Privacy Policy

This policy explains what personal data The Open Manifesto collects, why we hold it, and what rights you have in relation to it. We have written it in plain language and tried to make it accurate and complete. If anything is unclear, please get in touch.

1. Who we are

The data controller for this website is The Open Manifesto spolek, a non-profit association registered in the Czech Republic on 31 March 2026 under registration number IČO 24415707, file L 15430 at the Regional Court in Hradec Králové. Its registered seat is Havlíčkova 155, 584 01 Ledeč nad Sázavou, Czech Republic. The association exists to support education, research, public awareness, and international dialogue in areas including human consciousness, social systems, ethics, and sustainable development. You can reach us about privacy matters at hello@theopenmanifesto.org.

2. What data we collect

Signing the manifesto

When you sign the manifesto, we collect your name, email address, and optionally your country of residence and affiliation. Your name and affiliation may appear publicly in the signatories list. Your email address is never displayed publicly. It is used only to verify genuine participation and to respond if a question arises about your submission.

Proposal and contribution submissions

The proposals section accepts two types of contribution: proposals for a new right, and critiques or refinements of existing ideas in the manifesto. When you submit either type, we collect the content of your submission, your submitter type, and optionally your name. We also collect your email address, which is used only to follow up if we have questions about your submission. It is not published. All submissions are reviewed before being considered for the framework.

Rights engagement

When you engage with the rights section by indicating that you agree or are unsure about a right, and optionally by leaving a reflection, we record your response alongside a session identifier. This interaction is not linked to your name or email. It is anonymous. The reflection text you write is stored as part of the session record and may be reviewed internally for research purposes.

System Awareness Test

The System Awareness Test invites you to answer a series of questions about how you perceive society and the systems that shape it. Your responses generate a score and a profile category. These results are stored alongside a session identifier and no other personally identifying information. The test results are anonymous. They are used to understand how people engage with the ideas in the manifesto.

Session identifiers

To enable consistent interaction across pages without requiring an account, this site generates an anonymous session identifier and stores it in your browser's local storage. This identifier has no connection to your name, email, or IP address. It is used solely to associate your interactions within a single browsing session, for example to prevent duplicate rights engagement responses. It is not shared with third parties.

PDF download

When you download the manifesto PDF, we record a timestamped count event. No personal information is stored in connection with that record.

Financial contributions

Financial contributions are processed through Stripe. Payment data including card details is handled entirely by Stripe and is not stored on our systems. We may receive a transaction record confirming that a contribution was made. Stripe operates under its own privacy policy, which can be found at stripe.com/privacy.

Social sharing

The site includes buttons that allow you to share content on platforms including X, LinkedIn, Facebook, and Reddit, and to copy a link. These buttons do not transmit any data to those platforms until you click them. When you click a share button, you are redirected to or open the relevant platform, which handles the interaction under its own terms and privacy policy. We do not control what those platforms do with data once you arrive there.

Direct contact

If you write to us by email, we receive your email address and the content of your message. We use this only to respond to you.

Technical and server logs

Like most websites, our hosting infrastructure may automatically log basic technical information, including IP addresses, browser type, and pages visited, for security and operational purposes. This data is not used for marketing or sold to third parties.

3. Cookies and similar technologies

We use cookies and similar browser storage technologies to ensure the proper functioning of this website and, where you have consented, to understand how it is used so that it can be improved. We do not use advertising cookies, profiling cookies, or any tracking tools that follow you across other websites.

Necessary technologies

Certain storage is always active because it is essential to how the site works. This includes the anonymous session identifier described in section 2, which enables features such as rights engagement and the System Awareness Test, and a small record of your cookie preference (stored under the key tom_cookie_consent) so that we remember your choice and do not show the consent banner on every visit. These do not identify you and are not used for any marketing or tracking purpose.

Analytics cookies

We may use analytics tools to understand how visitors find and read the manifesto and which parts of the website are most useful. Analytics cookies and scripts are only loaded after you explicitly accept them. If you decline, no analytics technology is activated. At present, no analytics service is active on this site. This section will be updated before any analytics service is deployed, and your previously recorded consent will govern whether it loads.

Legal basis for analytics cookies

The legal basis for optional analytics cookies is your freely given, informed consent, as provided through the cookie preference panel. You may withdraw that consent at any time. Your choice will be respected immediately.

Managing your cookie preferences

When you first visit the site, a cookie preference panel appears at the bottom of the page. You can accept all cookies or reject analytics cookies. You can revisit and change your choice at any time by clicking Cookie settings in the footer at the bottom of every page. Clearing your browser's local storage will also remove your stored preference, and the panel will reappear on your next visit.

4. Why we collect it and our lawful basis

Signatory submissions are processed on the basis of your consent. You actively choose to add your name and to have it displayed publicly, and you can request removal at any time.

Proposal submissions, rights engagement interactions, and awareness test results are processed on the basis of legitimate interests. Our interest is in understanding how people engage with the ideas in the manifesto and in improving the framework accordingly. Rights engagement and awareness test data is anonymous and collected without any link to your identity.

Direct email correspondence is handled on the basis of legitimate interests, specifically responding to your message. Download tracking and technical logging serve the same basis, where our interest is in operating and securing the site.

Financial contribution records may be retained on the basis of legitimate interests or legal obligations depending on the nature of the transaction.

Optional analytics cookies are processed on the basis of your consent, as described in section 3. You may withdraw that consent at any time through the Cookie settings link in the footer.

5. How long we keep your data

We keep personal data only for as long as reasonably necessary for the purposes described above, or as required by applicable law. Signatory data is retained for the duration of the project unless you ask us to remove it. Proposal data is kept for as long as needed to review and administer it, and may be retained indefinitely if a proposal is accepted into the framework. Contact data is kept for as long as needed to handle the matter.

Anonymous session data, including rights engagement responses and awareness test results, may be retained indefinitely in aggregated or anonymised form for research and development purposes. When personal data is no longer needed, we delete or anonymise it.

6. Third-party processors

The website is hosted and served through Replit, which provides the application infrastructure and may process technical log data as part of standard hosting operations. Signatory, proposal, rights engagement, and awareness test data is stored in Supabase, our database provider. Payment processing is handled by Stripe. Each of these providers acts as a technical service provider and operates under its own privacy policy. We do not store card or full payment details ourselves.

If analytics tools are enabled in the future, this section will be updated to name the provider and describe its role.

7. International transfers

Some of our third-party providers may process data in countries other than your own. Where this is the case, we rely on those providers' transfer mechanisms and safeguards, and we take reasonable steps to ensure data is handled appropriately wherever it is processed.

8. Your rights

Depending on where you are located, you may have the right to access the personal data we hold about you, to have inaccurate data corrected, and to request that we delete it. You may also have the right to restrict or object to certain processing, to receive your data in a portable format where applicable, and to withdraw consent at any time where consent is the lawful basis for processing. Withdrawal does not affect the lawfulness of anything we processed before that point.

Please note that anonymous session-based interactions, such as rights engagement responses and awareness test results, cannot be traced back to an individual once they are stored. If you have questions about what data might be associated with a session identifier you hold, you are welcome to write to us.

If you are dissatisfied with how we handle your data, you have the right to lodge a complaint with a supervisory authority. In the Czech Republic, the relevant body is the Office for Personal Data Protection (Úřad pro ochranu osobních údajů, uoou.cz). You may also contact the supervisory authority in your own country if you are based in the EU.

To exercise any of these rights, please write to us at hello@theopenmanifesto.org. You can find more detail on the process at our Data Requests page.

9. Changes to this policy

We may update this policy as the project develops. The date at the top of the page reflects the most recent revision. We encourage you to check back if you have ongoing concerns about how your data is handled.

10. Contact

For any questions about this policy or about how we handle your data, write to us at hello@theopenmanifesto.org.