Privacy Policy

How we collect, use, and protect your personal data

Introduction

We take the protection of your personal data very seriously. This privacy policy explains what information we collect, how we use it, and your rights regarding your personal data.

This privacy policy applies to all services provided by Protest Listing and complies with the General Data Protection Regulation (GDPR) and applicable data protection laws.

Data Controller

The controller responsible for processing personal data on this website is:

AS EDV Dienstleisungen

Auf dem Rübkamp 19

53947 Nettersheim

Germany

You can reach us using the following contact details:

What Data We Collect

Account Information

When you create an account, we collect:

  • Email address
  • Username
  • Password (encrypted)
  • Account creation date

Event Submissions

When you submit event information, we collect:

  • Event details (title, description, date, location)
  • Contact information (if provided)
  • Submission timestamp
  • Your user ID (if logged in)

Server Logs (Automatically Collected)

Our web server automatically logs technical information for security and abuse prevention purposes:

  • IP address (for security monitoring)
  • Browser type and version
  • Access timestamp
  • Requested URL/page
  • HTTP status code
  • Referrer URL (when available)

Location Data

When you use the "Near me" feature, your browser may request your device's location. This data is processed only in your browser and is never sent to or stored on our servers. You must explicitly grant permission each time.

How We Use Your Data

We use your personal data for the following purposes:

  • To provide and maintain the protest listing service
  • To manage your account and authenticate you
  • To display event information you submit publicly on the platform
  • To send account verification and password reset emails
  • To detect and prevent spam, abuse, and security threats
  • To comply with legal obligations under GDPR and German law

Legal Basis for Processing

We process your personal data based on:

  • Consent: When you give us explicit permission (e.g., location access)
  • Contract: To fulfill our service agreement with you
  • Legal Obligation: To comply with applicable laws
  • Legitimate Interest: To improve our service and prevent abuse

Data Sharing and Disclosure

We do not sell your personal data. We may share your data with:

  • Hosting Provider: Our hosting provider (located in Germany/EU) has technical access to server data and databases as part of infrastructure operations
  • OAuth Providers: When you log in with Google or Apple, authentication is handled by their services according to their privacy policies
  • Legal Authorities: When required by law, court order, or to protect our rights and comply with legal obligations
  • Public Display: Event information you submit (title, description, date, location) is publicly visible to all users

All data is stored within Germany/EU. We do not use analytics services or tracking tools.

Cookies

We use cookies for essential functionality only:

  • Session Cookie (HTTP-only): Secure authentication cookie to keep you logged in to your account. This cookie is HTTP-only and cannot be accessed by JavaScript, providing enhanced security.
  • Language Preference: Remembers your selected language (English/German) for 1 year

We do not use any analytics cookies, tracking technologies, or browser localStorage. All cookies are strictly necessary for the service to function. Clearing your cookies will log you out and reset your preferences.

Data Security

We implement appropriate technical and organizational measures to protect your data:

  • Encryption of data in transit (HTTPS/TLS)
  • Encrypted password storage
  • Regular security updates and patches
  • Access controls and authentication
  • Regular security audits
  • Secure data backup procedures

However, no method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

Data Retention

We retain your data according to these specific periods:

  • User Accounts: Retained until you request account deletion
  • Event Data: Automatically deleted 2 weeks after the event date has passed
  • Server Logs: Retained for security purposes according to legal requirements
  • Email Communications: Verification and password reset emails are transactional and not stored long-term

When you delete your account, all associated personal data (email, username, password) is permanently deleted. Event submissions you made become anonymous (user association removed). Server logs may be retained for legal compliance.

Your Rights

Under GDPR and applicable data protection laws, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Restriction: Limit how we use your data
  • Portability: Receive your data in a machine-readable format
  • Object: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent at any time (where applicable)
  • Complaint: Lodge a complaint with a supervisory authority

To exercise these rights, please contact us at info@protest-listing.com

Children's Privacy

Our service is not intended for children under 16 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any significant changes by posting a notice on our website or sending you an email. Your continued use of the service after changes become effective constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this privacy policy or our data practices, please contact us:

info@protest-listing.com

Last updated: October 20, 2025

Back to Home