Privacy Policy

Account information. When you sign in via GitHub or Google OAuth, we receive your name, email address, and profile photo URL from that provider. We store these in our database to identify your account.

Content you create. Documents, comments, and profile bios you write on the Platform are stored in our database.

Usage data. We log standard server-side request metadata (IP address, user agent, page path, timestamp) for security monitoring and rate limiting. These logs are retained for 30 days.

AI API keys. If you use the AI-assisted editor, your API keys are stored only in your browser’s localStorage. They are transmitted directly to our AI proxy endpoint in a request header for the duration of each request and are never written to our database or logs.

• To authenticate your session and display your profile
• To associate documents and comments with your account
• To enforce rate limits and detect abuse
• To calculate contribution statistics and award badges
• To provide in-app notifications for platform activity (email notifications are not yet available)

We do not sell your data. We do not use your data for advertising. We do not train AI models on your content.

We share data only with:

• Database hosting providers — necessary to store and serve Platform data.
• OAuth providers (GitHub, Google) — only during sign-in; they authenticate you and return a token.
• Law enforcement — only when required by law.

Accepted documents are published publicly under a Creative Commons license. If you do not want your work published, do not submit it for review.

Your account data is retained for as long as your account is active. You may request deletion of your account and associated content by emailing privacy@worldproblemssolved.com. Accepted and published documents may be retained in archival form after account deletion, attributed to “Anonymous Contributor”.

We use a single session cookie set by NextAuth to maintain your login state. No third-party advertising or analytics cookies are used. We use standard server-side access logs rather than client-side analytics scripts.

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Request deletion (“right to be forgotten”)
• Object to processing
• Data portability

To exercise these rights, contact us at privacy@worldproblemssolved.com.

We implement industry-standard security measures including HTTPS, HTTP security headers (CSP, HSTS, X-Frame-Options), input validation, parameterised database queries, and role-based access controls. No system is perfectly secure; please report vulnerabilities to security@worldproblemssolved.com.

The Platform is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us data, contact us for immediate deletion.

We may update this policy. Material changes will be announced on the Platform at least 14 days before they take effect. Continued use of the Platform after that date constitutes acceptance.

Kanata Florida, LLC — WorldProblems Solved
Email: privacy@worldproblemssolved.com
Web: www.kanatagroup.com