1. Introduction
This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you visit and interact with our website, https://timothylombardo.com/ (“Website”). We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR).
2. Data Controller
For the purpose of the GDPR, the data controller is Timothy Lombardo, contactable via the Website’s contact form.
3. Information We Collect
We collect the following types of information: 3.1 Information You Provide to Us: * Comments: When you leave a comment, we collect the data you provide in the comments form, including your name, email address, website (if provided), and the comment itself. * Contact Form: If you use our contact form, we collect the information you provide, such as your name and email address. 3.2 Information Collected Automatically: * Log Data: Like many websites, we collect information that your browser sends whenever you visit our Website (“Log Data”). This Log Data may include your computer’s Internet Protocol (“IP”) address, browser type, browser version, the pages of our Website that you visit, the time and date of your visit, the time spent on those pages, and other statistics. * Cookies: We use cookies and similar tracking technologies (“Cookies”) to track the activity on our Website and hold certain information. Cookies are files with a small amount of data that may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. You can instruct your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if you do not accept Cookies, you may not be able to use some portions of our Website.
4. How We Use Your Information
We use the information we collect for various purposes, including to: * Provide and Maintain our Website: To operate, maintain, and improve the Website and its functionality. * Respond to Your Requests: To respond to your comments, questions, and requests, and provide customer support. * Improve and Personalize Your Experience: To understand how our Website is used and to make improvements. * Send You Information: To send you information about our services, updates, and marketing materials (if you have opted-in to receive such communications). * Prevent Fraud and Abuse: To detect, prevent, and address technical issues, security vulnerabilities, and potential illegal or prohibited activities.
5. Legal Basis for Processing Personal Data
Our legal basis for processing your personal data under GDPR is: * Consent: When you provide us with your personal data to leave a comment or use our contact form, you consent to the processing of your data for the purposes described in this Privacy Policy. * Legitimate Interests: We may process your data for our legitimate interests, such as to improve our Website, prevent fraud, and for direct marketing purposes.
6. Comments
When visitors leave comments on the site, we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/ . After approval of your comment, your profile picture is visible to the public in the context of your comment.
7. Media
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
8. Cookies
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
9. Embedded Content from Other Websites
Articles on this site may include embedded content (e.g., videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content. This includes tracking your interaction with the embedded content if you have an account and are logged in to that website.
10. Who We Share Your Data With
We may disclose your personal data to third parties in the following circumstances: * Service Providers: We may share your information with third-party service providers who perform services on our behalf (e.g., website hosting, data analysis, spam detection). * Legal Compliance: We may disclose your information when required to do so by law, regulation, or legal process (e.g., in response to a court order or subpoena). * Protection of Rights: We may disclose your information to protect the rights, property, and safety of ourselves, our users, or others.
11. How Long We Retain Your Data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue. We will retain your personal data for as long as necessary to fulfill the purposes described in this Privacy Policy unless a longer retention period is required or permitted by law.
12. What Rights You Have Over Your Data
You have certain rights regarding your personal data under GDPR, including: * Right to Access: You have the right to request access to the personal data we hold about you. * Right to Rectification: You have the right to request correction of inaccurate or incomplete personal data. * Right to Erasure (“Right to be Forgotten”): You have the right to request deletion of your personal data, under certain conditions. * Right to Restriction of Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions. * Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format. * Right to Object: You have the right to object to our processing of your personal data, under certain conditions. To exercise your rights, please contact us via the information provided in the “Contact Us” section below.
13. Where Your Data Is Sent
Visitor comments may be checked through an automated spam detection service. Your information, including personal data, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. If you are located outside [Your Country] and choose to provide information to us, please note that we transfer the data, including personal data, to [Your Country] and process it there. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.
14. Children’s Privacy
Our Website is not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children under the age of 16 without verification of parental consent, we take steps to remove that information from our servers.
15. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
16. Contact Us
If you have any questions about this Privacy Policy, please contact us via the contact form on our Website.