Who we are
The sole author on this website is Bruce Steinberg. The website address is: https://www.readinggeorgefox.com.
What personal data we collect and why we collect it
This website has only accepted comments for a short time via Webmentions. That ability has been removed and comments are no longer accepted. When Webmentions were accepted, the URL and IP address of the originating post on your website was collected. This data was collected as part of your voluntary use of the comment system.
If you would like your comment removed, please contact me via the contact form. This website is a personal site, so it may take me a few days to respond to your request. Also, nightly backups are made and kept for 14 days. I will reply to your request upon removing the comment and 14 days after, I will no longer have any trace of it. However, you are responsible for removing the originating post on your website.
The Contact Form collects the name, email address, and comment that you enter as well as your website’s URL if you choose to include it. Your IP address is collected as well. This data is collected as part of your voluntary use of the contact form and is used to respond to your message. The only other use of your contact information would be to contact you in the case of a data breach. It is not used for any other purposes, including marketing purposes.
If you contact me to remove an earlier message or all your personal data, I will permanent delete the messages. Once again, 14 days after the deletion, all the backups containing your personal data will be purged.
This website does set a cookie in your browser. The cookie contains no information and is not used to track your visits. I am researching how to stop setting this cookie entirely.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
This data is collected as a result of embedding content which is essential to the post containing it. As we do not have access to this data, you must contact the website from which the embedded content originated.
Micro.blog hosted sites
This website also contains links to my Micro.blog hosted websites. I do not collect any personal data on those sites. Their service collects your IP address. If you are signed into you Micro.blog account, they may collect more data. Contact firstname.lastname@example.org for any questions about your personal data that they collect.
No analytics are used on this website.
Who we share your data with
When you posted a comment via a webmention (no form of comment is currently accepted) or use the contact form, your message is checked through an Automattic’s Akismet spam detection service. No other data is shared with any person, company, or service. This site also sends data to Automattic’s Jetpack service to prevent malicious login attempts. See below for more details.
How long we retain your data
If you have left a comment via webmention, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue. If you have contacted me through the contact form, the message and its metadata are retained indefinitely as well. This is to retain a record of our correspondence and to contact you in the case of a data breach.
Contact me via the form and I will remove your comments and/or messages and their metadata.
What rights you have over your data
If you have left comments or sent messages through the contact form, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
When you posted a comment via a webmention (no form of comment is currently accepted) or use the contact form, your message is checked through Automattic’s Akismet spam detection service. See below for more details.
Your contact information
You may contact me, Bruce Steinberg, via the contact form.
As via the Webmention standard, a link to the originating post of your comment is publicaly available.
How we protect your data
This website is set up to automatically install WordPress updates and will receive security updates the day they are issued by Automattic. I also regularly check and update the plugins as well. I may wait until the plugins are confirmed to be compatible with the version of WordPress that the site is running, unless the plugin release notes mention a security fix. In that case, I will update the plugin immediately.
This website also uses a two-factor authentication plugin and a plugin to obscure the login page. The only user accounts are an admin account and a writer account, both of which only I have access to. Both accounts are protected by a different long random password generated by a password manager program.
The Jetpack plugin is set to protect against brute force login attempts.
My web host DreamPress provides an SSL certificate and the website uses a plugin which ensures that your browser connects over https, unless you have manually disabled that ability in your browser.
What data breach procedures we have in place
If a data breach occurs, we will contact you via the contact info you have provided us.
What third parties we receive data from
This website does not receive data from any third parties.
Really Simple SSL
Your submission data is stored in this site’s database and is emailed directly to me. This email will include the submitter’s IP address (for abuse prevention), timestamp, name, email address, website, and message. If you contact me to delete your messages, I will delete said email as well. See the Contact Form section above for more details.
Jetpack syncs post and post meta data associated with a user’s contact form submission to a shadow site on the WordPress.com servers. More details can be found here.
The contact form submission data (IP address, user agent, email address, site URL, and comment) is submitted to the Akismet service (also owned by Automattic) for spam checking. See the Akismet section above for more details.
If you do not attempt to log into this site no information is gathered. In other words, unless you are deliberately trying to sign in with permission, none of this applies to you. There are no links to the login page on the public portions of this site.
In order to check login activity and potentially block fraudulent attempts, the following information is used: attempting user’s IP address, attempting user’s email address/username (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user.
Upon failed login attempts, Jetpack sets a cookie (jpp_math_pass) for 1 day to remember if/when a user has successfully completed a math captcha to prove that they’re a real human. Learn more about this cookie.
Failed login attempts, which contain the user’s IP address, attempted username or email address, and user agent information are synced to a shadow site on the WordPress.com servers. More details can be found here.