Security and transparency

• ✓Login and logout
• ✓Creation and closure of votes
• ✓Submission and change of votes
• ✓Upload and modification of documents
• ✓Changes to roles and memberships
• ✓Publication of announcements
• ✓Export of data and protocols

• —Content of private messages (we only log the fact of sending)
• —Passwords in any form
• —Activity on other websites
• —Personal notes of members

IP address and browser identifier are recorded for key administrative actions (login, voting, changes) for security and traceability. This data is not public and serves exclusively for audit purposes.

Uploaded files (documents, attachments) are stored outside public access. Download is only possible via an authorized endpoint — the system verifies that the user is a member of the organization to which the document belongs. A direct URL to the file does not exist.

Timeline entries can be provided with a cryptographic hash (SHA-256). If the hash matches the content of the entry, the entry has not been changed after saving. This is a technical tool for transparency — it is not a legal certification or official verification.

• ·Legal validity of decisions depends on your organization's bylaws
• ·Exports and protocols are technical outputs for internal use
• ·Voting is traceable (non-anonymous) — serves transparency and traceability
• ·Control hashes verify the integrity of records, not their legal validity
• ·The system is a management tool, not a replacement for official registers or data boxes

• ·Export of personal data: members can download their data (GDPR Art. 20)
• ·Account deletion: on request — personal data is pseudonymized
• ·Data retention: inactive data is periodically cleaned
• ·Isolation of organizations: data from one organization is not visible to another

Platform operator: TimeDeals Pavelka, Berglistrasse 28a, 8180 Bülach, Švýcarsko (UID: CHE-393.597.780). Contact for data protection: privacy@sprav.cz