Privacy Policy
This Privacy Policy describes how the nebimnerip Institute collects, uses, retains, and protects personal information submitted in relation to the context-first message standard and stewardship activities. The policy applies to enquiries, registry submissions, and any correspondence directed to the Institute via the contact channels published on this site. The Institute processes personal data only to respond to enquiries, maintain stewardship records when requested, and to carry out governance tasks related to standard maintenance. Processing is conducted under lawful bases appropriate to the purpose and limited to what is necessary for the stated handling. The Institute does not sell personal information and treats registry tokens and related references as administrative data supporting retrieval and traceability. This document also explains cookie usage, data retention, security measures, and the rights available to data subjects. For formal governance correspondence, include registry tokens or anchors to facilitate record linkage. This policy is organised for clarity and aims to provide a neutral, accessible summary of routine practices and contacts for privacy matters.
Collection, use, and retention
The Institute collects personal information when individuals submit enquiries, provide registry tokens, or request governance actions. Typical categories include name, email address, telephone number, and any tokens or anchor identifiers included in the message. The information collected is used to respond to enquiries, to record stewardship-related correspondence where requested, and to maintain minimal administrative records required for standard governance. Retention periods are limited and proportionate: routine enquiry records are retained for a period that allows adequate response and historical reference, generally not exceeding three years unless a longer retention is required by law or for governance continuity. When registry entries or stewardship records are created at the requester’s direction, the associated administrative metadata is retained to preserve traceability of revisions and references. The Institute performs periodic reviews to identify records eligible for secure deletion. When longer retention is necessary for legal reasons or for published registry history, the Institute documents the rationale and applies appropriate access controls.
Cookies and local storage
This site uses minimal cookies and local storage to preserve presentation preferences and to store nonessential state such as cookie consent. Nonessential cookies are optional and require explicit acceptance. Essential cookies required for site navigation and basic functionality are limited in scope and do not include tracking for advertising. Presentation preferences stored locally may include theme selections and the dismissed state of the cookie consent panel. The cookie consent interface permits acceptance or rejection of nonessential cookies and remains visible until a choice is made. The Institute does not employ persistent tracking cookies for profiling or advertising purposes. For a full list of cookie names and purposes used on this site, contact the privacy address above and include the page context in the request so the Institute can respond precisely.
Security and third parties
The Institute applies reasonable administrative and technical safeguards to protect personal information from unauthorized access, alteration, or disclosure. Access to stewardship records is limited to authorised personnel who require the data to perform governance functions. Where the Institute engages third party service providers to assist with hosting, email, or administrative systems, contracts require adequate data protection measures and limit use to the purposes specified by the Institute. The Institute assesses third party services for appropriate security practices and utilises transport security for data transmitted over networks. The Institute does not disclose personal information to parties outside of these service relationships except when required by law or with the explicit request and authorization of the data subject. Requests for records or disclosures from public authorities are handled according to applicable legal requirements and documented in stewardship logs when relevant.
Rights and contact
Individuals have rights to access, correct, and request deletion of personal information held by the Institute, subject to legal and governance recordkeeping constraints. To exercise these rights, submit a request to [email protected] including sufficient detail to locate the records, such as registry tokens or anchor identifiers where applicable. The Institute will acknowledge receipt and provide information about the required verification steps and expected timeline. For formal governance correspondence that should be retained, indicate the desired record treatment within the message. If a request cannot be complied with in full, the Institute will explain the legal basis for any partial refusal and provide information on available remedies. For further clarification of this policy or of specific handling practices, contact the privacy address above or use the contact form on the site at /contact/. This policy may be updated; the effective date appears at the end of this document and changes are recorded with brief rationale notes.
Effective date: 2026-01-25. Updates to this Privacy Policy will be posted with a short rationale for the change. For questions about specific items in stewardship or registry records, include the relevant token or anchor id when contacting the Institute.