1. Introduction

Welcome to nitro-ai.org, a platform operated by Nitro Association dedicated to hosting AI competitions. Protecting your privacy is important to us. This Privacy Policy explains how we collect, use, and safeguard your personal data, including data from minors, in compliance with the General Data Protection Regulation (GDPR) and other applicable European laws.

2. Personal Data We Collect

We collect the following categories of personal data:

• Account Information: Name, email address, username
• Competition Data: Submissions, scores, and participation details
• Parental Consent Data: If the user is a minor, we may collect parental/guardian consent information.
• Technical Data: Functional cookies and log files necessary for platform operation.

We do not collect sensitive personal data such as race, religion, or health information.

3. Legal Basis for Processing

We process personal data based on:

• Contractual Necessity: To provide access to competitions and related services.
• Legitimate Interest: To ensure platform security and improve user experience.
• Legal Obligation: Compliance with laws regarding minors' data protection.
• Consent: For minors, parental/guardian consent is required before registration.

4. Data Collection from Minors

If a user is considered a minor based on local laws, parental or guardian consent is required before collecting personal data. By creating an account the user confirms that he/she is either of legal age or has it's parent's consent for entering the website. Parents or guardians can request access to, modification, or deletion of their child’s data at any time by contacting us at [email protected].

5. Data Sharing and Transfers

We do not sell or share personal data with third parties for marketing. However, we may share data with:

• Service Providers: Hosting and security partners under strict confidentiality agreements.
• Legal Authorities: If required by law.

Data is stored within the European Economic Area (EEA). If a transfer outside the EEA is necessary, we ensure adequate protection through standard contractual clauses or equivalent measures.

6. Data Retention

We retain personal data for as long as necessary to fulfill the purposes outlined in this policy:

• Account Data: Retained while the account remains active.
• Competition Data: Retained for competition records and historical analysis.
• Parental Consent Records: Retained for legal compliance.

Users may request deletion of their data at any time, subject to legal and operational requirements.

7. User Rights

Under GDPR, users (or their guardians) have the right to:

• Access their data
• Rectify incorrect information
• Request deletion (right to be forgotten)
• Restrict processing
• Object to processing
• Data portability (receive a copy of their data)

To exercise these rights, contact us at [email protected]. We may require verification before fulfilling requests.

8. Security Measures

We implement appropriate technical and organizational measures to protect personal data, including:

• Encryption of sensitive data
• Secure server infrastructure
• Restricted access to authorized personnel only

However, no system is completely secure, and users should take precautions to protect their accounts.

9. Changes to this Policy

We may update this Privacy Policy periodically. Significant changes will be communicated through our website or via email. Continued use of the platform after updates constitutes acceptance of the revised policy.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, contact us at: [email protected].

Under the GDPR (General Data Protection Regulation) and the EU’s Children’s Data Protection Rules we are required to respond within one month to your request or let you know if additional time is required. For complaints regarding data protection, you may also contact your local data protection authority.