Definitions

1. Personal data is information about a person which is identifiable as being about them. It can be stored electronically or on paper and includes images and audio recordings as well as written information.
2. Data protection is about how we, as an organization, ensure we protect the rights and privacy of individuals, and comply with the law when collecting, storing, using, amending, sharing, destroying, or deleting personal data.

The Information We Collect and How it is Gathered and Used

We aim to only collect information that is relevant to the running of RnDAO and keep our members data secure. However, due to the nature of RnDAO as an R&D DAO, you should be aware that experimental technologies are in use. Before implementing any experimental technologies that collect, store or analyze data, we will make an announcement in the public announcement channel. Please refrain from sharing sensitive data in the community or do so aware of the risks.

Overall policy statement

1. RnDAO needs to keep personal data about its members, clients, and other stakeholders in order to carry out group activities.
2. We will collect, store, use, amend, share, destroy or delete personal data only in ways which protect people’s privacy and comply with the UK General Data Protection Regulation (GDPR).
3. We will only collect, store and use the minimum amount of data that we need for clear purposes, and will not collect, store or use data we do not need.
4. We will only collect, store and use data for:
   • purposes for which the individual has given explicit consent, or
   • purposes that are in our group’s legitimate interests, or
   • contracts with the individual whose data it is, or
   • to comply with legal obligations, or
   • to protect someone’s life, or
   • to perform public tasks.
5. We will provide individuals with details of the data we have about them when requested by the relevant individual.
6. We will delete data if requested by the relevant individual unless we need to keep it for legal reasons.
7. We will endeavor to keep personal data up-to-date and accurate.
8. We will store personal data securely.
9. We will endeavor not to have data breaches. In the event of a data breach, we will endeavor to rectify the breach by getting any lost or shared data back. We will evaluate our processes and understand how to avoid it happening again. Serious data breaches which may risk someone’s personal rights or freedoms will be reported to the Information Commissioner’s Office within 72 hours, and to the individual concerned.
10. To uphold this policy, we will maintain a set of data protection procedures for our members to follow.

Personal Information

This notice applies to all information collected or submitted on the RnDAO Discord server and other platforms used for RnDAO activities. RnDAO collects only the personal information voluntarily provided through its website, Discord server, Notion, Miro, Telegram groups, Airtable, and other platforms. This may include, but is not limited to, your name, email address, contact information, messages to other members in the shared channels, public wallet address, and any other details related to your background or interests that you choose to provide.

RnDAO uses the information you provide about yourself for various services and functionalities of RnDAO, such as facilitating coordination and incubation of research projects and entrepreneurial projects, additional uses are agreed upon through the community’s governance process. Specific examples include email newsletters, invitations to events, information alerts about RnDAO programs or activities, or analysis and reporting of your involvement and activities within the community (said activities might be provided as anonymized, aggregated benchmarking data for other communities or for research purposes).