Privacy Policy

Effective Date: July 1, 2025 Last Reviewed: July 1, 2025

At-a-Glance

  • We collect minimal data for site operation, security, analytics, ads, comments & newsletters
  • You control cookies, comment settings & email preferences, and can request data deletion anytime
  • We rely on Google (Analytics, AdSense, reCAPTCHA), Mailchimp, Cloudflare & Discuss—see their sites for full details
  • Data is retained only as long as each service’s default settings require
  • You have rights under GDPR, CCPA & CASL: access, correction, deletion, portability, withdraw consent

Table of Contents

  • Who We Are & How to Contact Us
  • What We Collect & Why
  • Cookies & “Just-in-Time” Notices
  • Third-Party Services & Links
  • Data Retention
  • Your Rights & How to Exercise Them
  • Security & Abuse-Prevention
  • Children’s Privacy
  • Policy Changes

  1. Who We Are & How to Contact Us dalvir.ca is a static site built with Jekyll and served via Cloudflare Pages. Questions or data-requests? Visit: https://dalvir.ca/contact

  2. What We Collect & Why A. Essential Site Data (automatic)
    • IP address, device/browser type, page loads, errors
    • Collected by Google Analytics and Cloudflare logs
    • Purpose: ensure site availability, track performance, diagnose outages B. Security & Bot-Prevention (automatic)
    • Google reCAPTCHA collects device signals, interaction data, cookies & IP
    • Purpose: block spam, bots & automated abuse on forms C. Analytics & Improvement (automatic) We use Google Analytics 4 (GA4) and Cloudflare’s analytics features to understand and enhance your experience. By default, they collect: Google Analytics (GA4)
    • Hit-level events: page_view, session_start, first_visit, user_engagement
    • Enhanced Measurement (optional): scrolls, outbound clicks, site_search, video events, file_downloads
    • Session & user metrics: users, sessions, engagement_time, bounce_rate
    • Geolocation: country, region, city (approximate)
    • Device & browser: category (desktop, mobile, tablet), OS, browser, screen_resolution, language
    • Identifiers: client_id (_ga cookie), optional user_id, advertising IDs (if enabled)
    • Traffic/campaign: referrer, UTM parameters (source, medium, campaign, term, content)
    • Demographics & interests (if enabled): age_range, gender, affinity_categories, in_market_segments Cloudflare Analytics
    • HTTP request logs: timestamp, hostname, URI, method, status code, sizes
    • Network/TLS data: country, ASN, TLS version, cipher, HTTP version
    • Performance: cache hit/miss, bandwidth, request rates
    • Security: firewall rule matches, DDoS events, bot challenge results Purpose: measure usage patterns, popular content, conversion paths, detect performance issues, and guide improvements. D. Advertising (automatic)
    • Google AdSense uses cookies & identifiers to serve relevant ads
    • Purpose: monetize the site E. Community & Comments (user-provided)
    • Via Discuss: name (optional), email (optional), website, comment content, timestamp, IP, user-agent
    • Purpose: engage in discussion, moderate spam (with reCAPTCHA) F. Newsletters & Emails (user-provided)
    • Via Mailchimp: name, email, signup IP, timestamps, engagement metrics (opens, clicks)
    • Purpose: send updates to subscribers (you can unsubscribe anytime)
  3. Cookies & “Just-in-Time” Notices We use four categories of cookies:
    • Essential (site functionality)
    • Functional (your preferences)
    • Analytics (GA4)
    • Marketing (AdSense) At each form (comment, signup), a tooltip reminds you which data is collected and why, linking back to this section. You can adjust cookie settings via our banner or your browser controls.
  4. Third-Party Services & Links We partner with—and encourage you to review—each provider’s own policy:
    • Google Analytics & AdSense: https://policies.google.com/privacy
    • Google reCAPTCHA: https://policies.google.com/privacy
    • Mailchimp: https://mailchimp.com/legal/privacy/
    • Cloudflare: https://www.cloudflare.com/privacypolicy/
    • Discuss comment system: see its host’s policy
  5. Data Retention We retain data only as long as each service’s default settings specify:
    • Google Analytics: 14 months (default GA4) unless adjusted
    • Cloudflare logs: up to 24 months for performance/security
    • Comments: until you request removal or content retirement
    • Mailchimp subscribers: until you unsubscribe or request deletion To delete or anonymize your data, contact us at https://dalvir.ca/contact.
  6. Your Rights & How to Exercise Them Under GDPR, CCPA & CASL, you may at any time via our contact page:
    • Access, correct, port, or delete your personal data
    • Withdraw consent or object to processing
    • Opt-out of marketing emails (we’ll confirm within 30 days) We do not sell personal data and won’t penalize you for exercising your rights.

  7. Security & Abuse-Prevention We enforce HTTPS/TLS, Cloudflare’s DDoS protection, and Google reCAPTCHA. While we follow industry best practices, no system is infallible—please protect your own credentials.

  8. Children’s Privacy dalvir.ca is not intended for users under 16. We do not knowingly collect data from minors. If you believe we have, please request removal via our contact page.

  9. Policy Changes We review and update this policy at least annually or when we add new services. Changes become effective upon posting; the “Last Reviewed” date above will reflect the update.