1. Who this policy covers
This policy describes how Sunny Data Center Observatory handles information from site visitors and people who submit a project report, source, correction, question or image.
2. Information collected
A report requires state or union territory, district, facility or project, project stage, issue categories, a description and consent. PIN code, source URL, contact email and up to five images are optional. The form does not ask for a name, phone number, Aadhaar number or exact home address.
3. Why it is used
Information is used to review and verify records, contact a submitter when they permit it, prevent abuse, document consent, manage corrections and publish only verified details within the chosen preference.
4. Public and private information
Submissions are private by default. The public statistics endpoint returns aggregate totals and breakdowns only. It does not return report text, emails, source URLs, PIN codes, facility names, exact locations, file metadata or storage keys. Uploads are not directly public.
5. Images and metadata
Uploaded images can contain device and location metadata. Until automated metadata removal is independently verified, contributors should remove sensitive metadata before upload. No image is published automatically.
6. Storage and service providers
Structured report data and image files are stored using the hosting platform's managed database and object storage. Information may be processed by infrastructure providers solely to operate, secure and back up the service, subject to their contractual and legal obligations.
7. Retention
Reports should be reviewed periodically and deleted when they are no longer needed for verification, corrections, safety, abuse prevention or legal obligations. A production launch should adopt and publish concrete retention periods after operational and legal review.
8. Rights and requests
To request access, correction, deletion or withdrawal of publication permission, use the private form, select “Correction to a record,” and reference your receipt ID if available. We may need enough information to locate the report without exposing another person's submission.
9. Security
Reasonable technical and organisational safeguards reduce risk but cannot guarantee absolute security. Do not submit passwords, identity numbers, confidential documents or security-sensitive infrastructure details.
10. Analytics, maps and third-party links
The map loads OpenStreetMap tiles, which can receive standard request data such as IP address and browser information. External source links are governed by their own privacy practices. This first release does not add advertising or behavioural analytics.
11. Changes
Material policy changes will update the effective date and should be described in plain language. This prototype policy requires local legal review before a broad public launch.