On this website, davidjcmorris.com, you can access our blog (where you can leave comments or subscribe for updates) and subscribe for our newsletter. As this means some personally identifiable information is stored, I’ve put this page together to explain how this is used and kept confidential (the Policy). Yes, that does make it a l-o-o-o-ng page, but it is better to be transparent, and if you find this kind of thing boring, you probably wouldn’t be here in the first place. Am I right? 🙂
What personal data we collect and why we collect it
Nothing on this website collects personally identifiable information, unless you explicitly agree to provide it. I’ve spelled out which ones do that below, along with what information is retained, what it is used for, and for how long it’s kept.
Comments and feedback
When you leave comments or feedback, WordPress collects the data shown in the form and retains this with your IP address and browser information indefinitely. This means follow-up comments can be recognised and approved automatically instead of holding them in a moderation queue.
If you’ve provided it, your email address may be encoded and securely passed through to Gravatar to confirm whether you are signed up there, so that we can show your profile picture alongside your comments. Please see the Gravitar privacy policy for more details:
https://automattic.com/privacy.
Your IP address and browser information will also be passed through to Akismet and WordFence to help with security and spam detection.
Subscriptions and registered users
The website uses contact forms that enable visitors to subscribe for updates, amongst other things. These collect and store your name and email address so you can get emails, and this is retained until you unsubscribe.
If you explicitly register as a user on our website, WordPress stores any personal information you provided in your profile. You will be able to see, edit, or delete your personal information at any time (except you cannot change your username). Website administrators can also see and edit that information.
Promise: We will never make this available to third parties for marketing purposes.
Login attempts
Attempts to login are checked through an automated protection service, to protect against brute force attacks.
Cookies
As well as treats to feed mice and children alike, cookies on websites are small pieces of text sent to your browser, that help the website remember information about your visit. This can both make it easier to visit the site again and make the site more useful to you.
- If you leave a comment you may opt-in to saving your name, email address and website (stored as cookies). These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
- If you attempt to log in to the Site, we will set a temporary cookie to confirm that your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
- When you do log in, cookies will hold your username and screen preferences. These cookies last for two days, unless you select ‘Remember Me‘ in which case they last for two weeks. When you explicitly log out of your account, the login cookies will be removed. Screen preference cookies last for a year.
- If you publish or edit an article or post, the ID of that entry is saved in a cookie. It expires after 24 hours.
Analytics
This site uses Google analytics to report on which pages of the site are the most popular. This information is not personally identifiable, but it associated with an IP address to improve reporting with activities, first and last page, etc.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, etc.) from other websites. This material will behave in the exact same way as if you are on the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of any personal data held. You can also request that we erase any personal data. Note: This does not include any data we are obliged to keep for legal purposes.
How we protect your data
Your data has multiple protections. Keeping everything behind a security wall (the ‘s’ in https); validating and blocking invalid login attempts; screening for and blocking the submission of inappropriate content; constantly surveilling content, plugins, and themes for malware; backed up by strong physical security in the hosting environment.
Contacting us about data protection and our privacy policy
Any enquiries or requests for data protection and our privacy policy should be addressed to:
privacy@davidjcmorris.com
There. It’s over now. Go get yourself a drink, lie down in a darkened room, or however you recover from experiences like this.