Privacy, Security, and AI Use Policy

• Civic Brief does not use AI to impersonate residents, generate public comments on behalf of residents, infer political views, or sell resident data.
• We separate public civic records from private resident subscription data.
• We collect only the information needed to provide civic alerts and related services.
• We do not sell resident information.
• We do not provide resident subscription lists to campaigns, political committees, advertisers, or third-party marketers.
• We do not use resident alert preferences to infer or label political beliefs.
• We require human review before civic alerts are approved for broad public delivery.

Civic Brief Alerts may collect information such as email address, name if voluntarily provided, address or location information provided for location-based alerts, alert preferences, subscription status, confirmation status, unsubscribe status, email delivery history, and basic technical information needed for security, diagnostics, fraud prevention, and system reliability.

Civic Brief Alerts may also process public civic information from official or public sources, including agendas, minutes, meeting videos, transcripts, public notices, project pages, ordinances, permits, capital project updates, and other government records.

Civic Brief Alerts is not designed to collect Social Security numbers, driver's license numbers, financial account numbers, credit card numbers, voter registration numbers, medical information, passwords for third-party government systems, political party affiliation, campaign donation history, private messages to elected officials, or public comments submitted on behalf of residents.

If unnecessary sensitive information is discovered, Civic Brief Alerts will take reasonable steps to delete, redact, restrict, or secure it.

We use information to send civic alerts requested by the user, match public civic activity to a user's selected location or preferences, manage subscriptions, improve reliability and security, review and approve alerts, and detect errors, abuse, unauthorized access, or misuse.

We do not use resident information to impersonate residents, send messages on behalf of residents, generate lobbying emails in a resident's name, infer political beliefs, sell or rent resident data, build campaign targeting lists, share subscriber lists with political campaigns or advertisers, or automatically publish or send alerts without required review controls.

Civic Brief Alerts may use artificial intelligence to summarize public meeting agendas, minutes, videos, transcripts, public notices, and project updates; identify topics that may be relevant to users who requested alerts; draft internal summaries for human review; organize public civic information into clearer language; and assist with search, classification, and alert preparation.

AI is used as an assistant, not as the final authority. Alerts may include AI-assisted summaries, but alerts should link back to original public sources whenever available. Users should rely on official government records for legal, procedural, or final decision-making purposes.

Civic Brief Alerts does not use AI to pretend to be a resident, submit public comments, create political messages in a resident's name, invent facts about government activity, make final government decisions, replace official public records, determine a person's political beliefs, score residents based on civic activity, or send broad public alerts without required review and approval controls.

Civic Brief Alerts is designed to restrict AI access to private resident subscription data. Whenever practical, AI processing should use public civic information rather than raw resident lists. Location-based alert matching should be designed so that AI does not need unrestricted access to full subscriber lists. If private resident data must be used for a specific system function, access should be limited to the minimum data needed for that function.

Before broad delivery is enabled, Civic Brief Alerts should require source verification, preview, approval, ready status, admin-only test email, delivery-mode confirmation, and audit logging. Civic Brief Alerts should not send subscriber-wide alerts unless broad delivery has been intentionally enabled and required review steps have been completed.

Users may unsubscribe from Civic Brief Alerts at any time using the unsubscribe link included in alert emails. Users may request help managing or deleting their subscription information by contacting support@civicbriefalerts.com.

Civic Brief Alerts does not sell resident data. We may use trusted service providers to operate the platform, including hosting, database, email delivery, analytics, security, and AI service providers. These providers should only receive information needed to perform their services. We may disclose information if required by law, legal process, security investigation, or to protect the rights, safety, and integrity of the platform or its users.

Administrative tools are restricted to authorized users. Admin access should be protected through appropriate authentication, role-based access, and operational controls. Administrative activity may be logged for security, accountability, and troubleshooting. Service keys, API keys, database secrets, and other sensitive credentials should not be exposed in public code or browser-accessible frontend code.

Civic Brief Alerts uses privacy-by-design and security-by-design principles. Security measures may include restricted admin access, role-based permissions, database access controls, Row Level Security where appropriate, environment variable protection, no service-role keys in frontend code, human approval gates for alerts, audit logs for sensitive admin actions, limited data collection, email verification and unsubscribe controls, staged or dry-run imports before publishing, and emergency shutoff controls for alerts and AI jobs.

No online system can be guaranteed to be completely secure, but Civic Brief Alerts is designed to reduce unnecessary data collection, limit access, and prevent misuse.

Civic Brief Alerts summarizes public civic information from official or public sources. We aim to provide clear, useful, and timely summaries, but summaries may contain errors or omissions. Users should consult the linked official source for final language, legal requirements, meeting details, votes, deadlines, and official decisions.

Users may report an error, correction, broken link, missing source, or concern by contacting support@civicbriefalerts.com or using the report correction path when available.

Users may request deletion of their subscription information by contacting support@civicbriefalerts.com. We may need to retain limited records when required for security, legal compliance, audit logs, abuse prevention, or operational integrity.

If Civic Brief Alerts determines that a security incident requires notice under applicable law, we will take reasonable steps to investigate, contain the issue, restore system integrity, and provide required notices.

Civic Brief Alerts is intended for general civic information use and is not designed to collect personal information from children.

We may update this policy as Civic Brief Alerts evolves. When material changes are made, we will update the effective date and, where appropriate, provide additional notice.

Questions, corrections, unsubscribe help, or data requests may be sent to support@civicbriefalerts.com.