Privacy policy
How I collect, use, and protect your personal information when you use this site. Plain language. No tracking sales. No ad network.
Last updated:
Information you give me
When you fill in the contact form, I receive the name, email address, subject, and message you send. When you sign up to be notified about a launch (e.g. Reportaru, the accessibility tool), I receive your email address and the source of the signup so I know which list to add you to.
Information collected automatically
When you visit the site, my hosting provider and analytics tools collect standard server logs and pseudonymous usage data: IP address, browser type, device type, referrer, pages visited, and timestamps. This is used to keep the service running and to understand which content is useful.
Cookies and consent
Non-essential cookies (analytics, embedded media) are only set after you grant consent through the cookie banner. Essential cookies needed for site security and basic functionality may be set without consent under applicable law.
To respond to you
If you send a contact-form message, I use your email and the message content to reply and follow up about your project.
To send launch notifications
If you sign up to be notified about a launch, I will email you exactly once when that product launches. You can unsubscribe at any time and your email is then deleted from that list.
To improve the site
Aggregated, anonymous analytics help me understand which articles and pages are useful so I can write more of what works.
Legal compliance
If required by law, court order, or to enforce my terms, I may disclose information to the extent legally required.
Encryption in transit
The site is served over HTTPS. Form submissions and API calls are encrypted in transit between your browser and the server.
Minimization
I only collect what is necessary. There is no analytics fingerprinting, no third-party advertising trackers, and no sale of data.
Access
I am the only person with administrative access to messages, signup lists, and analytics dashboards. Third-party processors handle data on my behalf under their own contractual obligations.
Hosting & deployment
The site is hosted and served via Vercel. Static assets, images, and routes are processed there. Vercel acts as a data processor under its DPA.
Email delivery
Contact-form submissions are delivered through an SMTP relay configured for getintouch@belikenikola.com. Launch-notification emails (when sent) go through a transactional email provider.
Analytics
Google Analytics 4 (with IP anonymization where supported) is used to measure aggregated site traffic. Loaded only after cookie consent.
Cookie consent
Cookiebot manages your consent preferences and blocks non-essential scripts until you accept.
Form data storage
When the launch-notify and newsletter signup paths go live, signups will be stored in Supabase (Postgres) under EU-based regions where available.
No sale or sharing for advertising
I do not sell, rent, or share personal information for marketing purposes outside of the processors listed above. There is no ad network on this site.
Access, correction, deletion
Under GDPR, CCPA, and similar laws, you can request a copy of your personal information, ask me to correct it, or request deletion. Email me and I will respond within 30 days.
Portability
You can request a copy of your data in a structured, machine-readable format.
Consent withdrawal
You can withdraw cookie consent at any time via the consent banner. You can unsubscribe from any list using the link in the email or by replying to it.
Right to complain
If you are in the EU/EEA you can file a complaint with your local data protection authority. In Sweden, that is IMY (Integritetsskyddsmyndigheten).
I keep personal data only as long as I need to. Specifics:
- • Contact-form messages: kept in my inbox per normal email retention; deleted on request.
- • Launch-notification email lists: kept until you unsubscribe or until the relevant launch is sent + 30 days, then deleted.
- • Analytics: aggregated and anonymized; raw events expire per Google Analytics defaults (configured to ≤ 14 months).
- • Server access logs: rotated by the hosting provider on its standard schedule.
Some of the third-party processors I use (notably hosting and email) may transfer or process data outside the EU/EEA.
Each processor has its own data-protection commitments (Standard Contractual Clauses or equivalent) and I've selected providers with credible compliance posture for both GDPR and CCPA.
Questions about privacy?
Email me and I'll get back to you within 30 days — usually faster.
Privacy contact
Response time
Within 30 days of receipt; usually within a few business days.
Your rights
GDPR, CCPA, and similar laws apply. See “Your rights” above.