Privacy Policy

This website is a personal blog without any commercial aims. Nevertheless, it stores data – as does any website on the internet – in order to allow for a smooth user experience and to secure the operations.

Relating to personal data, when visiting this website your IP address might be logged on the server. Furthermore, if you try to login on the content management system (which you are not allowed to anyway), your IP address will also be logged and stored in plain-text. The server is hosted by, with whom an agreement on data processing exist.

If you leave comments on the blog, I ask you to provide an email address. I do not allow anonymous blog comments. This email address is stored to link different comments and to allow you to subscribe to comments. Furthermore, the website uses Gravatar to show a user icon besides your comment – consequently, a hashed string of your email address will be sent to Gravatar to download your user icon (i.e. not your email address in plain text but a non-reversibly encoded representation).

Plugins, installed in order to secure the operation of the website, might use the collected data for analytical purposes. They are not used for advertising or contacting you personally on behalf of this blog.

Since I want to know how often this blog is read and where the users are coming from, I have a usage statistics plugin, which records page views, IP addresses, browser agent etc.

You can contact me at anytime to ask which data I have stored about you. In this case, you need to tell me your email address and name. If you have never commented on the blog, there will probably no data about you.

Since GDPR is a legal clusterfuck and one can never be sure that there isn’t a lawyer who wants to enforce the law by the letter (and not by the spirit), the following sections elaborate on the general summary above.

What personal data we collect and why we collect it


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.


If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.



Data Used: In order to check login activity and potentially block fraudulent attempts, the following information is used: attempting user’s IP address, attempting user’s email address/username (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user.

Activity Tracked: Failed login attempts (these include IP address and user agent). We also set a cookie (jpp_math_pass) for 1 day to remember if/when a user has successfully completed a math captcha to prove that they’re a real human. Learn more about this cookie.

Data Synced: Failed login attempts, which contain the user’s IP address, attempted username or email address, and user agent information. Stats

Data Used: IP address, user ID (if logged in), username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code. Important: The site owner does not have access to any of this information via this feature. For example, a site owner can see that a specific post has 285 views, but he/she cannot see which specific users/accounts viewed that post. Stats logs — containing visitor IP addresses and usernames (if available) — are retained by Automattic for 28 days and are used for the sole purpose of powering this feature.

Activity Tracked: Post and page views, video plays (if videos are hosted by, outbound link clicks, referring URLs and search engine terms, and country. When this module is enabled, Jetpack also tracks performance on each page load that includes the Javascript file used for tracking stats. This is exclusively for aggregate performance tracking across Jetpack sites in order to make sure that our plugin and code is not causing performance issues. This includes the tracking of page load times and resource loading duration (image files, Javascript files, CSS files, etc.). The site owner has the ability to force this feature to honor DNT settings of visitors. By default, DNT is currently not honored.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.