If we become aware of such collection, we will delete the information immediately.
12. Changes to This Policy
We may update this Privacy Policy. Changes will be posted on this page with an updated "Effective Date." Continued use after changes constitutes acceptance.
13. Supervisory Authority
You have the right to lodge a complaint with your local data protection authority if you believe we have not complied with applicable data protection laws.
14. Contact Information
For privacy questions or concerns:
- Email: [email protected]
- Authority: AC-1 (Jason Prohaska)
- Governance: AI Governance Policy