Chapter I — Foundational Principles
§ 01 Data Protection as an Engineering Standard
The QXONI Association treats data protection as an intrinsic engineering standard, not a regulatory formality. Every system, feature, and infrastructure component is designed and evaluated in accordance with the principle of Privacy by Design (Art. 25 GDPR / Art. 7 revFADP): privacy measures are integrated into technical architecture from inception by default — not appended post-deployment. This commitment is reviewed at every development phase without exception.
§ 02 Scope and Geographic Application
This policy applies to all digital services operated under the QXONI brand — including the primary platform, developer APIs, beta environments, mobile applications, subdomains, and partner integrations. Geographic location does not affect the applicable standard: every user worldwide is subject to the same level of protection.
- All current and future QXONI services and feature sets
- Subdomains and experimental beta environments
- API access granted to authorised third-party developers
- Mobile applications within the QXONI ecosystem
- Offline functionality and synchronised local caches
- Partner integrations operating on QXONI infrastructure
§ 03 Responsibility and Accountability
Data processing responsibility rests exclusively with the QXONI Association Board and its authorised Core Development Team. The association does not engage external data brokers in any capacity. Only developers with verified identities and documented access authorisation may interact with production infrastructure. All access events are logged and subject to internal audit at any time.
§ 04 Data Minimisation
Data minimisation is a foundational architectural constraint, not an aspirational guideline. No data field is collected without a direct, documented technical purpose tied to an active feature or session. Upon expiry of that purpose, records are automatically purged through scheduled deletion routines. Speculative data collection is prohibited by internal policy and technical architecture alike.
§ 05 IP Addresses and Network-Level Data
IP addresses are processed solely to enable communication and to detect and mitigate DDoS and brute-force attacks. This data is never linked to user profiles and is never used for advertising, geographic profiling, or behavioural analysis. Following a mandatory short-term security retention window, all IP logs are anonymised or permanently deleted pursuant to automated scheduled routines.
§ 06 Transport Encryption — QXONI Shield
🔒 Security ProtocolAll connections to QXONI services are secured using TLS 1.3 (minimum 256-bit encryption), referred to internally as the QXONI Shield architecture. Deprecated protocol versions (TLS 1.0, TLS 1.1, SSL 3.0) are explicitly rejected at the server layer. HTTP Strict Transport Security (HSTS) headers are enforced on all endpoints. Server-side firewalls respond to anomalous access patterns in real time.
§ 07 AI Services — Data Flow and Processing
🤖 AI ServicesQXONI deploys AI models for specific platform features. User inputs are transmitted in encrypted form to QXONI servers, which route requests to the appropriate model infrastructure. Where third-party model infrastructure is required, calls are transmitted under executed Data Processing Agreements (DPAs). No user data is retained by AI providers for model training purposes without a separate, explicit opt-in mechanism.
ℹ️
Third-party AI model calls, where applicable, are transmitted end-to-end encrypted and are governed by executed DPA agreements in accordance with Art. 28 GDPR.
§ 08 Advertising-Free Environment
QXONI does not deploy advertising cookies, tracking pixels, third-party analytics beacons, or any form of behavioural targeting technology. No marketing-related data is collected or transmitted to advertising networks. The association's operational funding is derived from subscriptions, grants, and community contributions — not from the monetisation of user attention or behavioural data.
§ 09 Local Storage — Device-Side Preference Data
User interface preferences — including display theme, layout configuration, and accessibility settings — are stored in browser Local Storage on the user's device. This data is never transmitted to QXONI servers without an explicit user-initiated action. It may be removed at any time by clearing site data within the browser or through the Settings panel within the QXONI platform.
§ 10 Account Credentials and Password Security
Passwords are stored exclusively in one-way hashed form using bcrypt with unique per-user salt values. No member of the QXONI team — at any level of access — can retrieve a password in plain text. Password reset flows use single-use, time-limited cryptographic tokens transmitted over encrypted channels. Account deletion, including all associated data, is available to the user at any time through Account Settings and is irreversible.
Chapter II — Job Centre
§ 11 Integrity of the QXONI Job Centre
The QXONI Job Centre operates under dedicated data security controls, maintained in an isolated environment segregated from the primary platform infrastructure. Application documents are processed under strict access restrictions. Note: QXONI Jobs is presently available exclusively within the canton of Appenzell Ausserrhoden, Switzerland. Geographic expansion will be communicated through updated policy documentation.
§ 12 Applicant Data Collection
The association collects only data strictly necessary for candidate evaluation: full name, contact details (email address and telephone number), employment history, technical competencies, and prior project references. All submission occurs through encrypted forms. Uploading a curriculum vitae or portfolio material does not constitute consent for any use beyond the active recruitment review process.
§ 13 Retention Periods for Applicant Records
Applicant records are retained for a standard period of six months from the date of last activity. Upon expiry, data is deleted automatically and irreversibly without manual intervention. Extension of this period requires documented explicit consent from the applicant.
| Phase | Retention Period | Action on Expiry |
|---|---|---|
| Active Application | 6 months | Automatic irreversible deletion |
| Talent Pool (opt-in only) | 12 months | Requires renewed explicit consent |
| Following Withdrawal Request | 0 days | Immediate, irreversible deletion |
| Following Hiring Decision | 30 days | Archival period, then deletion |
§ 14 Right to Supplement or Replace Application Materials
Submitted application documents may be supplemented, replaced, or updated at any time during the active application period. A written request directed to qxoniint@gmail.com is sufficient to initiate any modification to the applicant record on file.
§ 15 Right of Withdrawal
✓ GDPR Art. 17Applications may be withdrawn at any time and without obligation to provide reasons. Upon receipt of a withdrawal request, all submitted documents, associated records, and related metadata are irreversibly removed from all active systems within 48 hours. This process is technically final — no restoration from backup systems will be performed for withdrawn applications.
§ 16 Optional Talent Pool Participation
With separate, documented written consent, applicant data may be retained in the QXONI Talent Pool for a period not exceeding twelve months. This authorises the association to contact the applicant proactively for suitable future vacancies. Talent Pool participation is entirely voluntary, may be revoked by written request at any time, and carries no obligation of any kind on either party.
§ 17 Access Controls for Applicant Records
Access to applicant data is governed strictly by the need-to-know principle. Read access is limited to personnel directly and actively involved in the selection process for a specific vacancy. Each access event is recorded in an immutable internal audit log. Unauthorised access attempts trigger automated security alerts and are subject to disciplinary review.
§ 18 Communication During the Application Process
All application-related correspondence is conducted via authenticated, encrypted email channels. The email address provided by the applicant is used exclusively for status updates, interview scheduling, and clarification requests specific to the active application. Applicants will never be added to general mailing lists, newsletters, or marketing communications without a separate explicit opt-in.
§ 19 Work Samples, References, and Intellectual Property
All submitted portfolio materials, work samples, and creative content remain the exclusive intellectual property of the applicant. QXONI asserts no ownership rights over submitted materials. Reference verification and credential checks are conducted only following documented explicit written consent. Following conclusion of the application process, all submitted files are handled under the standard deletion schedule defined in § 13.
§ 20 Application Process Feedback Data
Feedback collected regarding the application experience — including usability assessments and process satisfaction data — is maintained in a system entirely separate from the application record. This data is used exclusively for technical and UX improvement of the Job Centre. It is technically isolated from hiring processes and cannot influence recruitment decisions under any circumstances.
Chapter III — Community
§ 21 Community Participation
👥 CommunityWhen publishing content on the QXONI platform, a timestamp and anonymised account reference are stored alongside the content. The user's chosen display name is visible to registered members. Underlying account data — including legal name, email address, and contact information — remains strictly protected and is not accessible to other platform users.
§ 22 Content Moderation and Platform Integrity
QXONI reserves the right to moderate community content for spam, hate speech, illegal material, and technical abuse. All moderation decisions affecting published content are logged and subject to a formal appeals process. Users are notified of moderation actions taken on their content within 48 hours.
§ 23 Profile Information Visibility
Display names, avatars, and brief biographical descriptions are visible to registered members by default. Users have granular control over which profile elements are publicly visible, restricted to logged-in members, or fully private. Visibility settings are configurable at any time through Account Settings → Privacy.
⚠️
Content shared publicly may be indexed by external search engines. Users should review their privacy settings periodically and disclose only information they are comfortable with being publicly discoverable.
§ 24 Reactions, Likes, and Engagement Signals
Interaction events such as reactions and likes are recorded to compute accurate aggregate counts. The association between a user account and a specific reaction is retained solely to enable withdrawal of that reaction. Upon removal, the corresponding record is immediately updated or deleted from the system.
§ 25 Notification Preferences
QXONI operates an internal notification system for platform-related events including replies, mentions, and content updates for followed topics. Each notification category — including type, frequency, and delivery channel — is independently configurable through the Settings panel. Unsolicited promotional notifications are not sent.
§ 26 Technical Error Logging
Technical error logs capture browser family, operating system category, triggering function reference, and timestamp. These records contain no data that would permit identification of a specific individual. All error logs are automatically deleted within seven days of documented resolution. No user-identifying information is processed during error logging.
§ 27 Private Messaging and Encryption
🔒 E2E RoadmapIn the current beta phase, private messages are stored in encrypted form on QXONI servers. The association does not unilaterally access private communications; the sole exceptions are legally binding court orders from competent judicial authorities, or credible imminent threats to physical safety requiring disclosure. Full client-side end-to-end encryption for private messaging is scheduled for Q3 2026.
§ 28 Protection Against Automated Scraping
QXONI operates multiple technical layers to detect and prevent automated data harvesting, including rate limiting, CAPTCHA validation, and IP reputation scoring. Abnormal access patterns are monitored continuously and blocked in real time. Systematic scraping of user data without explicit written authorisation constitutes a violation of these Terms and applicable law.
§ 29 Metadata Handling in Media Uploads
QXONI automatically processes uploaded image and file metadata — including EXIF data containing GPS coordinates, device model identifiers, and creation timestamps — with the intent to strip unnecessary fields prior to storage or display. Users are advised to verify files independently before uploading sensitive content. All intellectual property rights over uploaded content remain with the originating creator.
§ 30 Archival of Community Content
Community contributions are archived to preserve platform continuity. Upon account deletion, all personally identifying data is anonymised — display names are replaced with "Former Member" across all historical content. Individual posts may be deleted by the user prior to account closure to remove them entirely from the archive.
Chapter IV — Data Subject Rights (GDPR)
§ 31 Right of Access
✓ GDPR Art. 15Every user has the right to receive comprehensive information about which personal data is stored, for what purpose, for what duration, and to whom it has been disclosed. Upon written request, a complete data summary is provided in clear, accessible language within the statutory timeframe.
§ 32 Right to Rectification
✓ GDPR Art. 16Inaccurate, incomplete, or outdated personal data may be corrected upon request. The majority of profile and preference data can be modified directly through Account Settings. For backend data not accessible through the platform interface, rectification requests should be directed to the privacy contact listed in § 95.
§ 33 Right to Erasure
✓ GDPR Art. 17Users may request complete and permanent deletion of all data associated with their account at any time. The erasure process removes all identifying attributes, anonymises community content attributions, and purges all backend records. Following completion, technical reconstruction is not possible. Erasure requests are fulfilled within 30 days, typically within a substantially shorter period.
§ 34 Right to Restriction of Processing
✓ GDPR Art. 18Under defined circumstances — including where the accuracy of data is disputed or where an objection to processing has been submitted — the user may request restriction rather than erasure. During the restriction period, the relevant data is secured in a quarantine state and excluded from all active processing operations. Restriction remains in effect until the underlying matter is resolved.
§ 35 Right to Data Portability
✓ GDPR Art. 20Users are entitled to receive all data they have actively provided to QXONI in a structured, commonly used, machine-readable format — specifically JSON and CSV. This encompasses profile data, community content, configuration settings, and application history. Export archives are delivered within seven business days via a secure, time-limited, authenticated download link.
§ 36 Right to Object
✓ GDPR Art. 21Users have the right to object to data processing at any time, particularly where processing is based on legitimate interest grounds. Upon receipt of a valid objection, all processing is suspended immediately unless QXONI can demonstrate compelling legitimate grounds overriding the data subject's interests, rights, and freedoms, or where processing is necessary for the establishment or defence of legal claims.
§ 37 Rights Regarding Automated Decision-Making
✓ GDPR Art. 22QXONI does not subject any user to decisions based solely on automated processing that produce legal or similarly significant effects. Content recommendation algorithms serve relevance purposes only and carry no contractual or legal consequence. All account-affecting decisions generated by automated systems are subject to mandatory human review prior to execution.
§ 38 Right to Lodge a Supervisory Authority Complaint
Users who believe their data protection rights have been infringed have the unconditional right to lodge a complaint with the competent supervisory authority in their country of residence. QXONI cooperates fully and proactively with all data protection authorities.
📧
Direct privacy contact: wernerfrehner22@gmail.com — Substantive response guaranteed within 3 business days.
§ 39 Transparency in Rights Communication
QXONI communicates data subject rights in plain, accessible language — without requiring legal expertise to understand. All rights requests receive an acknowledgment within 72 hours and are fully resolved within the statutory 30-day period prescribed by Art. 12 GDPR and Art. 25 revFADP, generally well before that deadline.
§ 40 Exercise of Rights at No Cost
The exercise of any data protection right with QXONI is free of charge without exception. No fees apply to information requests, erasure requests, portability exports, or rectification requests. Only requests that are manifestly unfounded or excessively repetitive may incur an administrative charge in accordance with Art. 12(5) GDPR.
Chapter V — Security Architecture
§ 41 TLS 1.3 and Encryption Standards
🔒 SecurityAll QXONI connections are secured by TLS 1.3, the current industry standard for transport-layer encryption. Legacy protocol versions are explicitly disabled. Man-in-the-middle attack prevention is enforced through HSTS and certificate pinning where supported. Data stored at rest on QXONI infrastructure is encrypted using AES-256.
§ 42 Infrastructure Partners and Server Locations
Primary infrastructure is distributed across EU and US regions through certified cloud providers. All partners hold current ISO 27001 and SOC 2 Type II certifications.
| Region | Provider | Primary Use | Certification |
|---|---|---|---|
| European Union | Google Cloud EU | Primary data processing | ISO 27001, SOC 2 |
| United States | PythonAnywhere | Web content delivery | SOC 2 Type II |
| Switzerland | QXONI Association | Association registry | revFADP compliant |
§ 43 International Data Transfers
All transfers of personal data outside the European Economic Area are conducted under EU Standard Contractual Clauses (SCCs) and, where applicable, the EU-US Data Privacy Framework. All international partners are contractually bound and subject to periodic compliance verification. Swiss-resident users benefit additionally from the protections afforded by the revFADP.
§ 44 Security Reviews and Vulnerability Management
QXONI conducts regular internal security reviews and architecture assessments to proactively identify and remediate vulnerabilities. Critical security defects are triaged and addressed within 48 hours of verified discovery. All team members are required to report suspected vulnerabilities through designated internal disclosure channels immediately upon identification.
§ 45 Incident Response and Breach Notification
In the event of a confirmed personal data breach posing risk to user rights and freedoms, affected users and competent supervisory authorities are notified within the mandatory 72-hour window prescribed by Art. 33 GDPR. Breach notifications are delivered to all confirmed affected email addresses. QXONI maintains a documented incident response plan subject to annual review.
Chapter VI — Extended Privacy Commitments
§ 46 Analytics and Aggregate Statistics
QXONI collects aggregated, fully anonymised usage statistics to support platform quality improvements and technical performance monitoring. This statistical data is processed in a form that cannot be attributed to any individual user. Aggregate metrics inform engineering decisions only. Individual behavioural profiles are not created.
§ 47 Third-Party Data Sharing Policy
Personal data is not shared, sold, leased, or transferred to advertisers, data brokers, market research organisations, or commercial third parties. Disclosure to third parties occurs only under two strictly defined conditions: (1) pursuant to a legally binding obligation imposed by a competent authority, or (2) subject to explicit, specific, informed consent provided by the data subject.
§ 48 Special Categories of Personal Data
QXONI does not intentionally collect or process special categories of personal data as defined by Art. 9 GDPR — including health data, religious or philosophical beliefs, political opinions, racial or ethnic origin, biometric identifiers, or data concerning sexual orientation. Information of this nature voluntarily disclosed by users within community spaces is treated with the highest level of confidentiality and access restriction.
§ 49 Child and Youth Data Protection
Access to QXONI platform services is restricted to persons aged 13 years and older. A valid date of birth is required and verified during registration. Accounts found to be held by persons below the minimum age are immediately suspended and all associated data is deleted within 24 hours. Users under 16 within EU jurisdictions require verifiable parental consent in accordance with Art. 8 GDPR.
§ 50 Anonymisation and Pseudonymisation
QXONI applies pseudonymisation and technical anonymisation throughout its data processing pipelines to reduce re-identification risk. Pseudonymised records enable system diagnostics without exposing user identity. True anonymisation — where re-identification is technically infeasible — is applied before any data is incorporated into aggregate reporting or statistical analysis outputs.
Chapter VII — AI & Automation Ethics
§ 51 AI-Assisted Content Moderation
🤖 AI ServicesQXONI may deploy automated AI filters to review uploaded files and posted content for material that is illegal, harmful, or in violation of platform policies. This review is conducted server-side under privacy-preserving conditions. Content flagged by automated systems is reviewed by a qualified human moderator before any action is taken. AI systems alone do not constitute sufficient basis for account termination.
§ 52 AI Model Training and User Data
🤖 AI ServicesQXONI does not use personal user data, private messages, or community content for AI model training without a clear, specific, standalone opt-in consent — separate from and independent of general Terms acceptance. Fully anonymised, aggregated platform data may be used for technical optimisation of recommendation relevance and system performance. AI training participation is never a condition of platform access.
§ 53 Transparency in AI-Generated Content
All AI-generated content published on QXONI — including automated summaries, generated responses, and AI-assisted articles — is clearly and prominently labelled as AI-generated. Users must be able to unambiguously identify whether they are interacting with a human contributor or an automated system at all times. Deceptive AI personas are prohibited without exception.
§ 54 Prohibition of AI Deepfake Content
⛔ ProhibitedThe creation, storage, distribution, or facilitation of AI-generated deepfakes that sexually exploit, defame, or impersonate any individual results in immediate permanent account suspension. All such incidents are reported to competent law enforcement authorities without delay. QXONI cooperates fully and unconditionally with all relevant investigations.
§ 55 Spam and Coordinated Inauthentic Behaviour Detection
Machine learning models trained to detect spam, phishing attempts, and coordinated inauthentic behaviour operate server-side within QXONI's infrastructure. Accounts suspected of automated or coordinated abuse are flagged for human review within 24 hours of detection. Detection models do not process user content in identifying form.
§ 56 Feed Personalisation
Content recommendation algorithms analyse interaction history to deliver contextually relevant content. Personalisation is offered as a functional feature enhancement and operates transparently. Full personalisation may be disabled at any time via Settings → Content Preferences, reverting the feed to reverse-chronological ordering.
§ 57 Mandatory Human Review of Automated Decisions
Every automated determination carrying material consequences for a user — including account suspension, content removal, or access restriction — requires human moderator review before execution. Sanctions issued without human authorisation do not occur on QXONI. Affected users are notified and informed of their right to appeal within 14 calendar days of the action.
§ 58 Ethics Review for AI Features
A structured ethics review is conducted before launching any AI-powered feature. The review addresses potential discrimination risks, data misuse scenarios, privacy impact on vulnerable user groups, and alignment with Privacy by Design principles. Features that do not satisfy the ethics review are redesigned or discontinued prior to release.
§ 59 Disclosure of AI Systems on Request
QXONI commits to disclosing, upon reasonable written request, which AI systems and algorithmic processes are applied to specific platform features. This transparency obligation enables users to make informed decisions about their engagement with AI-assisted functionality. Disclosure requests are processed within 10 business days at no charge.
§ 60 Preference for Open-Source AI Frameworks
Where technically and strategically appropriate, QXONI utilises open-source AI frameworks whose architecture and training methodology are subject to public verification. This commitment supports independent auditability, reduces dependence on proprietary opaque systems, and promotes transparency of algorithmic processing.
Chapter VIII — Child Safety & CSAM
§ 61 Zero Tolerance Policy — CSAM
⚖ Legal ObligationThe upload, storage, distribution, or facilitation of content depicting the sexual exploitation or abuse of minors (CSAM) results in immediate permanent account suspension without prior notice. Every confirmed incident is reported without exception to the National Center for Missing & Exploited Children (NCMEC), Interpol, and all relevant national law enforcement agencies. No discretion or exceptions apply.
§ 62 Age Verification at Registration
A valid date of birth is required and subject to verification during account registration. Users not meeting the minimum age threshold of 13 years are denied access categorically. Accounts where age data is subsequently determined to have been falsified are suspended immediately, and all associated data is deleted within 24 hours.
§ 63 Community Reporting System
Every registered user has access to a one-click reporting mechanism for flagging potentially violating content to the QXONI moderation team. Reports are triaged within 24 hours; CSAM-related and child safety reports receive immediate automated escalation. Good-faith reporting is protected in all circumstances. Malicious or knowingly false reports are subject to account review.
§ 64 Hash-Based CSAM Detection
QXONI employs industry-standard hash-matching technologies to identify and block known CSAM material at the point of upload, before any file is committed to storage. Hash databases are maintained in continuous synchronisation with international child protection organisations. No known CSAM material can be successfully stored on QXONI infrastructure.
§ 65 Moderation Team Support and Training
Moderation personnel who may encounter potentially illegal or psychologically harmful content in the course of their duties have access to mandatory psychological support resources, regular clinical debriefing sessions, and ongoing training in detection standards, mandatory reporting obligations, and trauma-informed review protocols. Team member wellbeing is a documented organisational responsibility.
Chapter IX — Legal & Regulatory Compliance
§ 66 Governing Law and Jurisdiction
⚖ LegalThis Privacy Policy is governed by the law of Switzerland, specifically the revised Federal Act on Data Protection (revFADP) as the primary regulatory framework. For users resident in EU member states, the GDPR applies supplementarily where mandated. Exclusive jurisdiction for all disputes arising from this policy is vested in the courts of Appenzell Ausserrhoden, Switzerland.
§ 67 Swiss Data Protection Act (revFADP) Compliance
As an organisation constituted and headquartered in Switzerland, QXONI is fully subject to the revised Federal Act on Data Protection (revFADP), in force since 1 September 2023. Our data practices comply with or exceed revFADP requirements in the areas of data subject rights response times, breach notification timelines, and transparency obligations.
§ 68 Intellectual Property
All content, interface designs, logos, codebases, and documentation created by or for QXONI are the exclusive intellectual property of the QXONI Association. User-generated content remains the sole property of its creator. QXONI holds only a limited, non-exclusive, revocable licence to display content on the platform, which expires automatically upon content deletion.
§ 69 Disclaimer for External Links
QXONI accepts no liability for the content, privacy practices, or security of externally linked websites. The inclusion of an external link does not constitute an endorsement. Operators of external sites bear full responsibility for their own content and data processing. Users are advised to review the privacy policies of any external services they access.
§ 70 Policy Amendments
QXONI reserves the right to update this policy to reflect changes in operational practice, platform features, or applicable law. Material changes — those substantively affecting user rights or data processing practices — will be communicated by email at least 14 days prior to taking effect, accompanied by a platform-wide notice. Minor editorial clarifications may be published without advance notice.
Chapter X — Platform Features & User Controls
§ 71 Two-Factor Authentication
🔒 SecurityQXONI strongly recommends enabling two-factor authentication for all accounts. Supported methods include TOTP authenticator applications compliant with RFC 6238 (e.g. Authy, Google Authenticator). Hardware security key support (FIDO2/WebAuthn) is in development and planned for 2026. Recovery codes generated at 2FA enrolment must be stored securely by the user.
§ 72 Session Management and Token Lifecycle
Authentication tokens are cryptographically signed and carry defined expiry periods. Sessions inactive for more than 30 days are automatically invalidated and require re-authentication. All active sessions across all registered devices may be reviewed through Settings → Security → Active Sessions, with individual or full revocation available at any time.
§ 73 Developer API Access Keys
Third-party developers receive API keys cryptographically linked to their verified developer identity. Misuse — including unauthorised data access, rate limit circumvention, or systematic scraping — results in immediate key revocation and account suspension. Keys may be rotated, scoped, and revoked at any time through the Developer Dashboard at my.qxoni.com.
§ 74 Offline Mode and Local Caching
Select QXONI features support offline operation through encrypted local device caching. Cached data is cryptographically bound to the user's device and inaccessible to third-party applications. All locally cached data is validated and synchronised against the server upon the next authenticated connection.
§ 75 Full Data Export
A self-service data export function is accessible through Account Settings → Privacy → Export Your Data. Upon request, a complete encrypted archive of all profile data, community content, settings, and activity history in machine-readable JSON and CSV formats is prepared and delivered within 7 business days via an authenticated, time-limited download link.
§ 76 Push Notifications and Device Tokens
Enabling push notifications stores an anonymised device token — generated by the operating system's notification service, containing no personally identifying information — to facilitate delivery. This token is not linked to the user profile in a manner enabling cross-device tracking. Push notification permissions may be revoked at any time through device or application settings.
§ 77 Search History and Autocomplete
Search queries are temporarily retained to support autocomplete functionality and relevance optimisation. Personal search history is purged automatically after 90 days. Manual clearance is available at any time through Settings → Privacy → Clear Search History. Search data is not used for advertising targeting or disclosed to third parties.
§ 78 Accessibility Settings
Accessibility preferences — including high-contrast mode, reduced motion settings, font size adjustments, and keyboard navigation modes — are stored in the user account profile to ensure consistent rendering across all devices and sessions. This data is used exclusively for interface personalisation in accordance with the user's accessibility requirements.
§ 79 Language and Regional Settings
Display language preference and timezone configuration are stored in the account profile to ensure consistent localised presentation. This data is used exclusively for interface delivery and content scheduling. Language preference is not used to infer geographic location or nationality for any other purpose.
§ 80 Third-Party OAuth Sign-In
Authentication via OAuth providers (e.g. Google, GitHub) transmits only the minimum profile data required for account creation or linking — typically an email address and display name. OAuth access tokens are not stored permanently; only an anonymised provider-specific identifier is retained for account linkage. OAuth access may be revoked through Account Settings at any time.
Chapter XI — Roadmap & Commitments
§ 81 Privacy Technology Roadmap 2026–2027
QXONI's planned technical milestones represent documented engineering commitments, not marketing aspirations: full client-side end-to-end encryption for private messaging (Q3 2026); zero-knowledge proof infrastructure for account verification without identity disclosure (Q4 2026); post-quantum cryptography preparation for key infrastructure (Q1 2027); user-controlled encryption key management (Q2 2027).
§ 82 Privacy Inquiry Channels
Dedicated, monitored channels are maintained for all privacy-related inquiries and rights requests. Submissions receive an automated acknowledgment immediately and a substantive human response within 3 business days. All requests are fully resolved within 30 calendar days in accordance with Art. 12(3) GDPR and Art. 25 revFADP.
📧
Privacy: wernerfrehner22@gmail.com | General: qxoniint@gmail.com
§ 83 Responsible Disclosure Programme
QXONI plans to establish a formal Responsible Disclosure Programme through which security researchers may report discovered vulnerabilities through a defined, protected process. Researchers who report valid vulnerabilities in good faith will not be subject to legal action and will receive public acknowledgment. Programme details will be published at security.qxoni.com upon launch.
§ 84 Decentralised Architecture Research
QXONI is actively researching decentralised data storage architectures that would enable users to self-custody their own data while retaining full access to platform services. This model — where the platform functions as a protocol rather than a data custodian — represents a medium-term strategic priority. Internal prototypes are currently in development.
§ 85 Sustainable Infrastructure Selection
QXONI applies ecological responsibility criteria alongside security and compliance standards when selecting infrastructure partners. Preference is given to data centre operators that are certified to run on renewable energy sources. Environmental impact assessments form part of the standard vendor evaluation process.
§ 86 Engagement with the Privacy Research Community
QXONI participates in and contributes to open-source privacy and security communities. Anonymised platform insights and best practices are shared through the public developer blog. Team members are encouraged to contribute to open-source privacy tooling and engage with academic privacy research as part of their professional development within the association.
§ 87 Privacy Training Requirements
All members of the QXONI Core Development Team complete mandatory privacy and security training at onboarding and undertake refresher training at minimum annually. Privacy impact assessments are a required deliverable at each feature development phase. Privacy is treated as a shared engineering accountability, not delegated to a single compliance function.
§ 88 Deceased User Accounts
In the verified event of a user's death, designated trusted persons or verified next-of-kin may request account closure, data export, or conversion to a memorial profile that preserves community contributions while removing personal identifying information. Such requests are handled with sensitivity, procedural rigour, and respect for the digital legacy of the individual.
§ 89 Account Transfers and Organisational Accounts
Personal individual accounts are non-transferable to any third party. Organisational accounts may be transferred to a designated new administrator through a formal process requiring identity verification of the incoming representative. All data rights and obligations are preserved throughout the transfer in full.
§ 90 Privacy in Beta Programmes
Users opting into beta or experimental programmes receive feature-specific privacy notices detailing any additional data processing associated with the beta functionality. Participation is voluntary, entails no obligations beyond the standard Terms of Service, and may be discontinued at any time without impact on the primary account or standard platform access.
Chapter XII — Definitions & Glossary
§ 91 Definition: Personal Data
For the purposes of this policy, "personal data" means any information relating to an identified or identifiable natural person, including: full name, email address, IP address (under applicable conditions), account username, profile information, usage data, device identifiers, and any other data that can directly or indirectly identify an individual.
§ 92 Definition: Processing
"Processing" designates any operation or set of operations performed on personal data — encompassing collection, recording, organisation, structuring, storage, adaptation, retrieval, use, disclosure by transmission, dissemination, combination, restriction, erasure, or destruction. Each form of processing is subject to the principles set out in this document.
§ 93 Legal Bases for Processing
QXONI processes personal data only on documented legal grounds: (1) Consent — freely given, specific, informed, and withdrawable at any time; (2) Contract Performance — necessary for service provision; (3) Legitimate Interest — for security and fraud prevention, subject to balancing; (4) Legal Obligation — where required by statute or judicial order.
§ 94 Glossary of Technical Terms
- TLS 1.3: Transport Layer Security — current standard protocol for encrypted network data transmission
- Bcrypt: One-way, irreversible cryptographic hashing function for secure password storage with adaptive cost
- Salt: Unique random value appended per-password before hashing to prevent precomputed table attacks
- E2E Encryption: End-to-end encryption — decryptable only by sender and intended recipient
- OAuth 2.0: Open standard for delegated authentication and authorisation
- EXIF: Exchangeable Image File Format — metadata embedded in image files including GPS and device data
- HSTS: HTTP Strict Transport Security — browser directive enforcing HTTPS-only connections
- TOTP: Time-based One-Time Password — RFC 6238 standard for authenticator app codes
- DPA: Data Processing Agreement — mandatory contract governing data shared with processors
- revFADP: Revised Swiss Federal Act on Data Protection, in force 1 September 2023
§ 95 Privacy Contact Information
For all data protection inquiries, rights requests, or regulatory matters:
📬
Privacy enquiries: wernerfrehner22@gmail.com
General contact: qxoniint@gmail.com
Response commitment: 3 business days
Supported languages: German, English
Statutory resolution period: 30 calendar days
General contact: qxoniint@gmail.com
Response commitment: 3 business days
Supported languages: German, English
Statutory resolution period: 30 calendar days
§ 96 Severability
Should any provision of this policy be determined invalid, unenforceable, or contrary to applicable law, such determination shall not affect the validity or enforceability of the remaining provisions. The invalid provision shall be replaced by interpretation with a valid clause that most closely reflects the original protective intent.
§ 97 Authoritative Language
This policy is drafted in English, which constitutes the authoritative and legally binding version. Translations into other languages are provided for accessibility purposes only. In the event of any discrepancy or conflict between a translation and the English original, the English text shall prevail in all circumstances.
§ 98 Relationship to Terms of Service
This Privacy Policy constitutes an integral and inseparable component of the QXONI Terms of Service. Both documents govern the contractual relationship between QXONI and its users and must be read in conjunction. In the event of conflict between provisions of the Terms and this policy, the provision affording the greater degree of privacy protection to the user shall prevail.
§ 99 Policy Version History
| Version | Date | Sections | Key Changes |
|---|---|---|---|
| v1.0 | 01/05/2025 | 45 | Initial publication |
| v1.2 | 02/04/2026 | 50 | Comprehensive revision; expanded rights section |
| v2.0 | 15/04/2026 | 100 | Major expansion to 100 sections; GDPR chapters |
| v2.1 | 19/04/2026 | 110 | Extended to 110 sections; design refresh |
| v2.2 | 14/05/2026 | 110 | Data protection improvements; AI chapter expanded |
| v2.3 | 20/05/2026 | 110 | Transition to QXONI Association structure |
| v3.0 | 01/06/2026 | 110 | Full rewrite; mobile-first; QXONI font applied |
§ 100 Our Commitment to You
Privacy at QXONI is a binding organisational commitment, not a document filed to satisfy regulatory requirements. Every technical decision is evaluated against the question: Does this appropriately protect the individuals who have entrusted us with their data? Where the answer is uncertain, we default to the more protective course of action.
✅
This policy comprises 110 sections across 13 chapters. Last updated: 1 June 2026. © QXONI Association, Bühler (AR), Appenzell Ausserrhoden, Switzerland.
Chapter XIII — Supplementary Provisions
§ 101 Email Verification Data
Verification tokens generated for account registration, email address changes, or feature confirmation are automatically removed from active systems upon successful verification. Unconfirmed tokens are expired and permanently deleted after a maximum retention period of 30 days.
ℹ️
Verification portal: check.qxoni.com — All confirmation data purged after 30 days. Contact: qxoniint@gmail.com
§ 102 Newsletter and Mailing List Data
Newsletter subscriptions require explicit affirmative opt-in consent. Every issue contains a functional one-click unsubscribe link. Following an unsubscribe request, the relevant email address is removed from all mailing lists within 48 hours. Mailing list data is not disclosed to commercial third parties for any purpose.
§ 103 Survey and Feedback Data
Survey responses are analysed in aggregated, anonymised form for product improvement purposes only. Individual responses are not linked to user accounts absent separate explicit consent. Raw identifiable survey data is permanently deleted within 90 days of collection following anonymisation and analysis.
§ 104 Profile Verification
🔒 VerificationOptional profile verification is available to authenticate notable contributors and organisational accounts. Supporting documentation reviewed during the verification process is not retained following the review. The verification outcome is stored solely as a boolean status attribute on the account record — not the underlying evidence.
§ 105 Dormant Account Policy
Accounts with no recorded login activity for more than 24 consecutive months receive advance email notification of impending dormancy. If no login or response is recorded within 60 days of notification, the account enters a read-only dormant state. Following a further 90-day dormancy period, all personal data is automatically anonymised. Data export is available at any time prior to this threshold.
§ 106 Online Events and Webinar Data
Registration data for QXONI-hosted events — limited to name and email — is processed exclusively for event administration and post-event communication. Session recordings are made only where participants are informed in advance and have provided documented consent. All event-specific data is deleted within 60 days of the event's conclusion.
§ 107 Whistleblower Protection
✓ Protected RightFormal protections apply to individuals who report, in good faith, potential violations of privacy obligations, ethical standards, or legal requirements by QXONI personnel or systems. All reports are handled with strict confidentiality. No retaliatory action — including account suspension, access restriction, or adverse treatment — will be taken against whistleblowers. Anonymous reports may be submitted via encrypted channels at report.qxoni.com.
§ 108 Commercial Partnerships and Data Processing
Before engaging any partner who will process user data on behalf of QXONI, a fully executed Data Processing Agreement (DPA) in accordance with Art. 28 GDPR is required. Partner organisations must demonstrably meet the same privacy and security standards upheld by the association. Partner compliance is subject to periodic review and audit.
§ 109 Competitions and Prize Events
Personal data collected for participation in QXONI-hosted competitions or prize draws is used exclusively for event administration, eligibility verification, and winner notification. Participant data is permanently deleted within 90 days of prize distribution, unless extended retention has been separately consented to. Participant data is not shared with sponsors or partners without explicit, specific consent.
§ 110 Final Declaration
QXONI treats these 110 provisions as a living commitment, subject to continuous review and proactive strengthening. The singular objective of every revision is to better serve the legitimate privacy interests of the individuals who rely on this platform. The association thanks all users for their trust.
🏛️
© QXONI Association · Bühler (AR), Appenzell Ausserrhoden, Switzerland · v3.0 (01/06/2026) · All rights reserved.