Legal

Privacy Policy

Effective Date: June 2025  ·  Last Updated: June 2025

1. Who We Are

Colloque ("we", "us", or "our") is an independent digital platform operated from India, offering curated articles, book summaries, AI resources, and community features. Our website is accessible at https://colloque.in.

2. What Data We Collect

We may collect the following categories of personal data:

  • Account data: Email address when you sign in via magic link or join the waitlist.
  • Usage data: Pages visited, time spent, and interaction events (collected anonymously via Vercel Analytics).
  • User-generated content: Comments and community posts you submit.
  • Local preferences: Bookmarks and reading history stored locally in your browser (not transmitted to our servers).

3. How We Use Your Data

We use your personal data to:

  • Authenticate your account and manage your session.
  • Send you magic link emails for passwordless sign-in.
  • Notify waitlist members of community access.
  • Improve our platform based on aggregate usage patterns.
  • Respond to errors and monitor platform health via Sentry.

We do not sell, rent, or share your personal data with third parties for marketing purposes.

4. Data Storage and Security

User account data is stored securely in Supabase (hosted on AWS in the Asia Pacific region). We use SSL/TLS encryption for all data in transit. Supabase implements row-level security to ensure users can only access their own data.

We implement reasonable technical and organisational measures to protect your data against unauthorised access, loss, or disclosure.

5. Your Rights Under DPDP Act, 2023

As a Data Principal under India's Digital Personal Data Protection Act, 2023 (DPDP Act), you have the following rights:

  • Right to Access: Request a summary of your personal data we hold.
  • Right to Correction: Request correction of inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your personal data, subject to legal retention requirements.
  • Right to Grievance Redressal: File a complaint with our designated grievance officer.
  • Right to Nominate: Nominate an individual to exercise your rights in the event of your death or incapacity.

To exercise any of these rights, contact us at privacy@colloque.in. We will respond within 30 days of your request.

6. Cookies and Local Storage

We use session cookies for authentication (via Supabase). No advertising or tracking cookies are used. Browser local storage is used to store your reading preferences and bookmarks — this data never leaves your device.

7. Third-Party Services

We use the following third-party services:

  • Supabase — Authentication and database.
  • Sanity — Content management (no personal data stored).
  • Vercel — Hosting and edge delivery (anonymised analytics only).
  • Sentry — Error monitoring (stack traces may include request context; no personal identifiers logged).
  • Groq — AI inference for the ColloqueBot reading assistant (your queries are processed but not stored by us).

8. Data Retention

We retain account data for as long as your account is active. If you request deletion, we will erase your data within 30 days, except where required to retain it by applicable law.

9. Children's Privacy

Colloque is not directed at children under the age of 18. We do not knowingly collect personal data from minors. If you believe a minor has provided us with data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date above. Continued use of Colloque after changes constitutes acceptance of the revised policy.

11. Contact Us

For privacy-related queries or to exercise your DPDP rights, contact:

Grievance Officer, Colloque
Email: privacy@colloque.in

← Back to Colloque