Who am I
My name is Brandon Powell and my website address is: https://bpowell.net.
What personal data I collect and why I collect it
When visitors leave comments on my site I collect the data shown in the comments form. The comments form is not shown if the user is logged in – the data is taken directly from their profile instead.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on my website.
If you use a contact form on my website, the data entered into the form is recorded so that I can respond to you.
In some cases, information is auto-filled from a user’s logged in profile, or additional data such as their username can be also be recorded.
If you visit my login page, a temporary cookie will be set to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, several additional cookies will be set to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
When you accept cookies on my website, a cookie is set that records your acceptance so you aren’t bothered again. These cookies last 30 days and contain no personal data.
When you visit my website, it will check for a cookie that indicates you’ve visited previously. The setting of this cookie is always “true”, unless the cookie isn’t set at all.
If this cookie is not found, you are considered a “unique visitor”, and the cookie is then set. If the cookie is found, you’re considered a “repeat visitor”. These statistics are numeric only and are in no way traceable back to a particular visitor. Please see Analytics below for more information on this system.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Only basic numerical analytics are collected on my site, i.e. “100 unique visitors, 300 total page views” is the format these analytics are stored.
External services such as search engines like Google or advertisement providers like Facebook may collect their own independant analytics if you reached this site via them.
Who I share your data with
When using my site, especially leaving comments, my website will check the Gravatar service for the email which you used to leave the comment. If it’s found, the associated profile photo is downloaded and displayed for other users.
Some data (such as your IP address) is also sent to the Google reCaptcha service – this only happens when you are attempting to create a new account, or have failed to login twice consecutively.
How long I retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so I can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on my website (if any), I also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username due to technical limitations). Website administrators can also see and edit that information to a certain extent.
What rights you have over your data
If you have an account on my site, or have left comments, you can request to receive an exported file of the personal data I hold about you, including any data you have provided to me. You can also request that I erase any personal data I hold about you. This does not include any data I am obliged to keep for administrative, legal, or security purposes.
My contact information
I can be contacted via several means. Up-to-date information and a dedicated contact form is always displayed on my website’s Contact page and the footer of all posts & pages.
How I protect your data
I have taken as many measures as I am aware to protect you’re confidential information while it’s on my self-hosting server.
I’m constantly learning about security & upgrading my server.
What data breach procedures I have in place
If you feel your data may have been breached, please contact me as soon as practicable. When a potential breach is reported to me, I will always fully audit my server for potential issues.
If I find any issue that I believe may endanger personal data, I will inform all affected customers as soon as practicable.
What third parties I receive data from
When using my site, especially leaving comments, my website will check the Gravatar service for your email which you used to leave the comment. If it’s found, the associated profile photo is downloaded and displayed for other users.
Google reCaptcha is also integrated with my registration and login forms. The service processes information and informs my website if you pass, or fail it’s test.
What automated decision making and/or profiling I do with user data
Account registration is restricted by Google reCaptcha. If the service determines that you have a likelihood of being a robot, it will present you with a test. You cannot create a new account unless the service confirms that you are a human.
If you fail to login twice consecutively, e.g. because of a bad password, you will also be required to pass verification from Google reCaptcha to continue the log in process.
Industry regulatory disclosure requirements
I do not believe I am required to disclose any additional information.