Privacy Policy

OpenPolice ("we", "us", "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our UK police accountability platform.

We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection legislation.

By using OpenPolice, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use our platform.

OpenPolice is the data controller responsible for your personal data. We determine the purposes and means of processing personal data collected through our platform.

Information You Provide

• Account Information: Username/alias, email address, and password when you register
• Report Submissions: Details you provide when submitting reports about police conduct
• Communications: Messages you send through our contact form or support channels
• Profile Data: Optional information you add to your profile

Information Collected Automatically

• Device Information: Browser type, operating system, and device identifiers
• Usage Data: Pages visited, time spent on pages, and navigation patterns
• IP Address: Your internet protocol address (may be anonymised)
• Cookies: Small data files stored on your device (see Cookies section)

Information from Third Parties

• Web3 Wallet Data: Public wallet address if you choose to login via MetaMask or WalletConnect
• Public Data Sources: We aggregate publicly available information about police forces, courts, and related institutions

We use your personal data for the following purposes:

• To provide, maintain, and improve our platform services
• To process and manage your account registration
• To handle and track reports you submit
• To communicate with you about your account or submissions
• To send you updates about cases you follow (with your consent)
• To analyse usage patterns and improve user experience
• To detect, prevent, and address technical issues or abuse
• To comply with legal obligations

Under UK GDPR, we process your personal data based on the following lawful bases:

We do not sell your personal data. We may share your information in the following circumstances:

• With Your Consent: When you explicitly agree to share information
• Service Providers: Third-party vendors who help us operate the platform (hosting, analytics, etc.) under strict data processing agreements
• Legal Requirements: When required by law, court order, or governmental authority
• Safety Concerns: To protect the safety of any person or to address fraud or security issues

When submitting reports, you can choose from the following privacy levels:

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy:

• Account Data: Retained while your account is active and for a reasonable period thereafter
• Report Data: Public reports are retained indefinitely for transparency purposes; anonymised data may be retained for statistical analysis
• Communication Records: Retained for up to 3 years for customer service and legal purposes
• Analytics Data: Aggregated analytics data may be retained indefinitely

You may request deletion of your account and associated data at any time, subject to legal retention requirements.

Under UK GDPR, you have the following rights regarding your personal data:

To exercise any of these rights, please contact us using our contact form. We will respond within one month of receiving your request.

If you are not satisfied with how we handle your request, you have the right to lodge a complaint with the Information Commissioner's Office (ICO).

We implement appropriate technical and organisational measures to protect your personal data:

• Encryption: Data is encrypted in transit using TLS/SSL and at rest where appropriate
• Access Controls: Strict access controls limit who can access personal data
• Secure Infrastructure: Our servers are hosted in secure data centres with appropriate physical security
• Regular Updates: We regularly update and patch our systems to address security vulnerabilities
• Password Protection: User passwords are securely hashed and never stored in plain text

While we strive to protect your personal data, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security but are committed to maintaining industry-standard protections.

We use cookies and similar technologies to enhance your experience:

• Essential Cookies: Required for the platform to function properly (authentication, security)
• Preference Cookies: Remember your settings and preferences
• Analytics Cookies: Help us understand how visitors use our platform

You can control cookies through your browser settings. Disabling certain cookies may affect platform functionality.

For more details, see our Cookie Policy.

OpenPolice is not intended for use by individuals under the age of 16. We do not knowingly collect personal data from children under 16.

If you believe we have inadvertently collected data from a child under 16, please contact us immediately so we can delete it.

We may update this Privacy Policy from time to time. When we make changes, we will:

• Update the "Last Updated" date at the top of this page
• Notify registered users of significant changes via email
• Post a notice on the platform for material changes

We encourage you to review this policy periodically to stay informed about how we protect your data.

If you have any questions about this Privacy Policy or our data practices, please contact us:

For complaints about our data handling, you may also contact the Information Commissioner's Office (ICO).