Declarador de Transparencia Académica

Comprehensive Privacy Notice

Declarador.io - Platform for Academic Transparency in AI Use

Last updated: December 2025

1. Identification and Foundational Commitment

1.1 Data Processing Controller

  • Project name: Declarador.io
  • Nature: Non-profit educational tool

1.2 Commitment to Transparency and Digital Sovereignty

Declarador.io was born from a commitment to Open Science as a fundamental right, Latin American Digital Sovereignty, and Radical Transparency in the academic use of Generative Artificial Intelligence.

Highest Standard Principle:

We voluntarily apply the most robust level of data protection to ALL our users, regardless of their geographic location. This means we guarantee rights including:

  • Right to be forgotten (data deletion)
  • Data portability in structured formats
  • Human review of automated decisions
  • Limitation of data processing
  • Complete transparency in AI use

2. Legal Framework and Regulatory Compliance

2.1 Applicable Primary Legislation

Declarador.io complies with the following personal data protection regulations:

Mexico (Primary Jurisdiction)

  • Federal Law on Protection of Personal Data Held by Private Parties (LFPDPPP)
  • INAI Guidelines

European Union

General Data Protection Regulation (GDPR) - Regulation (EU) 2016/679

Brazil

General Data Protection Law (LGPD) - Law 13.709/2018

Argentina

Personal Data Protection Law (LPDP) - Law 25.326

Chile

Law on Protection of Private Life - Law 19.628

United States

COPPA for minors and FERPA for educational contexts

2.2 Guiding Principles of Processing

Lawfulness

We only collect data with clear legal basis

Consent

Informed, specific, and revocable

Purpose

Use limited to declared purposes

Proportionality

We only collect what is strictly necessary

3. Personal Data Collected

3.1 Data Minimization Principle

We strictly apply the minimization principle: we only collect data that is absolutely necessary to provide the service. We NEVER purchase personal data from commercial third parties.

3.2 Data Categories and Purposes

Declaration Data (Essential)

  • Diagnostic checklist responses
  • Selected AI usage types
  • AI tool information (name, version, provider, date)
  • Description of academic purpose
  • Prompts/instructions used
  • Content integration mode
  • Level of human review
  • Final work license

Purpose: Generate TXT/JSON academic transparency declarations

Reviewer Data (Optional)

  • Reviewer name
  • Reviewer role

Purpose: Document human supervision of AI use

Session Data (Temporary)

  • Django session cookies
  • Wizard state between steps

Retention: Deleted upon closing browser

Technical Data (Automated)

  • IP address (anonymized after 30 days)
  • Browser type and operating system
  • Access date and time
  • Pages visited

Purpose: Security and fraud prevention, experience optimization

4. Use of Data

4.1 Primary Purposes

  1. Generate transparency declarations: Create customized TXT and JSON files based on user responses
  2. Academic verification: If the user completes Step 4, store the declaration for future searches and integrity validation using SHA-256 hash
  3. Service security: Prevent fraud, detect anomalies, and protect platform integrity

IMPORTANT: You can use Declarador.io WITHOUT saving data on our servers

You have two options when reaching Step 4: Only download files (your data is NOT saved) or Complete Step 4 (saved for future verification).

5. Responsible Use of Artificial Intelligence (AI)

5.1 AI Use Principles at Declarador.io

Our AI policy is based on 7 ethical principles adapted for the Latin American academic context:

1. Transparency

Visible labeling of AI-assisted content and disclosure of models used

2. Human Supervision

AI suggests; humans decide. No decision affecting academic rights is automatic

3. Privacy and No-Training

We DO NOT use your declarations or queries to train commercial models

4. Equity and Non-Discrimination

Active monitoring of algorithmic biases with focus on Latin American diversity

5. Academic Integrity

Declarations promote honesty about AI use and discourage technological plagiarism

6. Academic Data Sovereignty

Prioritization of regional infrastructure and control over sensitive academic data

7. Open and Free Access

Completely free tool with no financial barriers

5.2 Specific Guarantees

What we DO:

  • Process declarations locally
  • Use deterministic algorithms for validation
  • Maintain auditable records

What we NEVER do:

  • Send manuscripts to external APIs without your knowledge
  • Use declarations to train commercial models
  • Grant third parties rights to your content

6. International Data Transfers

WE DO NOT SELL, RENT, OR COMMERCIALIZE YOUR PERSONAL DATA UNDER ANY CIRCUMSTANCES.

When it is inevitable to transfer data outside Latin America, we apply Model Contractual Clauses (MCC) that guarantee the same level of protection as in the country of origin.

7. Data Subject Rights (ARCO+ Rights)

We guarantee extended ARCO rights in accordance with the highest international standards:

  • Access: Obtain a copy of your saved data
  • Rectification: Correct inaccurate or incomplete data
  • Deletion: Permanently delete your declaration (right to be forgotten)
  • Opposition: Stop processing for secondary purposes
  • Portability: Receive your data in structured JSON format
  • Limitation: Freeze processing while we verify accuracy

To exercise these rights:

Contact us at privacy@declarador.io with your declaration ID or SHA-256 hash. We will respond within a maximum of 20 business days.

8. Data Security

We implement technical and organizational measures to protect your data through a multi-layered security strategy:

  • TLS 1.3 / HTTPS mandatory for all traffic
  • AES-256 encryption at rest
  • SHA-256 hashing for integrity validation
  • Multi-Factor Authentication (MFA) for administrators
  • Web Application Firewall (WAF)
  • Daily encrypted backups
  • 24/7 SIEM monitoring

9. Data Retention and Deletion

Data Type Retention Period
Saved declarations Indefinite (historical verification)
Session data Until browser closes
Access logs (identifiable IP) 30 days
Security logs (anonymized IP) 90 days

10. Cookie Usage

Cookie Purpose Duration
sessionid Maintain wizard data between steps Session (browser close)
csrftoken Security against CSRF attacks 1 year

We DO NOT use third-party cookies for advertising or tracking.

11. Minors

We do not intentionally collect data from children under 13 years old in compliance with COPPA. For minors between 13 and 17 years old, we recommend using this service with supervision from a guardian, teacher, or parent.

12. Changes to this Policy

We may update this policy occasionally. For substantial changes, we will notify via prominent notice on the website for 30 days. Continued use after changes implies acceptance of the new policy.

Ethical Commitment Statement

By using Declarador.io, you participate in an academic transparency movement that transcends borders. Your privacy is not a price to pay for technology; it is a fundamental right that we unconditionally defend.

"Privacy is a right, not a privilege. Transparency is a commitment, not an option."

Back to Home