PRIVACY

Privacy policy.

Plain words. No dark patterns. No trackers we didn’t need.

What we collect

When you sign the petition, we collect the name, email, connection to Denman, optional address (used only to verify residency), and optional one-line comment that you submit through the form. We also record the timestamp, your IP address (for rate-limiting and spam-prevention), and your browser’s user-agent string. We retain the cryptographic confirmation token used to verify your email; that token is single-use, time-limited, and unique to your submission.

When you write to us through the contact form, we collect the same three transport-level signals (timestamp, IP, user-agent), plus your name, email, the reason you selected, and the message you wrote.

What we display

On the public signature wall, we display the name (in your chosen format — full or first-initial), your connection to Denman, and your optional one-line comment. We never display your email, your address, your IP, or your timestamp.

What we do with your email

We email you a one-click magic link to confirm your signature. If you opted in to campaign emails (default checked), we will send you roughly one to two newsletter updates per month. You can withdraw at any time, either by clicking the unsubscribe link in any newsletter or by writing to us.

We never sell, rent, share, or trade your email address. We use Mailgun for delivery; Mailgun receives your email for the sole purpose of sending the message and operates under its own DPA.

How long we keep things

Approved signatures persist for the lifetime of the campaign. If we conclude the campaign without delivering the petition (for example, if a referendum is lost), we publish a wind-down date and delete confirmed signatures within 90 days of that date.

Pending (unconfirmed) signatures expire after seven days and are deleted from the database in the next nightly job.

Contact-form messages are retained as long as a thread is active. Resolved messages are archived for one year and then permanently deleted.

How to remove your data

The fastest way is our contact form with the “Withdraw my signature” reason. We delete fully — not soft-delete, not hide — within 48 hours, and send a confirmation when the deletion is complete. If you change your mind in the meantime, reply to that confirmation email and let us know.

Cookies and analytics

The site sets no third-party cookies. We use first-party aggregate-only server logs to count requests and keep abusers out. We do not run Google Analytics, Facebook pixels, or any behavioural-tracking code.

Contact

Questions, corrections, or requests: use the contact form or email hello@denmantown.org.