Privacy matters. At least, mine does to me. For those who live in European Union, it also happens to be the law.
To that end, I have worked in my own small way to reduce the amount of online tracking and increase the level of privacy in my own life. I also try to ensure these steps are embodied in the code of all winter.ink websites.
I accept this is not an exact process. Systems which are today given a clean bill of health by security experts, are found to be security flawed tomorrow. This means that while the notion of security is fairly consistent, what constitutes secure online practice is ever changing. In that context, I am constantly working to evolve my own practices and winter.ink websites will also continue to evolve to implement best practices where possible.
1. HTTPS by Default
This ensures that your connection to this website is always encrypted. Though not a crucial issue for many, given all information on this website is accessible to the public, it does mean that any data you input while here only goes to the places it should with no spying eyes intercepting the connection.
It also means that for those who are uncomfortable being seen in public reading thinkers like Edmund Burke, Alexis de Tocqueville, Benjamin Disraeli or Friedrich Nietzsche, your interests can remain yours and yours alone.
For those not wanting to leave your online security to chance, but not sure where to begin, the Privacy Tools website has some great resources. Including an in-depth guide for how to secure your browser.
This site is powered by Ghost(Pro) and is bound by their GDPR data processing agreement. All Ghost(Pro) servers are located in Amsterdam, The Netherlands. Their publicly available Data Processing Agreement is below can be read here:
Plausible has been implemented as the analytics platform for this website. This is because even though the purpose of Plausible Analytics is to track usage, it can and is done:
without collecting any personal data or personally identifiable information (PII), without using cookies and while respecting the privacy of the website visitors.
Plausible is GDPR, CCPA and cookie law compliant. You can read their full Data Policy here:
During your visit, Plausible will collect:
|Page URL||https://robert.winter.ink/about/||Plausible track the page URL of each page view on this website. They use this to show which pages have been viewed and how many times a particular page has been viewed. |
The hostname and path are collected. Query parameters are discarded, except for these special query parameters:
|HTTP Referer||https://twitter.com||Plausible use the referrer string to show you the number of visitors referred to this website from links on other sites.|
|Browser||Firefox||This is used to show what browsers people use when visiting this website. This is derived from the User-Agent HTTP header. The full User-Agent is discarded.|
|Operating system||Linux||This is used to show what operating systems people use when visiting this website. It only shows the brand of the operating system and does not include the version number or any other details. This is derived from the User-Agent HTTP header. The full User-Agent is discarded.|
|Device type||Desktop||This is used to show what devices people use when visiting this website. This is derived from window.innerWidth. The actual width of the browser in pixels is discarded.|
|Visitor Country||United Kingdom||The visitor’s country is derived using their IP address. Plausible do not track anything more granular than the country of origin and the IP address of the visitor is discarded. Plausible never store IP addresses in their database or logs.|
4. Information You Provide
If you sign up to receive the Winter Ink newsletter, any details you provide are only used for the delivery of the newsletter. They will never be shared with third parties. The Winter Ink newsletter uses the Mailchimp platform.
This is where things get a little sticky as their servers are located in the United States. But, because Mailchimp certifies to the EU/Swiss Privacy Shield framework and the GDPR, they can lawfully receive EU data.
If you are one of the kind people to donate to Winter Ink — thank you! — you provide your name, donation amount, and payment card information. The transaction is handled by the financial service provider PayPal, who will receive your payment information. This information will only be used to process your donation. If you support on an automatic monthly or yearly basis, you can cancel your recurring donation at any time.
If you do not want PayPal to log your donation, you can also use crypto for a more privacy respecting way to donate.
The form on the contact page uses Mailchimp infrastructure and is covered by the section above which outlines Mailchimp data practices and compliance.
If you don't want your message passing through Mailchimp systems, you can contact me directly via email or a social network platform. Links to my profiles and direct email are to be found on my contact page.
If you contact me directly via email, either by writing to me directly or by replying to the automated email newsletter, I will receive your email address and any other information you choose to provide. My direct email services are provided by ProtonMail and you can use the public key on my contact page if you want to send something end-to-end encrypted.
5. Information Usage
Any information you provide will only be used to communicate with you, if you have opted to receive a newsletter, to facilitate donations, and to better understand how you use the site in order to continue its development. Your information will no be shared with any 'third parties,' though it does live — securely — within the services that deliver this site. Ghost(Pro) (publishing platform), MailChimp (newsletter) and PayPal (donations processing).