This website is a personal blog without any commercial aims. Nevertheless, it stores data – as does any website on the internet – in order to allow for a smooth user experience and to secure the operations.
Relating to personal data, when visiting this website your IP address might be logged on the server. Furthermore, if you try to login on the content management system (which you are not allowed to anyway), your IP address will also be logged and stored in plain-text. The server is hosted by All-Inkl.com, with whom an agreement on data processing exist.
If you leave comments on the blog, I ask you to provide an email address. I do not allow anonymous blog comments. This email address is stored to link different comments and to allow you to subscribe to comments. Furthermore, the website uses Gravatar to show a user icon besides your comment – consequently, a hashed string of your email address will be sent to Gravatar to download your user icon (i.e. not your email address in plain text but a non-reversibly encoded representation).
Plugins, installed in order to secure the operation of the website, might use the collected data for analytical purposes. They are not used for advertising or contacting you personally on behalf of this blog.
Since I want to know how often this blog is read and where the users are coming from, I have a usage statistics plugin, which records page views, IP addresses, browser agent etc.
You can contact me at anytime to ask which data I have stored about you. In this case, you need to tell me your email address and name. If you have never commented on the blog, there will probably no data about you.
Since GDPR is a legal clusterfuck and one can never be sure that there isn’t a lawyer who wants to enforce the law by the letter (and not by the spirit), the following sections elaborate on the general summary above.
What personal data we collect and why we collect it
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Data Used: In order to check login activity and potentially block fraudulent attempts, the following information is used: attempting user’s IP address, attempting user’s email address/username (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user.
Activity Tracked: Failed login attempts (these include IP address and user agent). We also set a cookie (jpp_math_pass) for 1 day to remember if/when a user has successfully completed a math captcha to prove that they’re a real human. Learn more about this cookie.
Data Synced: Failed login attempts, which contain the user’s IP address, attempted username or email address, and user agent information.
Data Used: IP address, WordPress.com user ID (if logged in), WordPress.com username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code. Important: The site owner does not have access to any of this information via this feature. For example, a site owner can see that a specific post has 285 views, but he/she cannot see which specific users/accounts viewed that post. Stats logs — containing visitor IP addresses and WordPress.com usernames (if available) — are retained by Automattic for 28 days and are used for the sole purpose of powering this feature.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.