Owner and data controller
Erratic engineeress blog (“us”, “we”, or “our”) found at https://erraticengineeress.blog (“Website”) is governed by the following privacy policy (“Privacy Policy”).
Contact email: Petra Jan at petra@erraticengineeress.blog
Last updated: 27th of September 2023
We are committed to protecting and respecting your privacy.
This Website collects some personal data from its users. This Privacy Policy informs you of our views, practices and policies regarding the collection, use and disclosure of personal data we receive from users of the Website.
By submitting personal data to us, you agree to us using your personal data as follows. For more information about the use of this Website, please also read the Disclaimer.
Information collection, purpose and use
While using our Website, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you. Personally identifiable information may include, but is not limited to name, email address, cookies, usage data, password. For example, you may voluntarily submit information to the Website by leaving a comment, subscribing to receive email notifications of new posts, or submitting a contact form. By leaving a comment, subscribing or submitting a contact form you consent to sharing this information with us and we will use it in accordance with this Privacy Policy.
This Website is hosted and runs on WordPress.com – WordPress Privacy Policy is available here https://wordpress.org/about/privacy/. By default WordPress does not collect any personal data about visitors, and only collects the data shown on the User Profile screen from registered users.
We may use your personal information to:
- send you our monthly newsletter or important updates (only if subscribed)
- manage contacts and send messages
- ensure that content from our site is presented in the most effective manner for you and for your computer
- provide you with information or services that you request from us which may be of interest to you
- carry out our obligations arising from any contracts entered into between you and us
- interact with external social networks and platforms (e.g. social media widgets and share bars)
- allow registration and authentication (e.g. affiliate portals and membership areas)
- allow access to third party services’ accounts
- monitor infrastructure (managed by WordPress)
- manage hosting and backend infrastructure (managed by WordPress)
- display content from external platforms (e.g. social media, YouTube)
- carry out commercial affiliation or remarketing (e.g. display ads)
- interact with support and feedback platforms
- manage user database
We collect information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer, household, or device. Personal information does not include:
- Publicly available information from government records
- Deidentified or aggregated consumer information
- Information excluded from the CCPA’s and GDPR’s scope
In particular, we have collected the following categories of personal information from our users within the last twelve (12) months:
| Examples | Collected |
A. Identifiers. | A real name, alias, postal address, unique personal identifier, online identifier, IP address, email address, account name, Social Security number, driver’s license number, passport number, or other similar identifiers. | YES |
B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)). | A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories. | YES |
C. Protected classification characteristics under California or federal law. | Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information). | NO |
D. Commercial information. | Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. | NO |
E. Biometric information. | Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data. | NO |
F. Internet or other similar network activity. | Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement. | YES |
G. Geolocation data. | Physical location or movements. | YES |
H. Sensory data. | Audio, electronic, visual, thermal, olfactory, or similar information. | NO |
I. Professional or employment- related information. | Current or past job history or performance evaluations. | NO |
J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)). | Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. | NO |
K. Inferences drawn from other personal information. | Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. | NO |
We obtain the categories of personal information listed above from the following categories of sources:
- Directly from you. For example, from forms or comments you submit.
- Indirectly from you. For example, from your browser while visiting our Website.
- From third parties. For example, from our business partners or service providers.
We do not intentionally collect or use the personal information of minors under sixteen (16) years of age or sell it with or without affirmative authorization. If a parent or guardian believes that the Website has personally identifiable information of a child under the age of 16 in its database, please contact us immediately at petra@erraticengineeress.blog and we will do our best to promptly remove such information from our records if it exists. Additionally, users below the age of sixteen (16) cannot consent to the use of Cookies and services as specified in the Privacy Preferences notice banner.
In addition to the above, we may collect log data and use cookies.
Log data
Like many websites, we collect information for us that your browser sends whenever you visit our Website.
This Log Data may include information such as your computer’s IP address, browser type, browser version, the pages of our Website that you visit, the time and date of your visit, the time spent on those pages and other statistics. The Log data collection is managed by WordPress.com and we do not have access to all information. Currently we only have access to the statistics related to this Website, not your IP address, browser type or browser version.
In addition, we may use third party services that collect, monitor and analyse this data. The user statistics of this Website are analysed and processed by Jetpack, which is part of Automattic. Jetpack Site Stats is a service to create detailed statistics about the user behavior on the website. No cookies in the technical sense are set on the client of the user, but technical and personal data such as the IP address will be transmitted from the client to the server of the service provider to make the use of the service possible. This information can be used to track the user on this website and to connect collected data of several page views on this website. the client of the user in the technical sense, but technical data is transferred from the client to the server of the service provider in order to track the user on this website and to connect collected data of several page views on this website.
We also use a third-party Aksimet anti-spam service that collects information about visitors who comment on the Website that includes the commenter’s IP address, user agent, referrer, and Site URL (along with other information directly provided by the commenter such as their name, username, email address, and the comment itself).
Cookies
Cookies are text files with a small amount of data, which may include an anonymous unique identifier.
Cookies are sent to your browser from a website and stored on your computer’s or tablet device’s or mobile device’s part of the hard drive specifically designated for cookies. It is standard practice to use cookies to make your experience better when using a website.
Like many sites, we use “cookies” to recognise, collect, and/or track information about, and relevant to, your usage of the Website.
Upon your first visit to the Website (and periodically after that), we will request your consent to our use of cookies except for those strictly necessary.
To manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents, we use the consent tool “Real Cookie Banner”. Details on how “Real Cookie Banner” works can be found at https://devowl.io/rcb/data-processing/.
The legal basis for the processing of personal data in this context are Art. 6 (1) lit. c GDPR and Art. 6 (1) lit. f GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.
The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.
The provision of the personal data is not yet contractually required and is also not necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.
Please refer to our Cookie Policy for information on what cookies we use, for what purposes we use cookies, and how to control cookies.
Data storage
Your personal data may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”).
By submitting your personal data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.
Lawful basis of processing data under the GDPR
We may process personal data relating to users if one of the following applies:
- users have given their consent for one or more specific purposes;
- provision of data is necessary for the performance of an agreement with the user and/or for any pre-contractual obligations thereof;
- processing is necessary for compliance with a legal obligation to which we are subject;
- processing is necessary for the purposes of the legitimate interests pursued by us or by a third party.
Data retention
We process and store your personal data for as long as required by the purpose they have been collected for.
Therefore:
- personal data collected for purposes related to the performance of a contract between us and the user will be retained until such contract has been fully performed;
- personal data collected for the purposes of our legitimate interests will be retained as long as needed to fulfill such purposes;
- we may be allowed to retain personal data for a longer period whenever the user has given consent to such processing, as long as such consent is not withdrawn;
- we may be obliged to retain personal data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority.
For example: if you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
If you submit a contact form your information will be retained up to 2 years by us as part of our records, but may be retained longer by the third party services associated with the contact form submission. If you subscribe to receive notifications of our new posts we will retain your information until you cancel the subscription, but it may be retained longer by third party services associated with the subscription process.
Once the retention period expires, personal data will be deleted and some of your rights (i.e. the right to access, the right to erasure, the right to rectification and the right to data portability) cannot be enforced after expiration of the retention period. You may find specific information regarding your rights within the relevant section of this Privacy Policy or by contacting us at petra@erraticengineeress.blog/via our contact form.
Third party disclosure
We do not sell, trade, or otherwise transfer to outside parties your personal information unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users (such as, for example, WordPress (hosting partner), Gmail (email provider), MailerLite (newsletter service), Aksimet (anti-spam comment service)…), so long as those parties agree to keep this information confidential. We may also release information when its release is appropriate to comply with the law, enforce our Website policies, or protect ours or others’ rights, property or safety.
However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.
In the preceding twelve (12) months, we have disclosed the following categories of personal information:
- Category A: Identifiers
- Category B: California Customer Records personal information categories
- Category F: Internet or other similar network activity.
- Category G: Geolocation data.
We disclose your personal information to the following categories of third parties:
- Professional service providers.
- Social Media Networks.
Your rights under the GDPR
Users based in the European Union have the right to do the following:
- Withdraw their consent at any time. Users have the right to withdraw consent where they have previously given their consent to the processing of their personal data.
- Object to processing of their data. Users have the right to object to the processing of their data if the processing is carried out on a legal basis other than consent.
- Access their data. Users have the right to learn if data is being processed by us, obtain disclosure regarding certain aspects of the processing and obtain a copy of the data undergoing processing.
- Verify and seek rectification. Users have the right to verify the accuracy of their data and ask for it to be updated or corrected.
- Restrict the processing of their data. Users have the right, under certain circumstances, to restrict the processing of their data. In this case, we will not process their data for any purpose other than storing it.
- Have their personal data deleted or otherwise removed. Users have the right, under certain circumstances, to obtain the erasure of their data from us.
- Receive their data and have it transferred to another controller. Users have the right to receive their data in a structured, commonly used and machine-readable format and, if technically feasible, to have it transmitted to another controller without any undue delay.
- Lodge a complaint. Users have the right to bring a claim before their competent data protection supervisory authority.
- You can exercise your right to prevent such processing by contacting us at petra@erraticengineeress.blog/via our contact form.
These requests can be exercised free of charge and will be addressed by us as soon as possible and always within thirty (30) days.
Your rights under the CCPA
Users who reside in California have the right to access their information and request any of the following:
- disclosure of the categories and specific pieces of personal information we have collected
- deletion of personal information we have collected from you
- disclosure of the categories of personal information we have collected, the categories of sources from which we collected it, the business or commercial purpose for collecting or selling it, the categories of third parties with whom we share it, and the specific pieces of personal information we have collected
- disclosure of the categories of personal information we collected or sold and the categories of third parties to whom it was sold
You have the right not to receive discriminatory treatment for the exercise of these privacy rights.
Users who reside in California have the right to opt out of the sale of personal information.
Under the CCPA, “sell,” “selling,” “sale,” or “sold,” means selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means, a consumer’s personal information by the business to another business or a third party for monetary or other valuable consideration.
As per the CCPA definition, selling personal information includes disclosing information to a third party by using analytics tools, running ads or having social media pixels and plugins installed.
Requests can be submitted by you or someone legally authorized to act on your behalf by email to petra@erraticengineeress.blog/via our contact form or the webform below.
These requests can be exercised free of charge and will be addressed by us as soon as possible and always within forty-five (45) days. We will not discriminate against you for exercising any of your CCPA rights.
Security
The security of your personal information is important to us.
Our Website security is managed by WordPress.com (hosting partner). The Website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit as safe as possible.
Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential.
In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology. We implement a variety of security measures when a user enters, submits, or accesses their information to maintain the safety of your personal information.
All transactions are processed through a gateway provider (e.g. PayPal) and are not stored or processed on our servers. Unfortunately, no method of transmission over the Internet is completely secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.
CalOPPA (California online privacy protection act)
We agree to users visiting our Website anonymously.
Do not track signals
Pursuant to the California Online Privacy Protection Act (CalOPPA), we hereby disclose that we do not currently honor “do not track” signals issued by browsers or other third-party sources.
COPPA (Children online privacy protection act)
For the collection of personal information from children under the age of thirteen (13) years old, we comply with the Children’s Online Privacy Protection Act (COPPA).
The Website is intended for individuals who are eighteen (18) years of age or older. By visiting and using the Website, you represent and warrant that you are of legal age and meet all of the foregoing eligibility requirements.
The Website is not intended for children under thirteen (13) years of age.
We do not specifically market to children under thirteen (13) years of age. We do not knowingly collect personal information from children under thirteen (13) years of age.
If you are under thirteen (13) years of age, please do not use the Website or provide any information on the Website, including your name, screen name, username, address, telephone number, email address, and payment details.
If we learn we have collected or received personal information from a child under thirteen (13) years of age without verification of consent from a parent or guardian, the personal information collected or received shall be deleted with no delay.
If you believe we might have any information concerning a child under thirteen (13) years of age, please contact us by email to petra@erraticengineeress.blog/via our contact form and we will endeavour to delete such information with no delay.
Changes to this Privacy Policy
This Privacy Policy is effective as of 2nd of August 2020 and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.
We reserve the right to update or change our Privacy Policy at any time and you should check this Privacy Policy periodically. Your continued use of our Website after we post any modifications to the Privacy Policy on this page will constitute your acknowledgement of the modifications and your consent to abide and be bound by the modified Privacy Policy.
If we make any material changes to this Privacy Policy, we will notify you either through the email address you have provided us, or by placing a prominent notice on our website. We will review and update our Privacy Policy if necessary at least once every twelve (12) months.
Additional information
Embedded content from other websites
Posts on this Website may include embedded content (e.g. videos, images, articles, etc., such as from Facebook, Instagram, YouTube or Pinterest). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website and their Privacy Policies apply.
Advertising – Retargeting ads
From time to time, this Website may engage in remarketing efforts with third-party companies, such as Google, Facebook, or Instagram, in order to increase the reach of this Website. These companies use cookies to serve ads based on someone’s past visits to the Website and their Privacy Policies apply.
Affiliate marketing participation
The Website may engage in affiliate marketing, which is done by embedding tracking links into the Website. If you click on a link for an affiliate partnership, a cookie will be placed on your browser to track any sales for purposes of commissions. We may receive a commission for your purchase at no additional cost for you. The presence of any affiliate links on a page or post you are visiting will be disclosed in advance, before the links.
Sensitive personal information
At no time should you submit any kind of sensitive personal information to the Website. This includes your passport or identity document details, information regarding race or ethnic origin, health information, criminal background, trade union memberships… If you elect to submit such information to us, it will be subject to this Privacy Policy.
Contact information
Please contact us at petra@erraticengineeress.blog for questions related to this Privacy Policy at any time.