1. Description of the processing operations.

The Principal Investigator (P.I.) and any research assistants will collect, organize, and store participants’ information in a pseudonymized dataset for this experiment. The P.I. will have access to this information for retrieval and consultation as necessary for the experiment. Data disclosure, transmission, or dissemination will be organized as an anonymized dataset, deposited in a repository. Upon the experiment's conclusion, all pseudonymized datasets containing participants' information will be destroyed. The final anonymized dataset will be published for research transparency. The pseudonymized dataset retention period expires on December 31, 2024. After this date, it will be impossible for participants to request the P.I. to re-identify or delete their data.

2. What personal information do we collect, for what purpose(s), and through which technical means?

The P.I. will collect data on participants, including gender, age range, race, familiarity with blockchain technology, use of social media and messaging platforms, financial investment activity, and chosen nicknames. Participants will provide this information via a general survey at registration. To maintain data privacy, some details will be generalized, such as using age range instead of exact birthdate. Participants will register on a private website using an anonymous email address. They will engage in governance proposal discussions on a Discord channel and cast votes on the private website. At registration, participants will consent to audio/video recordings of optional anonymous interviews at the experiment's end. Declining to participate in interviews will not affect their eligibility for experimental rewards.

3. Who has access to your information and to whom it is disclosed?

The P.I. will be the only individual with access to data from a pseudonymized encrypted file. At the experiment's end, anonymized data will be shared with research assistants, and the final anonymized dataset will be published or deposited in public repositories for research replication.

4. How do we protect and safeguard your information?

Information from interactive platforms like the Discord channel will not be disclosed or linked to participants. Usernames will be assigned for website access, and votes will be pseudonymized, linked only to nicknames/usernames. The final dataset will include only aggregated, anonymized proposal results. All data will be securely stored in an encrypted file uploaded to OneDrive, with regular backups on an external hard drive for safe retrieval by the P.I. Personal identifiers, such as names or email addresses, will not be collected or stored in any dataset.

5. How long do we keep your data?

Secondary datasets and interview data retention will expire on December 31, 2024, as per Article 4 of the EUI’s Data Protection Policy. Post-retention, only the anonymized dataset will remain with the P.I. and will be uploaded to an online repository. Participants will not be able to request data re-identification or deletion after this date.

6. How can you verify, modify, or delete your information?

To verify, access, correct, or delete your personal data held by the Data Controller, contact the Data Controller at vanessa.villanuevacollao@eui.eu. A reply will be provided within 30 working days. Any remarks about this privacy statement should be directed to data_protection_officer@eui.eu.

7. Right of recourse

Under Article 16 of the EUI’s Data Protection Policy, research participants have the right to:

a) Be informed about the processing of their data, including by whom and for what purposes.

b) Request rectification of inaccurate or incomplete data.

c) Demand erasure of data if processing is unlawful or no longer necessary (the ‘right to be forgotten’).

d) Block data processing while conditions for rectification or erasure are verified.

If your rights under the EUI’s Data Protection Policy are infringed, you can request a review as per Article 27. Address requests to the Data Controller, who will respond within 30 working days:

Vanessa Villanueva Collao

Visiting Fellow

Any request should be sent simultaneously to data_protection_officer@eui.eu.

Download this Statement: