Effective Date: April 19, 2026 | Last Updated: May 24, 2026
Arbos Folk is the data controller for personal data collected directly through the ARA platform (account data, usage data, billing data).
For personal data entered by Sanctuary stewards about their members (Garden tasks assigned to people, Council votes, Ledger contributions, Gathering attendance, Rhythm rotations), the Sanctuary is the data controller and Arbos Folk is the data processor acting on the Sanctuary's instructions. This relationship is governed by our Data Processing Agreement (DPA), available on request at legal@arbosfolk.com.
For privacy-related inquiries, contact our Data Protection contact:
Card data
Listed explicitly so the absence of these is on the record:
Under GDPR Article 6(1), we process your data based on the following legal grounds:
| Purpose | Legal Basis | Data Categories |
|---|---|---|
| Providing the ARA service (account, Sanctuary features, content delivery) | Contract performance (Art. 6(1)(b)) | Account, Sanctuary, content data |
| Processing payments and subscriptions | Contract performance (Art. 6(1)(b)) | Financial data (via Stripe) |
| Making Scrolls publicly accessible at /p/:scrollId | Consent (Art. 6(1)(a)) | Scroll content and author display name |
| Platform security, fraud prevention, abuse detection | Legitimate interest (Art. 6(1)(f)) | Usage data, IP addresses, logs |
| Analytics and product improvement | Consent for analytics cookies (Art. 6(1)(a)) | Usage data, analytics data |
| Marketing communications (if applicable) | Consent (Art. 6(1)(a)) | Email address |
| Financial record-keeping and tax compliance | Legal obligation (Art. 6(1)(c)) | Billing records, invoices |
| Responding to legal requests and regulatory obligations | Legal obligation (Art. 6(1)(c)) | Any data as required by law |
Some of our subprocessors (Firebase/Google, Stripe) may process personal data outside the European Economic Area (EEA), primarily in the United States. Where data is transferred outside the EEA, we ensure adequate protection through:
We retain personal data only as long as necessary for the purposes described in this Policy. Specific retention periods:
| Data Category | Retention Period |
|---|---|
| Account data | Duration of account + 90 days after deletion request |
| Sanctuary data | Duration of Sanctuary membership + 12 months |
| Financial and billing records | 5 years after the transaction (Danish Bogføringslov, §10) |
| Council proposals and votes | Duration of Sanctuary lifetime (governance audit trail) |
| Ledger entries | 5 years (treated as financial records under Danish law) |
| Scroll content (private) | Until deleted by author or Sanctuary stewards |
| Public Scroll content | Until unpublished by the author; cached copies may persist briefly in CDN nodes |
| Dormant Sanctuaries (lapsed paid plan) | Read-only state for at least 12 months before deletion, with email notice |
| Usage and analytics data | 26 months (Google Analytics default), then automatically deleted |
| Server logs (IP, access logs) | 90 days |
After the applicable retention period, data is permanently deleted or anonymised such that it can no longer be linked to an individual.
As a data subject under the GDPR, you have the following rights. To exercise any of these rights, contact legal@arbosfolk.com. We will respond within 30 days (extendable to 90 days for complex requests, with notification).
You have the right to request a copy of all personal data we hold about you, along with information about how we process it. You can download a JSON bundle of your personal data directly from Settings → Account & Privacy → Download My Data.
You can request correction of inaccurate personal data, or completion of incomplete data. Much of your data can be directly edited through your Settings page.
You can request deletion of your personal data. We will comply unless retention is required by law (for example, financial records under the Danish Bookkeeping Act) or for the establishment, exercise, or defence of legal claims. Delete your account directly from Settings → Account & Privacy → Delete My Account. Authorship on shared Sanctuary content (Tasks, Proposals, Contributions) is anonymised. The content itself stays in place because it belongs to your Sanctuary as a joint controller.
You can request that we restrict processing of your data while a dispute about accuracy or legality is being resolved.
You have the right to receive your personal data in a structured, commonly used, machine-readable format. Use Settings → Account & Privacy → Download My Data for a JSON export of your personal data. Sanctuary stewards can additionally export Seeds, Ledger entries, and Resource inventories as CSV from the Sanctuary tab.
You can object to processing based on legitimate interest (Section 4) at any time. We will cease processing unless we demonstrate compelling legitimate grounds that override your interests.
Where processing is based on consent (analytics cookies, error tracking, public Scrolls, marketing), you can withdraw consent at any time. Withdrawal does not affect the lawfulness of processing performed before withdrawal. For cookie and error-tracking consent specifically, go to Settings → Account & Privacy → Cookie Preferences → Manage, or use the Cookie Preferences link in the site footer. Your choice is re-prompted automatically every 12 months.
You have the right to lodge a complaint with a data protection supervisory authority. Our lead supervisory authority is:
You may also lodge a complaint with the supervisory authority of your own EU member state of residence.
California residents have specific rights under the California Consumer Privacy Act and California Privacy Rights Act. These rights mostly mirror what GDPR already grants you under Section 9 above, plus the following:
To exercise these rights, write to legal@arbosfolk.com. We may ask for additional verification if the request is unusual or involves data we cannot otherwise tie to you.
ARA honours the Global Privacy Control (GPC) signal. If your browser or extension sends a Sec-GPC: 1 header or sets navigator.globalPrivacyControl to true, we treat the signal as a binding opt-out of any sale or sharing of personal data and as a directional opt-out of analytics tracking we have not yet bound to a separate consent choice. ARA does not currently sell or share personal data with advertisers (see Section 5), so GPC operates here mainly as a stronger consent signal than the banner alone.
ARA does not use automated decision-making that produces legal effects or significantly affects you. Council vote tallies and Ledger balance calculations are deterministic computations, not profiling. No automated profiling is used for marketing, credit, or access decisions.
ARA is not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16. If you believe a child under 16 has created an account, please contact us at legal@arbosfolk.com and we will promptly delete the account and associated data.
Sanctuaries may include members between 16 and 18 years of age (for example, teenagers participating in eco-village life). Sanctuary stewards are responsible for ensuring that parental or guardian consent has been obtained for minors in accordance with their local laws before entering their data into ARA.
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include:
Full detail and the field-level enforcement story live on the dedicated Security & Privacy page.
No system is perfectly secure. If we become aware of a data breach that poses a high risk to your rights and freedoms, we will notify Datatilsynet within 72 hours and notify affected individuals without undue delay, as required by GDPR Articles 33 and 34.
If Arbos Folk merges with, is acquired by, or sells substantially all of its assets to another entity, personal data may be transferred as part of that transaction. In that case:
Because ARA processes personal data on behalf of Sanctuaries (who act as data controllers for their member data), we offer a Data Processing Agreement in compliance with GDPR Article 28. The DPA covers:
Sanctuary stewards can request a copy of our DPA by contacting legal@arbosfolk.com.
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or the Service. For material changes, we will provide at least 30 days' notice via email or an in-app notification before the changes take effect. The "Last Updated" date at the top of this page indicates when the Policy was last revised.
If you have questions about this Privacy Policy, want to exercise your data subject rights, or have a privacy concern, please contact us:
Entity
Arbos Folk
CVR 46278895
Address
Byhøjvænget 17
8380 Trige, Denmark
Responsible person
Leif Pettersen
More legal documents
Terms of Service
The agreement you accept when you sign in.
Cookies Policy
Which cookies ARA uses and how to manage them.
Security & Privacy
How ARA protects sanctuary data, end to end.
Legal Notice
Operator identification and supervisory authority.