Privacy Policy - Discourse

Please be informed that Lisk Dev Forum ( and Lisk Research Forum ( are managed by Lightcurve GmbH on behalf of the Lisk Foundation.

We take the protection of your personal data seriously. Lightcurve GmbH (hereinafter referred to as “Lightcurve”, “we”, “our”, “us” or for the purpose of the EU General Data Protection Regulation (“GDPR”), and if not specified otherwise in this Privacy Policy, we are the “Data Controller”) is committed to data avoidance and data minimization. We treat your personal data as confidential and in accordance with the legal data protection regulations and this Privacy Policy. Please read this Privacy Policy carefully to better understand your rights in relation to your personal data, and how we collect and use it.

For the terms used (e.g. “personal data”, “processing”, “person responsible” and “processor”) we refer to the definitions of the GDPR in Art. 4 GDPR.

I. Name and contact details of the Data Controller and our Data Protection Officer

The person responsible for the processing of your personal data in the context of this website (Data Controller), if not specified otherwise, is: Lightcurve GmbH, represented by Maximilian Kordek & Oliver Beddows, Köpenicker Straße 126, 10179 Berlin, Email:

Our Data Protection Officer is Frederic Hannesen, Köpenicker Straße 126, 10179 Berlin, Email:

II. Personal data we are processing, the purpose and legal basis for that processing and storage periods for the data

1. Visiting our website

When you visit Lisk Dev Forum ( and Lisk Research Forum (, the following data is processed:

Personal and additional data: The provider of the pages collects and stores information in so-called server log-files, which your browser automatically transmits. The following data is temporarily stored by the web server when you visit the provider's website:
  • Browser type/ browser version.
  • Used operating system.
  • IP address.
  • Date and time of access.
  • Referrer URL.
  • Transferred amount of data.
  • Message as to whether the call was successful.
  • Website from which access is gained.
Cookies: We are using only session cookies. These cookies are used for activities that are strictly necessary to operate our website in a reliable manner, therefore, do not require you to consent.
Purposes of processing:
  • Operating the website.
  • Evaluating technical malfunctions.
  • Website security measures.
Legal basis:
Storage period:
  • Log-files are automatically deleted after 52 days.
  • The cookies are being deleted automatically after you leave our website.

2. Registration on our website

When you register on Lisk Dev Forum ( and Lisk Research Forum (, the following data is processed:

Personal data:
  • Your name.
  • Your email address.
  • IP address.
  • Content you are posting.
Cookies: We are using only necessary/session cookies. These cookies are used for activities that are strictly necessary to operate our website in a reliable manner, therefore, do not require you to consent.
Purpose of processing:
  • Provide you with the full scope and functionalities of our website.
  • Technical support.
  • Communication.
Legal basis:
Storage period:
  • Your registration data will be generally deleted after 3 years after the end of the year in which you deactivate your user account.
  • The content you are posting is generally not being deleted. But after you deactivate your account, the content is not linked to your personal data anymore.
  • For cookies, you can find the information here (we are not using any Google Analytics cookies).

You may, however, visit our site without registering.

III. Recipients of your personal data and where it is stored

Insofar as we disclose data to other persons and companies (Data Processors) within the scope of our processing, transfer them to them or otherwise grant them access to the data, this only takes place on the following legal basis: performance of a contract Art. 6 para. 1 letter b GDPR, a legal obligation Art. 6 para. 1 letter c GDPR, our legitimate interests Art. 6 para. 1 letter f GDPR.

1. Data processors

The following categories of third-party providers (Data Processors) are used to enable the work of our websites and to communicate with you:

  • Email notification provider.
  • CRM software provider.
  • Cloud storage providers.

If you wish to receive a complete and exhaustive list of all companies to which your personal data is transferred to, please contact our Data Protection Officer at or our legal counsel at

2. Data storage location

The information that we collect from you is transferred, stored, and processed within the EEA, Switzerland, the United States, and in other countries where our Data Processors are located. We will take all reasonable steps to ensure that your personal data is treated securely, with a level of protection adequate to GDPR and in accordance with this Privacy Policy. We have provided further details below regarding the steps taken to ensure adequate processing of your personal data.

Whitelisted countries

Switzerland was found to have an adequate level of protection for personal data under European Commission Decision 2000/518/EC of 26 July 2000.

Model clauses

If we transfer data to a third party located outside of the EEA which is not in a White Listed Country, as data exporters, we enter into the European Commission’s model contracts (“SCCs”) for the transfer of personal data to third countries (i.e., the standard contractual clauses pursuant to Decision 2010/87/EU) with the relevant data importer. Prior to entering into SCCs we assess, on a case-by-case basis, as outlined in the CJEU decision in Case C‑311/18 [also known as Schrems II] on 16.07.2020, whether an adequate level of data protection, comparably to the level of data protection within the EU is given in the country where the data will be transferred to. If the appropriate level of protection is not given, additional protection provisions and measures will be contractually agreed and/or implemented by us to ensure the protection of personal data.

IV. Rights of data subjects (your rights)

You have the following rights under the statutory provisions:

  • Right to withdraw consent (Art. 7 (3) GDPR).
  • Right of access to information (Art. 15 GDPR).
  • Right to have incorrect personal data concerning you corrected (“Right to rectification”) (Art. 16 GDPR).
  • Right to erasure (“Right to be forgotten”) (Art. 17 GDPR).
  • Right to restriction of processing (Art. 18 GDPR).
  • Right to data portability (Art. 20 GDPR).
  • Right to object against the processing of personal data concerning yourself (Art. 21 GDPR).
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR). The competent supervisory authority for data protection issues is the data protection officer of the federal state in which our company is based. A list of data protection officers and their contact details can be found here (site in German).

To exercise any of your rights, please email either our Data Protection Officer at or directly our legal counsel at

Please note that for each of the rights above, we may have valid legal reasons to refuse your request, in such instances we will let you know if that is the case.

V. Disclaimer

This Privacy Policy contains links to other websites. Please note that by clicking on a link you will be redirected to another website or document. These websites can be beyond Lightcurve’s sphere of influence. Liability is excluded. The operators of the linked websites are solely responsible for their content. We refer you to their privacy policy.

VI. Changes and updates to this Privacy Policy

This Privacy Policy is reviewed and revised from time to time. Further developments of our website and the implementation of new technologies to improve user experience may also require changes to this Privacy Policy. We, therefore, recommend that you re-read this Privacy Policy from time to time.

Last update of this Privacy Policy: 19.01.2021