Legal Framework

Legal Documents

All legal policies, agreements, and notices governing communications with and use of the @protected.is domain. All documents are binding where indicated.

⚠ Binding Notice

By communicating with any @protected.is address — including by email, phone, or any electronic channel — or by registering any account using a @protected.is address, you are bound by the documents marked LIVE below. Read the Communications & Data Liability Agreement and Policy for full terms.

Document Hierarchy & Precedence

📋 Communications & Data Liability Agreement and Policy Primary /policy/

└─ Privacy Notice Supplementary /privacy/

└─ └─ Incident Response Policy Live /incident/

└─ Data Retention & Deletion Policy Live /retention/

Live Documents — Currently Binding

⚖️ Live

Communications & Data Liability Agreement and Policy

The primary binding agreement governing all communications with @protected.is addresses. Establishes data breach liability ($5,000 + remediation costs), mutual obligations, dual jurisdiction, and acceptance by registration.

v1.0 Effective 2025-01-01 IL law + Icelandic GDPR

protected.is/policy/ →

🔒 Live

Privacy Notice

Governs how information is collected, used, stored, and disclosed in connection with the Site and @protected.is communications. Supplementary to the Agreement and Policy — the Agreement takes precedence where documents overlap.

v1.0 Effective 2025-01-01 IL law + Icelandic GDPR

protected.is/privacy/ →

Public Legal Documents — Live

These documents are publicly accessible and binding. Internal operational documents (Unique Email Acknowledgment Notices, Data Breach Evidence Records) are maintained privately and are not published here.

📬 Live

Demand Letter Template

Formal pre-litigation demand letter asserting breach of the Communications Agreement. Cites applicable sections, states the $5,000 liquidated damages claim plus documented remediation costs, and sets a 30-day response deadline.

Supports Agreement §8

/demand/ →

🛡️ Live

Incident Response Policy

Documents the Operator's own security and incident response procedures. Demonstrates good-faith compliance and professional security practices — strengthens the Operator's standing in any legal proceeding.

Supports Agreement §1

/incident-response/ →

🗂️ Live

Data Retention & Deletion Policy

Specifies how long data is retained, when it is deleted, and under what circumstances. Required for full GDPR compliance under Icelandic law. Also limits scope of any data subject access requests.

GDPR Art. 5(1)(e)

/retention/ →

Email Footer — Required Signature

All outbound emails from @protected.is addresses should include the following footer. This creates constructive notice and a paper trail of acceptance for every correspondent. The full HTML signature file is available separately.

─────────────────────────────────────────────────────────────
This message is intended solely for the named recipient(s). If you
have received it in error, you must not read, copy, disclose, or use
its contents — notify the sender immediately and delete it permanently.
Unauthorized use may be unlawful.

By receiving and reading this email, the recipient agrees to protect
its contents with reasonable security measures consistent with the
Communications & Data Liability Agreement and Policy at
protected.is/policy/
Continuing this correspondence confirms your acceptance of that Agreement.
─────────────────────────────────────────────────────────────
protected.is/policy/ · v1.0 · IL law + Icelandic GDPR · privacy@protected.is

Legal Contact

For all privacy inquiries, legal notices, data breach notifications, and policy-related correspondence: privacy@protected.is

All formal legal notices must be delivered to this address. Communications sent to no-reply or automated @protected.is addresses do not constitute valid legal notice to the Operator.