Privacy Policy
Calling this a privacy policy might be a stretch, and a lawyer might have a hernia if they saw it. But I felt it important to share with you what information is collected about you and how it is used.
TL;DR
I don’t want it, you don’t want me to have it, life is good.
What is collected?
This site uses a self-hosted instance of Plausible to collect analytics. It does not store IP addresses or make use of cookies, and is designed to be a privacy friendly analytics platform. In addition to this, in the interest of transparency, I’ve made the dashboard publicly available at plausible.0xda.de/0xda.de. You can see as much as I can see.
This site does not currently run any advertisements. If, at a future time, I do desire to introduce advertisements, I will opt for privacy preserving advertisements, such as EthicalAds.
This site does not make an effort to fingerprint visitors in any way, however certain information is still collected by way of server access logs. This server uses nginx default combined log format, which contains your IP address, referer [sic] and your user agent string. For more information about what is contained in this log format, please review the corresponding nginx documentation on log_format. But frankly, I only ever look at the logs if someone tells me there is a problem, and no one has told me there is a problem.
How is it used?
Server access logs are stored for up to 30 days before being purged, and are only reviewed if there is a suspected problem with the site. Analytics data is kept indefinitely, but is anonymized immediately upon ingestion, so it’s really just like a glorified hit counter.
Cookies
This website does not set any cookies for any purpose at this time. This may change in the future without notice, should I introduce analytics, advertisements, or more advanced application features.
Local Storage
This website does not set anything in local storage by default. It does, however, make use of a theme
local storage item if you choose to override your system settings. If you switch back to “auto” mode, this local storage item is removed. Unfortunately there is no other way to enable a consistent experience if you’d like to override your system settings.
Javascript
This website makes light use of local javascript to handle the mobile menu collapse, the theme toggle, and to generate the background. Ideally this website should always work with javascript turned off, without any significant degradation in behavior.
Third Party Assets
While CDN hosted assets may improve performance, I don’t want visitors to my website to have to load resources from third parties and make those web requests by simply visiting the page. I have made an active effort to reduce the likelihood of any third party services being loaded when browsing my site.
Tor-Friendly
This site is hopefully Tor friendly. It provides a hidden service URL, available in three locations:
- Header menu (pink onion icon)
- Footer menu (pink onion icon)
- Onion-Location HTTP header
Additionally, this website should “just work” without Javascript, for those who are looking for maximum browsing privacy. The CSS theme changer in the menu won’t work, the mobile menu bar won’t work, and the cool (or annoying, its all about perspective) background effect won’t work, but otherwise all content should be available.
I’ve also opted to not even include the analytics script in the onion version of the website. This is both for privacy reasons and for practical reasons – I can’t imagine how Plausible handles a bunch of connections to a hidden service.
601 Words
2022-12-31 09:00 +0000