Constitution & Privacy

Last updated: December 6, 2025

policy Radical Transparency: What we actually collect

You might be thinking: "I'm not giving some randoms my data." We agree. That's why we don't want your personal life. We only want to verify that you are a real human voting on real laws.

Here is the exact data structure we store for a user in our Google Cloud Firestore database. No hidden fields. No tracking cookies.

{
  "uid": "0A21rfdsTs1F3kYsx3252352", // Generated by Firebase Auth
  "email": "citizen@example.com", // Your only Personal Data
  "createdAt": "February 15, 2026 at 8:23:31 PM UTC",
  "marketingConsent": true, // For the project updates (optional)
  "primaryParliamentId": "United States Congress",
  "votes": { // Your voting metadata
    "us_civic_anti-compromat_act": true
  }
}

That's it. The rest is anonymous analytics (Firebase Analytics) to fix bugs, and App Check to prevent bot-farms from rigging the votes. We do not sell data. We do not run ads.

Table of Contents

Part 1: Privacy Policy (Data Minimization) Part 2: Community Rules (Terms of Service)

Part 1: Privacy Policy (Data Minimization)

We do not trade your attention. We collect only what is technically necessary to operate a secure civic infrastructure.

1. Data Controller

The legal operator is temporarily FO&WO VENTURES SP. Z O.O. (LLC), based in Wrocław, Poland. Contact: jacek@lustra.dev

2. What We Collect

Account (Email/UID): Necessary for secure login via Firebase Authentication.
Votes & Polls: Your votes build the statistics. They are linked to your account based on legitimate interest (protection against bot farms and duplicate voting). Publicly, your votes are displayed ONLY as anonymous aggregates.
Vote Retention: Voting data is stored for the duration of the parliamentary term plus 5 years for archival and research purposes. After this time, data is anonymized.
Communication: If you explicitly consent, we will send you project updates via email. You can withdraw consent at any time.
Citizen Projects: Content of legislative drafts submitted by you is entirely public.

            3. WHAT WE DO NOT DO:

            ❌ We DO NOT sell data to data brokers.

            ❌ We DO NOT use ad tracking.

            ❌ We DO NOT profile you politically for commercial purposes.

4. Infrastructure & Security

Location: Data is hosted securely on Google Cloud Platform, Europe-West9 (Paris).
Anti-Bot: We use Firebase App Check to verify app authenticity and prevent automated manipulation.
AI Privacy: We send only public government documents to AI models for summarization. Your private data NEVER goes to AI.

5. Children & Account Deletion

The service is intended for users 16+. We do not knowingly collect children's data.

To delete your data: Use the "Delete Account" button directly in the app settings to immediately remove your identifying data and email from our servers.

6. Your Rights

Under GDPR, you have the right to access, rectify, delete, and object to the processing of your data. Contact us at the email provided above.

Part 2: Community Rules (Terms of Service)

1. Operator and Mission

Lustra is a digital public infrastructure. The company acts as an incubator: it pays no dividends, has no external investors, and reinvests any revenue directly back into maintaining the infrastructure.

2. Code and License (Source Available)

Lustra's code is a common good protected from corporate exploitation.

Model: PolyForm Noncommercial License.
Allowed: Educational, research, and non-profit/civic use.
Prohibited: Corporations cannot use or profit from our work without explicit community consent.

3. Governance Roadmap

Our long-term goal is full decentralization.

Current state: The Founder acts as Lead Architect.
Soon: Establishment of a Civic Board elected directly by the users.
Goal: Implementing technical and legal mechanisms for the community to take control of the platform in case of mission betrayal.

4. Citizen Drafts Program (Law Incubator)

We provide a space for citizens to write the laws.

Procedure: Drafts are submitted via form and verified formally by the Operator.
Public Domain: By submitting a draft, you release it under the CC0 License (Public Domain). Law belongs to everyone.
Free Speech: We do not judge opinions or political leanings. We only reject projects violating criminal law or inciting violence.
Verification: You must be a citizen of the country where you submit a draft.

5. AI and Source Hierarchy

AI is a tool, not an oracle. AI helps navigate complex legal language but can make mistakes. The ultimate authority is ALWAYS the original PDF/XML document linked at the bottom of every summary in the app.

6. Safety & Final Provisions

Attacks on infrastructure, DDoS, and commercial scraping are strictly prohibited. Matters not regulated herein are decided by Polish law.