Privacy and Data Collection
This is a static site generated by hugo + a few FOSS components.
# cookies
This site DOES NOT use any cookie.
# Javascript
This site doesn’t use any javasctipt, except for the posts where math notation rendering is enabled. This feature requires Katex.
# Personal data
This site does not collect any personal data.
# IPs and http request headers
What are, what for:
This server keeps logs of nginx HTTP request headers from nginx for a certain
amount of time. The log will be deleted on a regular basis.
-
The logged data includes:
- visitor IP address : this IP log is used to identify and blacklist attackers. You may use a VPN service, but do keep in mind that VPNs will bite you if you don’t know what you are doing.
- Request url (i.e. what resource do you want from this site). This is used
to identify bad actors, as scanners normally request for something like
wp-admin
… For a normal user, this is not something you would worry about, unless you are comfortable with letting me know (which I don’t want to) what you requested, see the previous point for in this case. - referer (i.e. where did you click the link into this site). I highly recommend disabling referer from your browser. Unfortunately I can’t single out the referer easily on the server side, so please do it yourself. Either way, this information is NOT used by this site.
- User agent (i.e. what browser you are using, what operating system are you using etc.). Some websites (not this one) may use this information is present a fitting display layout or feature set. For this site, we only use User Agent as a minimal identifier for web crawlers/bots. Normally you don’t need co care too much giving your user agent to other people because it’s typically only specific to the software, not to the user (unless you are using a very custom build?), but if you want, you can disable it from your browser.
-
None of the above-mentioned data (if any) will be presented to a third-party, except for rightful law enforcement.
-
Comments: these are “submitted” data rather than “collected” data. The comment system on this site works via email. So what ever the email providers (on both side) have in their ToS, also apply. By send comments via email, you authorize me to address it in public (or what do you expect?). You reserve the right to take your comments down by reaching out with the same email address you used to send the comments.
# Deletion of Data
The collected data (if any) will be deleted at least on a yearly basis.
[^ngx] https://docs.nginx.com/nginx/admin-guide/monitoring/logging/