Privacy Policy

calendar Oct 31, 2025 · 5 min read ·
Share: linkedin copy

Last Updated: October 31, 2025

Overview

glyph.sh is committed to protecting your privacy. This policy explains our data practices.

Data Collection

This site uses Google Analytics 4, a web analytics service provided by Google LLC (“Google”), to understand website traffic and improve content.

What Google Analytics Collects:

  • Page views and session duration
  • Browser type and device category
  • Geographic location (city/country level)
  • Referral sources (how you found this site)
  • Anonymous usage patterns
  • Device identifiers and cookies

What We Do NOT Collect:

  • Personally identifiable information (names, emails, etc.)
  • User accounts or login data
  • Form submissions (contact is via email only)
  • Precise location beyond city level

How Google Uses Your Information:

Google Analytics processes data on our behalf to provide website analytics. Learn more:

Cookies

Google Analytics sets cookies to:

  • Distinguish unique visitors
  • Track session duration
  • Remember previous visits

These cookies:

  • Are set and controlled by Google, not by us
  • Are subject to Google’s Privacy Policy
  • Can be blocked using browser settings or ad blockers
  • Do not directly contain personally identifiable information
  • May use device identifiers (e.g., Android Advertising ID, iOS Advertising Identifier)

Cookie Consent:

By using this website, you consent to the use of cookies for analytics purposes. Where legally required (e.g., under GDPR), we make commercially reasonable efforts to ensure you are informed about and consent to cookie usage.

To opt out of Google Analytics:

Local Storage

This site uses browser localStorage to store your color mode preference (light/dark theme). This data:

  • Stays entirely on your device
  • Is never transmitted to any server
  • Contains only a single value: 'lit' or 'dim'
  • Can be cleared by clearing your browser data
  • Is not used for tracking or analytics

Server Logs

AWS CloudFront logging is currently disabled for this site. We do not collect server-side logs.

If enabled in the future, CloudFront logs would contain:

  • IP addresses (for DDoS protection and diagnostics)
  • Request timestamps
  • User agents
  • Retention: 90 days maximum
  • Use: Security and diagnostics only
  • Not shared with third parties

This site links to external services (GitHub, LinkedIn, etc.). Their privacy policies apply when you visit them.

International Data Transfers

Google Analytics processes data globally. If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, your data may be transferred to and processed in the United States and other countries.

Google uses Standard Contractual Clauses approved by the European Commission to protect international data transfers. Learn more at Google’s Privacy & Terms.

Your Privacy Rights

Depending on your location, you may have certain rights regarding your data:

For EU/UK/Swiss Residents (GDPR):

  • Right to Access: Request information about data we process
  • Right to Rectification: Correct inaccurate data
  • Right to Erasure: Request deletion of your data
  • Right to Restriction: Limit how we process your data
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to data processing
  • Right to Withdraw Consent: Withdraw consent at any time

For California Residents (CCPA):

  • Right to know what data is collected
  • Right to request deletion
  • Right to opt-out of data “sales” (we do not sell data)

For All Users:

  • Opt-out of Analytics: Use browser settings or Google’s opt-out tool
  • Clear Local Data: Delete localStorage via browser settings

How to Exercise Your Rights:

For Google Analytics data:

For site-specific inquiries:

Response Time: We aim to respond to privacy requests within 30 days.

Data Retention

Google Analytics:

  • Google retains analytics data based on your settings (default: 14 months)
  • You can configure retention periods in Google Analytics settings
  • Data may be retained longer for legal or security purposes
  • Learn more: Google Analytics Data Retention

Local Storage:

  • Theme preference stored indefinitely until you clear browser data
  • No expiration date set

Server Logs:

  • Currently disabled; if enabled, retained for maximum 90 days

Data Security

We take reasonable measures to protect your data:

Google’s Security:

  • Industry-standard encryption for data in transit and at rest
  • ISO 27001 certified security practices
  • Regular security audits and updates
  • Details: Google Cloud Security

Our Practices:

  • HTTPS encryption for all connections
  • Strict security headers (CSP, HSTS, etc.)
  • No collection of passwords or payment information
  • Minimal data collection overall

Breach Notification:

In the unlikely event of a data breach affecting your information, we will:

  • Notify affected users within 72 hours (where required by law)
  • Report to relevant authorities as legally required
  • Take immediate steps to secure the site

Children’s Privacy

This site does not knowingly collect data from children under 13 (or 16 in the EU). If you believe a child has provided us with personal information, contact us immediately at KevinKessler@ProtonMail.com.

Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated “Last Updated” date. Significant changes may be announced more prominently.

Last Updated: October 31, 2025

This privacy policy is designed to comply with:

  • GDPR (EU General Data Protection Regulation)
  • CCPA (California Consumer Privacy Act)
  • UK Data Protection Act 2018
  • Google Analytics Terms of Service
  • Other applicable data protection laws

Contact

Privacy questions or requests? Email: KevinKessler@ProtonMail.com

Data Protection Officer: Not required (small-scale processing)

By using this website, you acknowledge that you have read and understood this Privacy Policy.