Behind the Curtain 🎭

No hidden agendas. No fine print. Everything we're building, how we fund it, and where we're going — laid out in the open.

Radical Data Protection

The Privacy Architecture

Voting systems must be inherently trustworthy, which means user privacy cannot be an afterthought. In The Collective, political preference data is highly sensitive. Our architecture is designed around one core principle: we cannot share, lease, or expose data that we intentionally compartmentalize. Identity must be securely separated from ongoing political behavior.

Why We Verify Identity

The foundation of the cooperative is one person, one vote. To prevent bot networks, foreign interference, or individuals from accumulating outsized influence, we require strict deduplication. To ensure this does not become a barrier to entry, we offer four inclusive identity validation paths:

1.
Standard Digital KYC: State ID or Driver's License verification matching public records.
2.
Database Match: SSN last-4 lookup against authorized credit or voter databases.
3.
Manual Notary/Video: A brief video call or notarized document for edge cases lacking standard ID.
4.
The Voucher System: Two fully verified users with established history can co-sponsor and vouch for an undocumented individual's uniqueness.

Core Tenets

Data Minimization

We collect only the data strictly necessary for civic operations (validating uniqueness and matching users to congressional districts). We do not scrape social media profiles, track external browsing habits, or sell demographic cohorts to third parties. If a piece of data does not directly serve the calculation of the consensus scorecard, it is not stored.

Separation of Identity & Preference

A user's personal identifiable information (PII) — such as their legal name and physical address — is decoupled from their ongoing voting behavior. While aggregate district-level consensus is calculated and made public, an individual's specific voting ledger and personal normative vector (their 5-Pillar priority weights) remain strictly firewalled.

Encryption & Tokenization

PII is encrypted at rest using industry-standard AES-256 encryption. We utilize tokenization for authenticating sessions to ensure that even a theoretical database breach would yield obscured tokens rather than plaintext identity correlations. Our underlying architecture actively prevents direct mapping between external identities and internal vote hashes.

Third-Party Analytics

We utilize minimal, privacy-respecting telemetry strictly to maintain the functionality and security of the platform. We strictly prohibit the integration of ad-tech tracking pixels, data brokers, or behavioral surplus engines. Our telemetry stack is inherently self-hosted or bound by strict Zero-Knowledge agreements.

Data Export & Right to be Forgotten

You own your data. At any time, you can export your entire voting ledger and priority weights in a portable format. We also guarantee the right to absolute deletion: deleting your account permanently removes your identity linkage and zeroes out your active influence on the consensus scorecard.