Privacy Policy

Last updated: August 31, 2025

This privacy policy explains how korczas.dev collects, uses, and protects your information when you visit our website. We are committed to maintaining your privacy and being transparent about our data practices.

Our Privacy-First Approach

korczas.dev is designed with privacy as a fundamental principle. We collect minimal data, use cookie-free analytics, and respect your privacy rights without requiring consent banners or complex privacy settings.

Analytics & Data Collection

Google Analytics 4 (Cookieless Mode)

We use Google Analytics 4 in a privacy-friendly configuration that prioritizes your anonymity:

• No cookies are stored on your device
• IP addresses are anonymized immediately upon collection
• No personal identification is possible from our analytics data
• No advertising features are enabled
• No cross-site tracking occurs
• No user profiles are created
• Google Signals are disabled preventing demographic reporting

What We Collect

We collect only anonymized, aggregate data to understand how our website is used:

• Page views and site navigation patterns
• General geographic location (country/city level only)
• Device type and browser information
• Referral sources (how you found our site)
• Time spent on pages and bounce rates
• Search terms used within our site
• Reading progress on blog posts (milestone tracking at 25%, 50%, 75%, and 100%)
• Social sharing interactions (which platform buttons are clicked: Twitter, LinkedIn, Facebook)
• User interactions with site elements (navigation clicks, timeline expansions, contact link clicks)
• Active engagement time (measured using Page Visibility API to distinguish active from passive browsing)
• Content engagement patterns (which blog topics and timeline sections are viewed)
• Scroll depth milestones (25%, 50%, 75%, and 90% page progress)

What We Don't Collect

• Personal identifying information
• Email addresses (unless voluntarily provided)
• Precise location data
• Browsing history from other websites
• Any data that could be used to identify you personally

Blog Comments

If you choose to leave a comment on our blog posts:

• We store your provided name and email address
• Your email is never displayed publicly or shared with third parties
• Comments are moderated before publication to maintain quality
• We may use content moderation services to filter inappropriate content
• You can request deletion of your comments at any time
• Comment data is stored locally and not shared with external services

Contact Forms & Communication

When you contact us through email or contact forms:

• We use the information solely to respond to your inquiry
• Your information is not added to mailing lists without explicit consent
• Communication records are kept only as long as necessary
• No third parties have access to your contact information

Data Storage & Security

Where Your Data is Stored

• Analytics data: Processed by Google Analytics (anonymized)
• Comment data: Stored locally on our secure servers
• Contact inquiries: Processed through secure email systems

Security Measures

• All data transmissions are encrypted (HTTPS)
• Server access is restricted and monitored
• Regular security updates and monitoring
• Minimal data collection reduces exposure risk

Your Privacy Rights

You have the following rights regarding your personal data:

• Right to Access: Request information about data we have about you
• Right to Rectification: Correct any inaccurate personal data
• Right to Erasure: Request deletion of your personal data
• Right to Portability: Receive your data in a structured format
• Right to Object: Opt-out of data processing for legitimate interests
• Right to Withdraw Consent: Remove consent for data processing

Legal Compliance

GDPR Compliance (EU)

Our practices comply with the General Data Protection Regulation:

• Lawful basis for processing: Legitimate interest in website improvement
• Data minimization: We collect only necessary data
• Transparency: This policy explains all data practices
• User rights: Full rights enumerated above

CCPA Compliance (California)

California residents have additional rights under the California Consumer Privacy Act:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of the sale of personal information (we don't sell data)
• Right to non-discrimination for exercising privacy rights

Third-Party Services

Google Analytics

We use Google Analytics 4 with enhanced privacy settings. Google may process data according to their privacy policy, but our configuration prevents personal identification.

• Google's Privacy Policy: https://policies.google.com/privacy
• Opt-out: Google Analytics Opt-out Browser Add-on

Other Services

We may occasionally use other services for functionality improvements:

• Content Delivery Networks (CDNs) for faster loading
• Security services for protection against attacks
• These services operate under their own privacy policies

Data Retention

• Analytics data: Automatically deleted after 26 months (Google's default)
• Comment data: Retained until manually deleted or upon request
• Contact communications: Deleted after resolution unless ongoing relationship
• Server logs: Automatically rotated and deleted after 30 days

Children's Privacy

Our website is not directed at children under 13 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child under 13, please contact us immediately.

International Data Transfers

While we aim to minimize data transfers, some services may process data internationally:

• Google Analytics may process data in the US or other countries
• All transfers comply with applicable data protection regulations
• Adequate protection measures are in place for international transfers

Policy Updates

This privacy policy may be updated to reflect changes in our practices or legal requirements:

• Material changes will be prominently announced on our website
• The "Last Updated" date at the top indicates the latest revision
• Continued use of our website constitutes acceptance of updates
• You can request notification of policy changes

Contact Information

For privacy-related questions, requests, or concerns, please contact us:

• Email: [email protected]
• Alternative Email: [email protected]
• Response Time: We aim to respond within 30 days

Technical Implementation

For transparency, here's how we implement privacy-first analytics:

• Analytics storage is denied in consent settings
• Client storage is set to 'none'
• IP anonymization is enabled
• Google Signals are disabled
• Ad personalization is disabled
• Restricted data processing is enabled
• Reading progress measured at specific milestones (25%, 50%, 75%, 100%) without storing reading history
• Page Visibility API used to distinguish active engagement from passive browsing time
• All time measurements rounded to nearest 5 seconds to prevent fingerprinting
• Social sharing tracking limited to platform identification (no shared content or personal data)
• Interaction tracking captures anonymous usage patterns without user identification

This privacy policy demonstrates our commitment to transparency and user privacy. We believe in collecting only what's necessary and being completely open about our practices.