TL;DR
- I do not collect names, emails or run user accounts.
- The site only uses Google Analytics (anonymised GA4) to collect non-identifying visitor statistics to improve SEO and reader experience.
- Analytics cookies are placed only after you give active consent via the cookie banner.
- If you email me, that message is kept only to reply, otherwise I don’t store contact details.
- Questions, data requests or deletion requests: write@tonyskorik.dev.
Who we are
This is a personal blog. I do not run user accounts, there is nothing for sale, and I do not collect personal data from visitors except anonymised analytics (see “Analytics” below). Cookies and tracking are described in the Cookie Policy; analytics cookies are set only after you give active consent via the cookie banner. Website: https://tonyskorik.dev.
What personal data we collect and why we collect it
Comments. When you leave a comment we collect the information you enter (for example: name, email and the comment), plus your IP address and browser user-agent. IP and user-agent are used only for spam prevention, moderation and site security. Lawful basis: your consent to publish the comment; we also rely on legitimate interests for spam prevention and security. Comments and their metadata are retained until you request deletion. To request removal, contact write@tonyskorik.dev.
Profile images (Gravatar). If you use Gravatar an anonymised hash of your email may be sent to the Gravatar service to check for and fetch your avatar. Gravatar’s privacy policy applies: https://automattic.com/privacy/.
Analytics. I use Google Analytics 4 (GA4) to collect aggregated, non-identifying statistics (page views, device type, referral source). Analytics run only after you give active consent via the cookie banner. GA4 is configured to minimise IP collection and to provide only anonymised/aggregate reports; retention is limited according to the analytics settings in use. Lawful basis: consent.
Contact emails. If you email write@tonyskorik.dev I will retain your message and email address only to reply. I do not add addresses to mailing lists or use them for marketing. You may request deletion at any time.
Media / EXIF data. If you provide images for publication, remove any embedded location data (EXIF GPS) before sending, anyone who downloads an image can extract such data.
Third-party embeds. Articles may include embedded content (videos, widgets, etc.). Embedded content is controlled by the third party and may collect data under its own policies; I do not control that processing.
Cookies
Analytics cookies are classed as statistics cookies and are placed only after you give active consent via the cookie banner. Essential functional cookies required for the operation of the website (if any) are strictly limited and do not require consent. For full details see our Cookie Policy.
Who we share your data with
Google LLC — processes anonymised analytics on our behalf (Google Analytics 4).
Automattic / Gravatar — only if you use Gravatar (avatar hash lookups).
Service providers — hosting, CDN, and spam-detection services may process limited data (IP, user-agent, logs) to deliver or protect the site.
I do not sell data or share it for marketing purposes.
How long we retain your data
Comments and comment metadata: retained until you request deletion.
Analytics data (GA4): retained according to the GA4 property settings — recommended default: 14 months.
Contact emails: retained only as long as needed to reply and for routine recordkeeping (normally no longer than 12 months unless you request earlier deletion).
Logs / security-related data (IP, user-agent for moderation): retained only as required for security and abuse prevention; kept no longer than necessary.
What rights you have over your data
Under the UK GDPR you have the right to:
- access the personal data I hold about you;
- request rectification or erasure (right to be forgotten);
- restrict or object to processing;
- withdraw consent (for cookies/analytics) at any time.
To exercise any right, contact write@tonyskorik.dev
International transfers
Google (and some third parties) may process or store data outside the UK. Google provides EU/UK-focused processing controls and safeguards; where data is transferred outside the UK appropriate safeguards (Google’s contractual/data processing terms and other measures) apply. You can review Google’s EU-focused Analytics information for details.
Security
I take reasonable technical and organisational steps to protect data (secure hosting, HTTPS, limited access to data stores, minimal data collection). Absolute security cannot be guaranteed; access to analytics and site admin is limited to authorised persons only.
This Privacy Policy was updated on September 5, 2025.