NORTH STARATLAS

Privacy Policy

Last updated 2026-05-07

Who we are

Atlas is operated by North Star, a non-profit community based in Belgium focused on AI and robotics (ns2agi.com). We are the data controller for personal data processed through Atlas. Contact: filip@ns2agi.com.

What we collect

  • Account data — email, name, and authentication identifiers (e.g. Google OAuth subject) provided when you sign up.
  • Profile data — name, role or degree, company or university, location, bio, links, avatar, and any contributions you record.
  • Payment data — if you become a Patron, your payment is processed by Mollie; we receive a customer ID and subscription status, never your full card or bank details.
  • Usage data — basic server logs (IP, user agent, request paths) retained for security and debugging.

Why we process it

  • To run the service (legal basis: contract) — accounts, profiles, the directory, and Patron subscriptions.
  • To communicate with members (legitimate interest) — operational emails about the community and events you joined.
  • For the newsletter (consent) — Polaris Express only goes to people who opt in.
  • To keep the service safe (legitimate interest) — abuse prevention, debugging, and basic analytics.

Who we share it with

We rely on a small number of trusted service providers to run Atlas — for authentication, payments, email delivery, hosting, and file storage. They process data on our behalf under data-processing agreements. We never sell your data and we don't share it with advertising networks. The current list of sub-processors is available on request — email filip@ns2agi.com.

Where your data lives

Your data is primarily hosted in the European Union. Where a provider transfers data outside the EEA, they do so under standard contractual clauses or another lawful transfer mechanism.

How long we keep it

We keep your account and profile data for as long as you remain a member. If you delete your account, we remove your profile within 30 days, except where law requires us to retain billing records (typically 7 years for invoices in Belgium) or where we have a legitimate interest in retaining minimal logs for security.

Your rights

Under GDPR you can: access, correct, delete, export, restrict, or object to our processing of your data, and withdraw consent at any time. You can edit or delete most of this yourself from your profile. For anything else, email filip@ns2agi.com. You also have the right to lodge a complaint with the Belgian Data Protection Authority (gegevensbeschermingsautoriteit.be).

Cookies

We use strictly necessary cookies for authentication (Clerk session) and to remember your preferences. We do not use marketing or advertising cookies, and we don't use third-party analytics that profile you across the web.

Changes

If we change this policy in a way that affects you, we'll notify members by email and update the date at the top.
← Back to AtlasTerms of Service