This website address is: https://gabaroo.org.
When visitors leave comments on the site I collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Although I try to prevent it, sometimes visitors to the website may download and extract location data from images on the website.
If you fill out a contact form, the information you provide will be collected.
If you leave a comment on this site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
When I use analytics, some data can be collected. I am not currently using analytics.
Who I share your data with
I don’t share your data with anyone else.
How long I retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so I can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data I hold about you, including any data you have provided to me. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where I send your data
Visitor comments may be checked through an automated spam detection service.
Your contact information
Contact information is only collected if you subscribe or provide this information to make a comment. I do not share this data with anyone.
How I protect your data
I use Wordfence security to protect my website and all associated data.
What data breach procedures we have in place
My server’s Data Processing Agreement (DPA) is GDPR complaint, and protects data on my site. If a personal data breach is detected to have happened on my server, they will notify me within 72 hours, and I will be amazed that my little blog was worth the effort. And of course I’ll notify you.
What third parties we receive data from
I occasionally use an aggregator, which is GDPR Compliant. More information is available here.
What automated decision making and/or profiling we do with user data
I do not currently use any automated decision making or profiling with user data.
Industry regulatory disclosure requirements
I use the plugin Smush on my website. Smush sends images to the WPMU DEV servers to optimize them for web use. This includes the transfer of EXIF data. The EXIF data will either be stripped or returned as it is. It is not stored on the WPMU DEV servers. Smush uses a third-party email service (Drip) to send informational emails to the site administrator. The administrator’s email address is sent to Drip and a cookie is set by the service. Only administrator information is collected by Drip.