Who I am
My name is Kate Guillemette, and I operate https://peripathetic.org/. This policy was last updated 18 September 2020.
In summary, I’m not selling anything but myself and therefore intend to be as hands-off with your data as it is practical to be while using reasonably modern web services. Issues with those web services should be taken up with them directly; I provide the links below.
What personal data the site collects and why
Advertising
This site does not currently host advertisements.
Analytics
This site is connected to Google Analytics. Check with Google for their latest privacy policies.
Comments
Visitor comments are checked through an automated spam detection service.
When visitors leave comments on the site, the hosting service collects the data shown in the comments form, as well as the visitor’s IP address and browser user agent string to aid in spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
The comment and its metadata are retained indefinitely so Gravatar can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
Contact form
The site’s contact form collects your name and email address so I can respond to your message. I retain this information for my records indefinitely but do not share it with any third party.
Exception: I may report threatening, harassing, or otherwise alarming comments or private messages along with the sender’s identifying information to the sender’s ISP and, if warranted, to law enforcement.
Cookies
If you leave a comment on this site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies last for one year.
If you have an account and you log in to this site, WordPress sets a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, WordPress also sets up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me,” your login will persist for two weeks. If you log out of your account, the login cookies are removed.
Embedded content from other websites
Posts on this site may include embedded content (for example, videos, images, articles, and so on). Embedded content from other websites behaves as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Media
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors can download and extract any location data from images on the website.
Who I share your data with
Unless you have submitted a threatening, harassing, or otherwise alarming comment or personal message (as noted above), I do not share your data. For details on the services I use and how they may share your data, refer to the individual policies for Bluehost, Google, Gravatar, Mailchimp, and WordPress.
What rights you have over your data
If you have left comments on this site, you can request to receive an exported file of the personal data I hold about you, including any data you have provided to me. You can also request that I erase any personal data I hold about you. This does not include any data I am obliged to keep for administrative, legal, or security purposes.
How I protect your data
I use vetted web services that adhere to industry-standard security processes. Refer to the privacy policies of the individual services listed above for details.