Privacy Policy

GDPR & PIPEDA Compliant

← Back to Dashboard

Legal Framework

This privacy policy complies with the General Data Protection Regulation (GDPR) for EU users and the Personal Information Protection and Electronic Documents Act (PIPEDA) for Canadian users. Last updated: September 30, 2025

1. Data Controller

Nuclear Message of the Day (Nuclear MOTD)
Operated by: Kernkraft Consulting Inc.
Contact: John H. Moore
Location: Canada
Email: privacy@nuclear-motd.com

For data protection inquiries, please use the contact information above.

2. Personal Data We Collect

Account Information

  • • Email address (required for account creation and communications)
  • • Username (for platform identification)
  • • Full name (optional, for personalization)
  • • Password (encrypted and hashed)

Professional Information

  • • Company/Organization name
  • • Department (for relevant content targeting)
  • • Country (for usage analytics)

Preferences & Settings

  • • Content topic selections (nuclear industry categories)
  • • Email delivery preferences (frequency, timing, timezone)
  • • Communication preferences

Technical Information

  • • Usage analytics (anonymized)
  • • Login timestamps and access logs
  • • Email delivery status

3. Legal Basis for Processing

Consent (GDPR Art. 6(1)(a))

Your explicit consent for nuclear safety communications and platform usage. You may withdraw consent at any time.

Legitimate Interest (GDPR Art. 6(1)(f))

Promoting nuclear safety awareness and industry best practices. Our legitimate interest is balanced against your privacy rights.

Contract Performance (GDPR Art. 6(1)(b))

Providing the nuclear safety communication service you registered for.

4. How We Use Your Data

Primary Uses

  • • Delivering nuclear safety communications
  • • Personalizing content to your role/interests
  • • Managing your account and preferences
  • • Providing technical support

Secondary Uses

  • • Improving platform functionality
  • • Analyzing usage patterns (anonymized)
  • • Nuclear industry research (aggregate data)
  • • Compliance and security monitoring

5. Data Sharing and Transfers

🚫 We Do NOT Share Personal Data

Nuclear MOTD does not sell, rent, or share your personal data with third parties for marketing purposes. Your nuclear industry professional information is kept confidential.

Limited Sharing Scenarios

  • Service Providers: Email delivery services (under strict data processing agreements)
  • Legal Requirements: When required by law or nuclear regulatory authorities
  • Security: To protect against fraud or security threats
  • Aggregate Data: Anonymous statistics for nuclear industry research

International Transfers

Data is primarily stored in Canada. Any transfers to other countries are protected by:

  • • EU-Canada Adequacy Decision (for GDPR compliance)
  • • Standard Contractual Clauses where applicable
  • • Encryption in transit and at rest

6. Your Data Protection Rights

GDPR Rights (EU Users)

  • Access: Request copies of your data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion of your data
  • Portability: Export data in machine-readable format
  • Object: Stop processing for direct marketing
  • Restrict: Limit how we process your data

PIPEDA Rights (Canadian Users)

  • Access: Know what data we have about you
  • Accuracy: Ensure your data is correct
  • Withdrawal: Withdraw consent at any time
  • Complaint: File complaints with Privacy Commissioner
  • Accountability: Understand how we protect your data

🛠️ Exercise Your Rights

You can exercise these rights through your account settings or by contacting us:

Account Settings Export Data Contact Privacy Team

7. Data Retention

Active Accounts

We retain your personal data while your account is active and you continue to use our services.

Inactive Accounts

Accounts inactive for 3 years will be automatically anonymized or deleted, unless legal requirements mandate longer retention.

8. Data Security

Technical Safeguards

  • • TLS encryption for data in transit
  • • Database encryption at rest
  • • Secure password hashing (bcrypt)
  • • Regular security updates

Administrative Safeguards

  • • Access controls and authentication
  • • Audit logging of data access
  • • Staff training on data protection
  • • Incident response procedures

9. Contact Information & Complaints

Privacy Inquiries

For any privacy-related questions or to exercise your data protection rights:

Email: privacy@nuclear-motd.com
Response Time: We will respond within 30 days (GDPR) or 30 days (PIPEDA)

File a Complaint

If you believe we have not handled your personal data properly, you can file a complaint with:

EU Users (GDPR):
Your national data protection authority
Find your DPA
Canadian Users (PIPEDA):
Privacy Commissioner of Canada
www.priv.gc.ca

10. Policy Updates

We may update this privacy policy to reflect changes in our practices, technology, legal requirements, or nuclear industry regulations. We will:

  • • Notify you by email of material changes
  • • Post updates prominently on our platform
  • • Maintain previous versions for your reference
  • • Obtain new consent where required by law

Nuclear MOTD Privacy Policy - Effective September 30, 2025
Compliant with GDPR (EU) and PIPEDA (Canada)