Privacy Policy

Last updated: February 14, 2026

1. Introduction

The DPP Interoperability Platform ("the Platform") is an academic research prototype developed as part of a Master's thesis at the SE4GD Erasmus Mundus Joint Master programme. This privacy policy explains how we handle information when you use the Platform at dpp-interoperability-ui.vercel.app.

2. Information We Collect

The Platform collects minimal information necessary for authentication:

  • Google OAuth Data: When you sign in with Google, we receive your name, email address, and profile picture from Google. This information is used solely to authenticate your session.
  • Session Data: We use JSON Web Tokens (JWT) stored in cookies to maintain your authenticated session. No session data is stored on our servers.
  • Local Preferences: Theme preferences and dashboard settings are stored in your browser's localStorage and never transmitted to any server.

3. How We Use Your Information

We use the collected information exclusively to:

  • Authenticate and identify you within the Platform
  • Display your name and profile picture in the dashboard
  • Maintain your session across page navigations

We do not use your information for advertising, analytics, profiling, or any purpose beyond basic authentication.

4. Data Sharing and Storage

  • We do not sell, rent, or share your personal information with third parties.
  • We do not store your personal data in any database. Authentication is handled entirely through JWT tokens in your browser.
  • The Platform is hosted on Vercel, which may collect standard web server logs (IP addresses, request timestamps). Please refer to Vercel's privacy policy for details.

5. Third-Party Services

The Platform integrates with the following third-party services:

  • Google OAuth 2.0: For authentication. Google's privacy policy applies to the data Google collects: policies.google.com/privacy.
  • TriplyDB: For SPARQL queries against public Linked Data datasets. No personal data is sent to TriplyDB.

6. Data Retention

Since we do not store personal data on any server, there is no data retention period. Your session token expires when you sign out or when the JWT token expires. Clearing your browser cookies and localStorage removes all Platform-related data from your device.

7. Your Rights

You have the right to:

  • Revoke access: You can revoke the Platform's access to your Google account at any time via Google Account Permissions.
  • Delete local data: Clear your browser cookies and localStorage to remove all Platform-related data.
  • Use without signing in: A demo account is available that requires no personal data.

8. Open Source

This Platform is fully open source. You can inspect the complete source code, including authentication logic, at github.com/JorgeRenatoLeon/DPP-Interoperability-UI.

9. Contact

For questions about this privacy policy, contact: jrleonchumpitaz@gmail.com

10. Changes to This Policy

We may update this privacy policy from time to time. Any changes will be reflected on this page with an updated revision date.