From 9ed613e304d1bb599c071b026a579730aa881b87 Mon Sep 17 00:00:00 2001 From: Bayological <6872903+bayological@users.noreply.github.com> Date: Mon, 8 Jul 2024 09:24:01 -0500 Subject: [PATCH 1/3] refactor: use empty string for root path --- src/lib/helpers/routing.map.ts | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/lib/helpers/routing.map.ts b/src/lib/helpers/routing.map.ts index 42065f94..409c0ca2 100644 --- a/src/lib/helpers/routing.map.ts +++ b/src/lib/helpers/routing.map.ts @@ -1,5 +1,5 @@ export const routingMap: Map = new Map([ - ["", "Proposals"], + ["", ""], ["my-voting-power", "My Voting Power"], ["create-proposal", "Create a proposal"], ["proposals", "Proposal"], From bc68be2d5ee5bb6002b029929c782bcfc72427ba Mon Sep 17 00:00:00 2001 From: Bayological <6872903+bayological@users.noreply.github.com> Date: Mon, 8 Jul 2024 11:01:38 -0500 Subject: [PATCH 2/3] feat: add privacy policy --- src/app/privacy/page.tsx | 328 ++++++++++++++++++ .../_shared/footer/footer.component.tsx | 1 + src/lib/constants/links.ts | 2 + 3 files changed, 331 insertions(+) create mode 100644 src/app/privacy/page.tsx diff --git a/src/app/privacy/page.tsx b/src/app/privacy/page.tsx new file mode 100644 index 00000000..6edfb133 --- /dev/null +++ b/src/app/privacy/page.tsx @@ -0,0 +1,328 @@ +import { links } from "@/lib/constants/links"; +import type { NextPage } from "next"; + +const Page: NextPage = () => { + return ( +
+
+

+ Data Privacy Notice +

+ +

+ Last Updated: June 24, 2024 +

+ +

+ + Download Privacy Policy PDF + +

+ +

+ Mento Protocol Foundation{" "} + (the “Company” or “us”) is a + foundation company created under the laws of the Cayman Islands. +

+ +

+ The purpose of this document is to provide you with information on the + Company's use of your personal data in accordance with the Cayman + Islands Data Protection Act, (2021 Revision) and, in respect of EU + data subjects, the EU General Data Protection Regulation (together, + the " + Data Protection Legislation + "). +

+ +

+ If you are an individual, this Data Privacy Notice will affect you + directly. If you are an institution or a legal + person/entity/arrangement that provides us with personal data on + individuals in connection with your business with us, this Data + Privacy Notice will be relevant for those individuals and you should + transmit this document to such individuals or otherwise advise them of + its content. +

+ +

+ Your personal data will be processed by the Company, and by persons + engaged by the Company. Under the Data Protection Legislation, you + have rights, and the Company has obligations, with respect to your + personal data. The purpose of this notice is to explain how and why + the Company, and persons engaged by the Company, will use, store, + share and otherwise process your personal data. This notice also sets + out your rights under the Data Protection Legislation, and how you may + exercise them. +

+ +

Your personal data

+ +

+ By virtue of your business with the Company or by virtue of you + otherwise providing us with personal information on individuals + connected with you (for example directors, trustees, employees, + representatives, shareholders, investors, clients, beneficial owners + or agents), you will provide us with certain personal information + which constitutes personal data within the meaning of the Data + Protection Legislation. +

+ +

+ You may provide us with personal data in the context of the following: + (i) engaging in transactions with the Company; (ii) in the course of + your provision of services to, or contracts with, the Company (e.g. + contractors, consultants, counterparties); or (iii) any other + circumstances in which you provide the Company with personal + information relating to individuals. +

+ +

+ We may also obtain personal data on you from other public accessible + directories and sources. These may include websites; bankruptcy + registers; tax authorities; governmental agencies and departments, and + regulatory authorities, to whom we have regulatory obligations; credit + reference agencies; sanctions screening databases; and fraud + prevention and detection agencies and organisations, including law + enforcement. +

+ +

+ This includes information relating to you and/or any individuals + connected otherwise connected with you in relation to your business + with the Company such as: name, residential address, email address, + contact details, corporate contact information, signature, + nationality, place of birth, date of birth, tax identification, credit + history, correspondence records, passport number, bank account + details, and source of funds details. +

+ +

+ How the Company may use your personal data +

+ +

+ The Company, as the data controller, may collect, store and use your + personal data for purposes including the following: +

+ +

+ The processing is necessary for the performance of a contract, + including: +

    +
  • Administering or managing the Company;
    • +
  • + Facilitating the provision of services to or by the Company; +
    • +
  • + Facilitating the continuation or termination of the contractual + relationship between you and the Company; and +
    • +
  • + Facilitating the transfer of funds, and administering and + facilitating any other transaction, between you and one or more of + the Company. +
    • +
+

+ +

+ The processing is necessary for compliance with applicable legal or + regulatory obligations, including: +

    +
  • + Undertaking customer/counterparty due diligence including + anti-money laundering and counter-terrorist financing checks, + including +
    • +
  • + Verifying the identity and addresses of our customers and + counterparties (and, where applicable, their beneficial owners); +
    • +
  • + Sanctions screening and complying with applicable sanctions and + embargo legislation; +
    • +
  • + Complying with requests from regulatory, governmental, tax and law + enforcement authorities; +
    • +
  • Surveillance and investigation activities;
    • +
  • Carrying out audit checks, and instructing our auditors;
    • +
  • Maintaining statutory registers; and
    • +
  • Preventing and detecting fraud.
    • +
+

+ +

+ In pursuance of our legitimate interests, or those of a third party to + whom your personal data are disclosed, including: +

    +
  • + Complying with a legal, tax, accounting or regulatory obligation + to which we or the third party are subject; +
    • +
  • Assessing and processing requests you make;
    • +
  • + Sending updates, information and notices or otherwise + corresponding with your business with the Company; +
    • +
  • + Investigating any complaints, or pursuing or defending any claims, + proceedings or disputes; +
    • +
  • + Providing you with, and informing you about products and services; +
    • +
  • Managing our risk and operations;
    • +
  • Complying with audit requirements;
    • +
  • + Ensuring internal compliance with our policies and procedures; +
    • +
  • + Protecting the Company against fraud, breach of confidence or + theft of proprietary materials; +
    • +
  • Seeking professional advice, including legal advice;
    • +
  • + Facilitating business asset transactions involving the Company or + related entities; +
    • +
  • + Monitoring communications to/from us (where permitted by law); and +
    • +
  • Protecting the security and integrity of our IT systems.
    • +
+

+ +

+ We will only process your personal data in pursuance of our legitimate + interests where we have considered that the processing is necessary + and, on balance, our legitimate interests are not overridden by your + legitimate interests, rights or freedoms. +

+ +

+ The Company continues to be a data controller even though it may from + time to time engage service providers and other third parties to + perform certain activities on the Company's behalf. +

+ +

+ Sharing your personal data{" "} +

+ +

+ We may share your personal data with our affiliates and delegates. In + certain circumstances we may be legally obliged to share your personal + data and other financial information with respect to your interest in + the Company with relevant regulatory authorities such as the Cayman + Islands Monetary Authority or the Tax Information Authority. They, in + turn, may exchange this information with foreign authorities, + including tax authorities and other applicable regulatory authorities. +

+ +

+ The Company's affiliates and delegates may process your personal + data on the Company's behalf, including with our banks, + accountants, auditors and lawyers which may be data controllers in + their own right. The Company's services providers are generally + processors acting on the instructions of the Company. Additionally, a + service provider may use your personal data where this is necessary + for compliance with a legal obligation to which it is directly subject + (for example, to comply with applicable law in the area of anti-money + laundering and counter terrorist financing or where mandated by a + court order or regulatory sanction). The service provider, in respect + of this specific use of personal data, acts as a data controller. +

+ +

+ In exceptional circumstances, we will share your personal data with + regulatory, prosecuting and other governmental agencies or + departments, and parties to litigation (whether pending or threatened) + in any country or territory. +

+ +

+ Sending your personal data internationally +

+ +

+ Due to the international nature of our business, your personal data + may be transferred to jurisdictions that do not offer equivalent + protection of personal data as under the Data Protection Legislation. + In such cases, we will process personal data or procure that it be + processed in accordance with the requirements of the Data Protection + Legislation, which may include having appropriate contractual + undertakings in legal agreements with service providers who process + personal data on our behalf. +

+ +

+ Retention and deletion of your personal data +

+ +

+ We will keep your personal data for as long as it is required by us. + For example, we may require it for our legitimate business purposes, + to perform our contractual obligations, or where law or regulation + obliges us to. We will generally retain your personal data throughout + the lifecycle of your engagement in transactions or business with us. + Some personal data will be retained after your relationship with us + ends. We expect to delete your personal data (at the latest) once + there is no longer any legal or regulatory requirement or legitimate + business purpose for retaining your personal data +

+ +

+ Automated decision-making +

+ +

+ We will not take decisions producing legal effects concerning you, or + otherwise significantly affecting you, based solely on automated + processing of your personal data, unless we have considered the + proposed processing in a particular case and concluded in writing that + it meets the applicable requirements under the Data Protection + Legislation. +

+ +

Your rights

+ +

+ You have certain data protection rights, including the right to: +

    +
  • + Be informed about the purposes for which your personal data are + processed; +
    • +
  • Access your personal data;
    • +
  • Stop direct marketing;
    • +
  • Restrict the processing of your personal data;
    • +
  • Have incomplete or inaccurate personal data corrected;
    • +
  • Ask us to stop processing your personal data;
    • +
  • + Be informed of a personal data breach (unless the breach is + unlikely to be prejudicial to you); +
    • +
  • Complain to the Data Protection Ombudsman; and
    • +
  • + Require us to delete your personal data in some limited + circumstances. +
    • +
+

+ +

+ Contact us We are committed to processing your personal data lawfully + and to respecting your data protection rights. Please contact us if + you have any questions about this notice or the personal data we hold + about you. Our contact details are: contact@mento.org marking your + communication "Data Protection Enquiry". +

+
+
+ ); +}; + +export default Page; diff --git a/src/components/_shared/footer/footer.component.tsx b/src/components/_shared/footer/footer.component.tsx index 43ac692a..2438dafc 100644 --- a/src/components/_shared/footer/footer.component.tsx +++ b/src/components/_shared/footer/footer.component.tsx @@ -135,5 +135,6 @@ const footerMenuItems = { ], Other: [ { title: "Cookie Policy", href: links.cookiePolicy, isDownload: true }, + { title: "Privacy", href: "/privacy", isDownload: false }, ], }; diff --git a/src/lib/constants/links.ts b/src/lib/constants/links.ts index 261cda0d..d2b0031a 100644 --- a/src/lib/constants/links.ts +++ b/src/lib/constants/links.ts @@ -9,4 +9,6 @@ export const links = { roadmap: "https://mento.canny.io/", forum: "https://forum.celo.org/c/mento/33", cookiePolicy: "/files/cookie-policy.pdf", + privacyPdf: + "https://drive.google.com/uc?export=download&id=1E1pBFFo1R7sdGZx_xvkESdaaH2LOhC5e", }; From 8e0eab1b4d9b9ec328247935d3e71a79b01ae56b Mon Sep 17 00:00:00 2001 From: Bayological <6872903+bayological@users.noreply.github.com> Date: Mon, 8 Jul 2024 11:36:08 -0500 Subject: [PATCH 3/3] style: update contact us section --- src/app/privacy/page.tsx | 13 ++++++++----- 1 file changed, 8 insertions(+), 5 deletions(-) diff --git a/src/app/privacy/page.tsx b/src/app/privacy/page.tsx index 6edfb133..1786c627 100644 --- a/src/app/privacy/page.tsx +++ b/src/app/privacy/page.tsx @@ -313,12 +313,15 @@ const Page: NextPage = () => {

+

Contact Us

+

- Contact us We are committed to processing your personal data lawfully - and to respecting your data protection rights. Please contact us if - you have any questions about this notice or the personal data we hold - about you. Our contact details are: contact@mento.org marking your - communication "Data Protection Enquiry". + We are committed to processing your personal data lawfully and to + respecting your data protection rights. Please contact us, if you have + any questions about this notice or the personal data we hold about + you, marking your communication "Data Protection Enquiry"{" "} +
+ Our contact details are: contact@mento.org .