Public Digital Domain Home
GDPR · CCPA · Your Rights

The law gave you rights.
We made them structural.

GDPR, the European General Data Protection Regulation, came into force in 2018. California's CCPA followed in 2020. Both were genuine attempts to give people meaningful control over their personal data.

They established real rights: the right to know what is collected, the right to delete it, the right to opt out of its sale. These were hard-won and they matter.

But they were built on a flawed assumption: that organisations would comply in good faith if given clear rules. What happened instead is well documented. Consent banners. Dark patterns. Opt-out menus designed to exhaust you into giving up. The letter of the law, satisfied. The spirit of it, hollowed out.

GDPR and CCPA told organisations what they could not do. They did not change what organisations were incentivised to do. The extraction continued. It just came with a checkbox.

PDD does not ask organisations to respect your rights. It makes violating them structurally impossible.

There is no consent banner here because there is no undeclared collection happening. There is no opt-out because there is no default-on. Nothing moves until it clears. Nothing clears until it is declared. Declaration is not a courtesy. It is the only path through.

The rights GDPR and CCPA describe are not features you have to invoke here. They are the architecture.

Right Under GDPR / CCPA In PDD
Know what is collected You can request a disclosure. The organisation must respond within a set timeframe. Every piece of data we store is visible to you in The Hall. Your browsing history, your folders, your contracts, all accessible at any time. No request needed.
Take your data with you You can request a portable copy. Format and timing vary by organisation. Download all of your data at any time, in one action, from The Hall. It is yours to keep or take elsewhere, including right before you delete.
Delete your data You can request deletion. Exceptions apply. Compliance varies. Your data is stored on our servers. You delete your account from Settings, no request to file, no third party to ask. Deletion completes once any open contract has cancelled or settled, and then the server destroys your browsing history, folders, messages, and identity records. The settlement records of contracts you completed are kept as proof the agreement existed and was honoured, the financial receipt, not your browsing data.
Opt out of sale You must actively opt out. The default is collection. Nothing is sold without a signed contract. The default is silence. Engagement requires your explicit action.
Withdraw consent You can withdraw consent. Processing already done may stand. You can stop collection at any time by pausing or removing Envoy, and you can cancel any engagement before delivery. Cancellation voids the provisional contract. No data moves. No obligation attaches.
Correct your data You can request correction of inaccurate personal data. What we hold is a record of what you did, not a claim about who you are, so there is nothing to correct, only to keep or delete. If something is wrong, you remove it. Deletion, not correction, is the control.
Non-discrimination Organisations cannot penalise you for exercising rights. Refusal carries no consequence. No record of your refusal is shared with organisations or used against you; a block is your own private control, visible only to you.
Compensation Not a right under GDPR or CCPA. The law does not require payment for use. Compensation is the point. Every cleared engagement carries a declared settlement obligation. You are paid for what you deliver.

Public Digital Domain is operated by Coldbridge LLC (California), the data controller. PDD operates within the legal framework of GDPR and CCPA where applicable. We store personal data including browsing history, account information, and contract records. All of this data is visible to you, exportable, and deletable from within The Hall.

We record where you go, not what you write. PDD does not store typed text, the contents of your searches, form entries, or anything you author, and search terms are stripped at the point of capture. The record is a map of your activity, not a copy of your communications.

If you are a resident of the European Economic Area or California and have questions about your rights under those laws, you may contact us directly. For full details on what we store and how, see our Privacy Policy.

If you believe your rights have been violated by PDD or by an organisation that received your data through PDD, you may file a complaint with the relevant regulatory authority:

United States: Federal Trade Commission (FTC) · California Attorney General (CCPA)

European Union: European Data Protection Board

United Kingdom: Information Commissioner's Office (ICO)

For any rights requests, questions, or concerns: contact@publicdigitaldomain.org

We will respond. There are no automated systems handling this inbox.

Last updated: July 8, 2026.