Privacy Policy / GDPR Statement

Personal Data
    Under the EU’s General Data Protection Regulation (GDPR) personal data is defined as:

    1. “any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person”.
  • This Privacy Policy applies to all data subjects whose personal data is collected, in line with GDPR requirements.
  • The author of this website is responsible for ensuring its data subjects (users) are made aware of this Privacy Policy prior to data collection occurring, as far as reasonably possible.
Privacy Policy
  • Who I Am
    • My website address is The content hosted there is primarily a blog. It is written and owned by the same person and aims to provide its users with educational content.
    • I can be contacted about GDPR related requests at: [email protected] (use ‘GDPR’ as Subject) and I will respond to requests ASAP.
  • Data Collected
    • Data that is collected about site users:
NameDirectly from you (required only if leaving a comment)To distinguish between users in the comments section of blog postsIndefinitelyHosted securely at
Email AddressDirectly from you (required only if leaving a comment)To leave comments on WordPress powered websitesIndefinitelyHosted securely at
WebsiteDirectly from you (optional field and only if leaving a comment)This field exists only as it came bundled with a theme, I will not use any information provided hereIndefinitelyHosted securely at
CommentDirectly from you (required if leaving a comment)To allow users to communicate with myself or other users via comment sectionIndefinitelyHosted securely at
IP AddressObtained from you indirectly, as a result of you browsing to protect the website and its users from malicious web activity and attacks(Indefinitely – WordPress)

(60 days – iThemes Security Plugin Logs)

(3 days – iThemes Security Plugin Backup Logs)

Hosted securely at
Web Browser User AgentObtained from you indirectly (if leaving a comment)To detect and block spam content for the benefit of the site owner and its usersIndefinitelyHosted securely at
  • Consent
    • By consenting to this Privacy Policy you are giving me permission to process your personal data specifically for the purposes outlined.
    • Consent is obtained by accepting the Cookie banner upon visiting the website for the first time AND
    • By posting a comment to the website along with the required fields (there is a disclaimer under each blog post instructing the user to read the Privacy Policy before they proceed to comment).
    • Consent can be withdrawn by:
      1. blocking the Cookies used on the website AND
      2. by not posting comments to the website OR
      3. by requesting to have your data removed if a comment has already been posted

  • Third Parties
    • ‘iThemes Security WordPress Plugin’
      • “This site is scanned for potential malware and vulnerabilities by Sucuri’s SiteCheck. We do not send personal information to Sucuri; however, Sucuri could find personal information posted publicly (such as in comments) during their scan. For more details, please see Sucuri’s privacy policy.”
      • “This site is part of a network of sites that protect against distributed brute force attacks. To enable this protection, the IP address of visitors attempting to log into the site (hack) is shared with a service provided by For privacy policy details, please see the iThemes Privacy Policy.”

    • ‘LiteSpeed Cache Plugin’
      • This site utilizes caching in order to facilitate a faster response time and better user experience. Caching potentially stores a duplicate copy (locally) of every web page that is on display on this site. All cache files are temporary, and are never accessed by any third party, except as necessary to obtain technical support from the cache plugin vendor. Cache files expire on a schedule set by the site administrator, but may easily be purged by the admin before their natural expiration, if requested.

    • ‘WordPress’ (Leaving Comments)
      • An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.
  • Embedded Content
    • Blog posts on this site usually include embedded content (e.g. links to other websites). These websites usually collect data about you, use cookies, embed third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Your Rights as a Data Subject
  • While in possession of, or processing, your personal data, you have the following rights:
    • Right of access – you have the right to request a copy of the information that we hold about you.
    • Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete.
    • Right to be forgotten – in certain circumstances you can ask for the data we hold about you to be erased from our records.
    • Right to restriction of processing – where certain conditions apply to have a right to restrict the processing.
    • Right of portability – you have the right to have the data we hold about you transferred to another organization.
    • Right to object – you have the right to object to certain types of processing such as direct marketing.
    • Right to object to automated processing, including profiling – you also have the right to be subject to the legal effects of automated processing or profiling.
    • Right to judicial review: in the event that refuses your request under rights of access, we will provide you with a reason as to why. You have the right to complain.
Data Removal

To request a copy / amend  / have deleted any of your personal information, contact me at [email protected] (use ‘GDPR’ as Subject) and I will honour your request.

Cookie Policy

This website uses the following cookies:

Cookie NamePurposeExpires AfterExample of DataCountry of Origin
__cfduidUsed to identify individual clients behind a shared IP address and apply security settings on a per-client basis. E.g. if a visitor is in a coffee shop where there may be several infected machines, but the specific visitor’s machine is trusted (e.g., they completed a challenge within your Challenge Passage period), the cookie allows Cloudflare to identify that client and not challenge them again. It does not correspond to any user ID in your web application, and does not store any personally identifiable information.1 yearda4a344fc4975ce2f2d47c
United States
CookieConsentStores the user’s cookie consent state for the domain year{stamp:’8FA6Uirnot8qJJ

Privacy Policy Revision History



Description of Change


Date of Issue


  • Initial Issue

Cyber Minimalist

10th Oct. 2018


  • iThemes Security Plugin – now keeps 3 days worth of Backup Security Logs that can contain a visitor’s IP address

  • Revised wording in Embedded Content section, from ‘sometimes’ to ‘usually’. More accurately reflects likelihood of this website containing links to other websites / resources

Cyber Minimalist

6th Nov. 2018