AEGIS

Privacy Policy

Last updated: May 2026

Aegis ("Aegis", "we", "us") is an open, non-profit platform operated by ThinkLance AI. This policy explains what personal data we process when you use aegis-eu.com and why. We process personal data in accordance with the EU General Data Protection Regulation (GDPR).

1. Who is responsible

The data controller for this website is ThinkLance AI (Brussels, Belgium). For any privacy request, contact info@thinklanceai.com.

2. What we collect

  • Account data — if you create an account: email address and authentication identifiers.
  • Access requests — if you request contributor access: the name, role, organisation, email and message you submit.
  • Content you create — assessments (FRIA drafts) and any documents you choose to upload for ingestion.
  • Technical data — minimal server logs (IP address, request metadata) used for security and rate limiting.

3. Why we process it

  • To provide the platform and your account (performance of a service you request).
  • To evaluate and manage contributor access requests (legitimate interest).
  • To secure the platform and prevent abuse (legitimate interest).

4. Legal basis

We rely on your consent (where given), the performance of the service you request, and our legitimate interest in operating a secure, useful platform — balanced against your rights.

5. Sharing & processors

We do not sell personal data. We use infrastructure providers (hosting, database, authentication) acting as processors on our behalf, located in the EU where possible. We never share contributor data with third parties for marketing.

6. Retention

We keep personal data only as long as needed for the purposes above, or until you ask us to delete it. Access-request data is kept for the duration of the evaluation and a reasonable period thereafter.

7. Your rights

Under the GDPR you have the right to access, rectify, erase, restrict and port your data, and to object to processing. To exercise these rights, email info@thinklanceai.com. You also have the right to lodge a complaint with your national data protection authority.

Aegis is a non-profit project. We collect the minimum data needed to run the platform and to let trusted contributors help shape it — nothing more.