Privacy & Data Practices

Our Commitment

NCADA is a coalition of advocates, researchers, and technologists fighting deepfake abuse. We do not run ads, sell data, or use tracking cookies. Our entire codebase is open source.

What We Collect

Response Wizard (anonymous)

When you use our Response Wizard, we store only the type of role you selected, the platform involved, your state, and whether you indicated minor status. No names, emails, IP addresses, or device identifiers are stored. Each session uses a temporary random ID that is discarded when you close the page.

Response Wizard (optional follow-up)

If you are 18 or older and choose to request follow-up support, we store your email address alongside your wizard selections. This is the only circumstance in which NCADA stores personal contact information from the wizard, and it is entirely voluntary.

Survivor Alliance

If you sign up for the Survivor Alliance, we store your name, email, state, school, role, and optional message. This information is used solely to connect you with NCADA support and is never shared with third parties.

What We Do Not Collect

NCADA does not use cookies, analytics trackers, advertising pixels, or any third-party tracking services. We do not collect IP addresses, device fingerprints, browsing history, or location data. We do not share, sell, or license any user data to any third party for any purpose.

Children's Privacy

NCADA does not knowingly collect personal information from users under 18. Our Response Wizard is fully anonymous for all users. The optional email follow-up feature is only available to users who indicate they are 18 or older. Minors who need support are directed to the Cyber Civil Rights Initiative helpline and other professional resources.

Frameworks We Follow

NCADA's data practices are guided by the following frameworks:

NIST Privacy Framework

We align our practices with the National Institute of Standards and Technology Privacy Framework (Version 1.0), specifically the Identify, Govern, and Protect functions. We minimize data collection to what is strictly necessary for our mission, we maintain transparency about what we collect and why, and we implement access controls on all stored data.

Student Privacy Pledge

NCADA is committed to the principles of the Student Privacy Pledge administered by the Future of Privacy Forum. We do not collect student data for advertising, we do not build personal profiles of students, and we do not sell student information.

Data Security

All data is stored in encrypted databases hosted on Vercel infrastructure. Administrative access is token-gated. Our source code is publicly auditable on GitHub.

Contact

Questions about our data practices: admin@ncadas.org