Privacy Policy

Humans manages membership for Nobodies Collective and processes personal data in accordance with GDPR and Spanish data protection law (LOPDGDD).

Last updated: February 2026

Data Controller

Nobodies Collective
A Spanish nonprofit association registered in Andalucia.
For data protection inquiries, contact our Data Protection Officer at: admin@nobodies.team

Data We Collect

We collect and process the following categories of personal data:

• Identity data: Name, email address (from Google authentication), display name/burner name
• Contact data: Phone number, city, country (optional)
• Profile data: Bio, team memberships, role assignments
• Technical data: IP address and user agent (for consent records)
• Application data: Membership applications and motivation statements
• Consent records: Records of your agreement to legal documents

Legal Basis for Processing

We process your data based on:

• Contract: Processing necessary for membership management
• Legitimate interest: Maintaining organizational records and communication
• Legal obligation: Compliance with Spanish nonprofit regulations
• Consent: For optional data you choose to provide

How We Use Your Data

• To manage your membership and team participation
• To communicate with you about organizational activities
• To maintain legal compliance records
• To facilitate connections between members (based on your visibility settings)

Data Retention

We retain your data according to the following policies:

• Active accounts: Data retained while your account is active
• Inactive accounts: Data retained for up to 7 years for legal compliance
• Consent records: Retained indefinitely as required for GDPR compliance
• Deleted accounts: Anonymized after 30-day grace period

Your Rights

Under GDPR, you have the following rights:

• Access: Request a copy of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data ("right to be forgotten")
• Portability: Receive your data in a machine-readable format
• Restriction: Request limitation of processing
• Objection: Object to certain types of processing

To exercise these rights, visit your Privacy & Data settings or contact us at admin@nobodies.team.

Cookies

This site uses only essential cookies required for:

• User authentication and session management
• Anti-forgery tokens for form security
• Cookie consent preference

We do not use analytics, advertising, or third-party tracking cookies.

Data Security

We implement appropriate technical and organizational measures to protect your data, including:

• Encryption in transit (HTTPS)
• Secure authentication via Google OAuth
• Access controls and audit logging
• Regular security reviews

Third-Party Services

We use the following third-party services:

• Google OAuth: For secure authentication (Google's Privacy Policy)
• Google Workspace: For team resource provisioning (shared drives, groups)

Changes to This Policy

We may update this privacy policy from time to time. We will notify active members of significant changes via email.

Contact & Complaints

For questions or concerns about this policy, contact our Data Protection Officer at admin@nobodies.team.

If you are not satisfied with our response, you have the right to lodge a complaint with the Spanish Data Protection Agency (AEPD) at www.aepd.es.