Privacy Policy

This Privacy Policy explains what personal information I may collect through and/or in connection with this website (including, where applicable, its web feeds, if any) and how I may use and/or share that information. Please read this policy before using the site. By using the aaronseverson.com website, you indicate your acceptance of the policy described below and of the Cookie Notice (which forms part of this Privacy Policy and is incorporated by reference herein; the Cookie Notice also constitutes the “cookie policy” for this website, for jurisdictions that explicitly require such a policy).

Please note that your use of any third-party websites or services, including those linked from the aaronseverson.com website and/or on which I may have accounts, is subject to those sites or services’ respective privacy policies, cookie policies, and/or terms of service/terms of use, which may apply in addition to or instead of this policy and/or the Terms of Use of this website. My automotive website, Ate Up With Motor, has its own privacy policy, as does my professional writing/editing/writing consulting website, 6200 Productions, whose privacy policy also applies to my writing/editing/writing consulting services outside of Ate Up With Motor. Those policies are separate from this one. (Ate Up With Motor is a trademark of Aaron Severson dba Ate Up With Motor. 6200 Productions is a trademark of Aaron Severson dba 6200 Productions.)

EFFECTIVE DATE: This version of the Privacy Policy is effective Thursday, September 16, 2021. If this policy has changed since you last reviewed it, or if you received a notice indicating that the Privacy Policy has changed, you may want to jump directly to the “Recent Revisions” section at the bottom of this page, which summarizes recent modifications in reverse order by date.

Variations in text style (such as different font weights, sizes, or colors) are used throughout this Privacy Policy to improve readability, but have no legal significance or effect.


IMPORTANT NOTE: In the event you make some separate written agreement with me pertaining to this website and/or its content (such as, without limitation, a contract for professional services, an advertising or endorsement agreement, or a license agreement for the use of my content) that includes provisions pertaining to the use, disclosure, and/or retention of certain information related to such agreement and/or the subject(s) thereof (e.g., confidentiality or nondisclosure provisions, and/or stipulations to not disclose certain information prior to a specific date/time), the terms of that agreement shall, where applicable, take precedence over this Privacy Policy.


Table of Contents

Who I Am

For purposes of this Privacy Policy, the terms “I,” “me,” and “my” shall be deemed to signify Aaron Severson, the owner of this website, an individual U.S. citizen residing in Los Angeles, California, U.S.A. I, along with my web host, DreamHost® (which also hosts the mail servers for my aaronseverson.com email addresses — here’s the DreamHost Privacy Policy; DreamHost is a registered trademark of DreamHost, LLC), and many of the other third-party vendors and service providers I use in connection with this website, are located in the United States and are subject to U.S. law, which may differ from the laws of your area. For my contact information, see the “Controller/Responsible Party, Questions, and How to Reach Me” section toward the bottom of this page.

Credits and License for This Policy

Portions of this Privacy Policy were adapted from the Automattic Privacy Policy (which you can also find at their Legalmattic repository) under a Creative Commons Attribution-ShareAlike 4.0 International license. This policy (including both my adaptation of the Automattic terms and my additions) is offered under the same license. If you elect to use or further adapt this policy, please credit Automattic as well as me (Aaron Severson). I also strongly recommend that you note the effective date shown above and include that date in your attribution if it is reasonably practical to do so. Recent changes to this policy are summarized in the “Recent Revisions” section below; see the change log at the bottom of the Automattic policy linked above (or check the repository) for their revision history — both this policy and the Automattic policy have been modified many times! (Automattic and Legalmattic are trademarks or registered trademarks of Automattic (or Automattic’s licensors).)

Information I Collect

I may collect information on you in three ways: automatically through this website; if and when you supply information to me; and from other sources. Each of these three types of data collection, and my use of that information, will be further explained below.

Legal Bases for Collecting and Using Information

If you are in an area that is subject to data protection laws such as the European General Data Protection Regulation (GDPR, now sometimes called the EU GDPR to distinguish it from the similarly named regulations of other regions), the UK GDPR, or Brazil’s Lei Geral de Proteção de Dados (LGPD), my legal grounds for collecting and using your information are that:

  1. The use is necessary to provide the functions of the website; or
  2. The use is necessary for compliance with a legal obligation (such as my need to maintain reasonable records of financial transactions and image usage rights); or
  3. The use is necessary to fulfill a contractual obligation (such as complying with the terms of a license for the use of your content); or
  4. The use is necessary in order to protect your vital interests or those of another person; or
  5. I have a legitimate interest in using your information — for example, to conduct research into the subjects of my content, to safeguard the integrity of this website and its data, to troubleshoot technical problems, and/or to appropriately respond to your inquiries regarding my work; or
  6. You have given me your consent.

Because I am based in the United States, the information about you that I process if you use this website from within the European Economic Area (EEA) may be used, stored, and/or accessed by individuals operating outside the EEA, including me, people who work for me, and/or third-party data processors. This is required for the purposes described in “Categories of Information and Purposes for Collection” below and throughout this Privacy Policy.

Notice to Parents Regarding Children Under 18; Not for Children

This website is in no way intended for or directed at children. Except as otherwise required by law, in the event I receive any personally identifying information through this website that I know to be from a child under the age of 18 (e.g., a message to the administrator email or a comment), it is my policy to promptly delete such information or, if complete deletion is not possible, to take whatever steps I reasonably can to de-identify or anonymize that information.

If you have questions, if you are a parent or legal guardian and believe that this website may have collected personal information about your minor child, or if you wish to exercise your right to remove or delete such information, please contact me via any of the methods described in “Controller/Responsible Party, Questions, and How to Reach Me” below.

Definitions

To help simplify and clarify the rest of this policy, the following definitions will be used throughout this document:

  • User(s) and visitor(s): For the purposes of this policy, I use the terms “visitor” and “user” synonymously to mean any individual who accesses this website. This policy assumes that you, the reader, are such a visitor/user.
  • Personal information/personally identifying information/personal data: Different jurisdictions have different definitions of “personal information,” “personally identifying information,” and “personal data” (although this policy treats all three terms synonymously), but in general, these terms describe any information that could be used to individually identify you and/or your “household” (another term that may have different legal meanings depending on the jurisdiction). Information doesn’t have to identify you by name to be considered personal information or personally identifying; information that describes and/or could be associated with you and/or your household can also constitute personal information. In this policy, I also use the term “potentially personally identifying information” to describe information that might identify you and/or your household in certain contexts (and/or in combination with certain other information).
  • Gather and collect: This Privacy Policy treats the terms “gather” and “collect” synonymously.
  • Identifiers: “Identifiers” are pieces of personal information that specifically identify an individual, a household, or a device, such as (though not limited to) real names, postal mailing addresses, email addresses, driver’s license numbers, Social Security Numbers, or unique device ID numbers. Some jurisdictions also consider IP addresses to be identifiers.
  • Protected classifications: Some pieces of personal information are characteristics of one or more classifications that are protected by civil rights law and/or other nondiscrimination laws, such as (without limitation) race, religion, gender, or medical conditions.
  • IP address: An Internet Protocol (IP) address is the numerical address of any device capable of accessing the Internet. If you use several different Internet-capable devices, their individual IP addresses are typically all different (although if you have several devices connected to the same router or tethered together, they might share the same IP address so long as they remain connected or tethered). An IP address typically reveals the Internet service provider or mobile carrier the device is using. A given device’s IP addresses may change periodically (especially if the device is configured to use “dynamic” IP addresses assigned by the Internet service provider or mobile carrier). It is possible to hide a device’s IP address and Internet service provider/mobile carrier by using a virtual private network (VPN) or proxy service; with these services, you first connect to a computer server provided by the VPN/proxy service and that proxy server then connects to other Internet sites and resources, which “see” only the IP address of the proxy server. For the purposes of this policy, when I refer to IP addresses, I mean the IP address that actually connects to my website or that I otherwise receive, whether that is your device’s actual IP address or a proxy. (In many cases, I have no way to tell the difference.)
  • User agent information: A “user agent” is any software program, service, or system that allows a user to access and/or retrieve online content — for example, a web browser, an email client, or a web “crawler” of the kind used by search engines. User agents automatically reveal certain information about themselves — and therefore about the user — to any online resource they access, enabling that resource to deliver its content in a way the user agent can correctly handle. The information that may be revealed in this way naturally varies depending on the specific user agent involved. A web browser’s user agent information typically reveals, at a minimum, the browser type and version, the operating system in which the browser is running, and certain settings such as (though not limited to) preferred language and time zone; if you’re using a mobile browser, the user agent information may also reveal the specific type of mobile device you’re using. User agent information is typically not personally identifying by itself, but it is sometimes possible to identify an individual user based on their specific combination of user agent characteristics, a technique called “browser fingerprinting.”
  • Domain name: A domain name is the name of an online resource such as an email server or a website; for example, “aaronseverson.com” is a domain name. Most websites have a domain name, as do nearly all email addresses. In general, when you access an online resource by its domain name, your device first accesses a domain name system (DNS) server, which is a directory that contains the IP addresses associated with domain names, to look up the resource’s IP address so that your device can connect to it. Mechanisms that collect website visitors’ IP addresses may also record a domain name, sometimes called a hostname, along with the IP address; this hostname is typically a domain name of the Internet service provider, mobile carrier, or server with which that IP address is associated. Domain name ownership must be registered, and the current contact information of the registered owner(s) must be publicly available, although some registrars and registry services offer anonymizing or proxy services that limit the public visibility of that information while still enabling the public to contact a domain’s registered owner.
  • Embedded content: Most web pages consist of many different elements, including not only the code that makes up each page, but also various images, other media files, fonts, and scripts. For this website, most of those elements are hosted on and are served (i.e., loaded and run in your browser) by web servers owned by my web host and/or its subprocessors; this policy describes such elements as “local,” “locally served,” or “locally hosted” content (these terms are used synonymously). Certain elements of the website, such as (without limitation) images, scripts, fonts, and/or video players, may be hosted on and served by servers and/or services not owned or operated by my web host or their subprocessors, such as (again without limitation) third-party hosted libraries or content delivery network (CDN) servers; this policy describes such elements as “embedded content.” Whenever you access a portion of this website that includes embedded content, the site instructs your browser (or other user agent, as applicable) to request and load that content from its respective provider(s). Some types of embedded content (e.g., fonts) may be cached (stored) in your browser for faster loading; additionally, your browser may store certain associated data such as (without limitation) the date and time the embedded content was loaded and/or last updated. With most modern web browsers, this process is completely automatic, although it can sometimes be managed through the browser’s advanced settings and/or the use of browser add-ons.
  • Visitor activity: For purposes of this policy, “visitor activity” refers to any information I may collect about my visitors’ online activity and/or actions, whether on this website or elsewhere online, such as (without limitation) web pages they’ve visited, links they’ve clicked, or search terms they have looked for.
  • Malicious activity: I define “malicious activity” as any activity or action intended to harm, abuse, compromise, or disrupt the functions of this website, its data, my web host, my embedded content providers, my visitors/users, my system(s) and/or device(s), my business, me, and/or others, or defraud or attempt to defraud me, my service providers and/or vendors, my visitors/users, and/or anyone else. (I consider spamming to be a form of malicious activity.).
  • Errors and suspicious activity: For purposes of this policy, “errors” means any visitor activity that generates an error message of some kind, such as (without limitation) when some of the images or elements that should appear on a particular page fail to load. “Suspicious activity” means any activity and/or action(s) that could be a sign of malicious activity. Of course, not all suspicious activity is actually malicious; often, it results from a harmless mistake or a technical glitch beyond anyone’s reasonable control.
  • Names: Unless otherwise specified, where I refer to “names” in this policy, it includes both real, legal names and pseudonyms/aliases. In general, I only require your legal name in certain circumstances (e.g., financial transactions or legal agreements). Otherwise, you are free to communicate with me using only a pseudonym or alias, although if you do so, I may have no way of associating those communications with information I may have about you under your real name and/or other pseudonyms or aliases. (Also, if your pseudonym or alias looks like a real name, I may have no way to know it isn’t one!)
  • Email address(es): Email is the main means by which I respond to visitor/user questions and inquiries, as well as how this website associates posted comments with the people who made them. For purposes of this policy, I assume that email addresses naturally include domain names even where I don’t expressly specify “domain names” in the list of information collected. (I may sometimes collect domain names that are not associated with a single email address.)
  • Email header information: All email messages include email headers (sometimes called “Internet headers”) that contain not only the sender and recipient email addresses, but also the names and IP addresses of the mail servers that sent and received the message, routing information, encryption and security protocols, and other technical details. (The precise details vary depending on your email client and provider.) Although email headers always include your email address, there are situations where I may have your email address, but not your email header information, usually because I have never actually exchanged any email messages with you.
  • Other contact information: This means any contact information other than email, such as a telephone number or postal mailing address.
  • Images and/or other media: “Images” is hopefully self-explanatory; for purposes of this policy, “other media” (or “other media files”) is a blanket term intended to encompass any audio, visual, audiovisual, and/or multimedia content that is not an individual image, including, but not limited to, films and/or other videos, audio recordings, broadcasts or streams, comic books, presentations, and/or slide shows.
  • Other documents/materials: This includes any type of physical or electronic document or material, such as (without limitation) books, magazines, letters sent via postal mail, newsletters, or clippings.
  • Metadata: Many types of data — particularly electronic data, documents, and communications — include and/or contain data that describes that data, often generically known as “metadata.” For example, the metadata of most electronic files typically includes (but is not necessarily limited to) data such as the filename, file size, type, creation date, and last modified date as well as technical details like bit rate and/or pixel dimensions. The information in telephone records (e.g., the phone numbers of the callers, the date and time of each call, the call durations) can also be considered metadata. (These are just a few examples.) Such data is not necessarily personally identifying in and of itself, but metadata sometimes includes personal information (e.g., the name and/or contact information of an electronic document’s author) and/or may constitute potentially personally identifying information (as defined above). (Note: “Metadata” is a registered trademark of Metadata LLC in the United States, although the word metadata has been in widespread use for years as a generic descriptive term for data about other data. I use the word metadata strictly in a generic descriptive sense; I am not affiliated in any way with Metadata LLC, and no affiliation or association with that company or its products or services is implied.)
  • Geolocation data: Geolocation data means information about an individual or household’s physical location and/or movements, such as the fact that an individual is or was present in a particular geographical location or traveled between two or more geographical locations. I may receive geolocation data from you directly, such as when you tell me your location in a comment or other communication (or, obviously, if I meet or otherwise encounter you in person); if someone else directly or indirectly describes your location or movements to me; and/or if I (and/or my service providers, where applicable) determine, estimate, and/or infer your geographical location or movements based on other data such as (though not necessarily limited to) your IP address, the area code of your telephone number, or GPS coordinates in the metadata of your submitted images. Although some jurisdictions regard geolocation data as personal information, it doesn’t necessarily reveal where you live or work, and in some cases may not reflect your actual location at all, particularly if you use a VPN or proxy service.
  • Websites/URLs: “URL” (an acronym for Uniform Resource Locator) is the technical term for a web address. A website URL isn’t necessarily personally identifying, at least by itself, but a URL such as your social media profile or online resume/CV would probably be considered personal information. (Those are just two obvious examples; there various possible scenarios in which a URL might contain and/or constitute personal information.) Where this policy refers to “websites/URLs” as a category of personal information, I mean URLs that may contain (or that link to) personally identifying information about individuals or households.
  • Referring site: When your browser or other user agent connects to some online resource — such as when you click a link or access embedded content on a web page or in an email message — that online resource can generally see the website or other online location, if any, from which the request originated, which is known as the “referring site” or “referer” [sic — some sources use the correct spelling, referrer, although the actual name of the HTTP header that conveys this information is (mis)spelled “referer”]. If the referer is the results of a search query (for example, when you click on a link from search engine results), the online resource you access can typically see not only the referring site, but also the specific search terms you were looking for. (Some privacy-focused search engines take steps to remove this referer information so the destination site can’t see it, but most popular search engines do not.)
  • Other personal information: This may include any information about an individual or household that could be considered personal information or personally identifying information. As noted above, some jurisdictions now regard nearly any piece of data about an individual or household as “personal information,” from the career history of a public figure to the fact that a website visitor once owned a car of a particular model.
  • Special: This policy uses this term to denote certain unusual categories of information not easily categorized, which may or may not be personally identifying.
  • Administrative dashboard/backend: Like most modern websites, this site has both a public-facing (“front-end”) portion and a “backend” administrative area that includes various controls for managing the site and its content. The WordPress content management system, which this website uses, describes the administrator backend as the “dashboard,” so this policy uses “administrative backend” and “dashboard” synonymously. The administrative dashboard is not normally accessible to visitors other than authorized administrative users (meaning me!), and I take various measures to guard against unauthorized access to it. (WordPress is a registered trademark of the WordPress Foundation in the United States and other countries.)
  • Cookies and similar technologies: A cookie is a small text file — a string of information — that a website or online service places (or “sets” — these terms are used synonymously) on your browser or device and that your browser or device then provides to that site or service when you access it. (It is sometimes also possible for a website or service to detect cookies set by other sites/services.) Cookies may be used in many different ways, but the most common uses are to save your settings or preferences, to manage logins, and to help identify specific users or devices for analytics and/or advertising purposes. Most cookies are specific to each browser and device; if you access a website from multiple browsers and/or multiple devices, the website may place cookies on each browser on each device. A cookie set by the website or service you are currently visiting is called a “first-party” cookie, while cookies set by other services or domains (e.g., the cookies set when you access an embedded video player) are known as “third-party” cookies. You can learn more about how cookies work and how you can manage or delete them in different browsers by visiting AboutCookies.org. (I am not affiliated in any way with that website or with the law firm that runs it, Pinset Masons LLP, and offer this link purely for your information.) Some websites and/or online services may also use similar technologies, such as storing certain information in your browser’s web storage (sometimes called local storage, which is technically just one type of web storage) and/or plugins; data stored in your browser in such ways (such as so-called local shared objects) aren’t cookies in the usual sense, but may perform similar functions and may be used instead of or in addition to cookies. Such technologies are often used to manage functional details such as settings and preferences, but are sometimes also used to help the service to identify you. Online services may also use “web beacons,” which are small code blocks or tiny image files (sometimes called “tracking pixels” or “pixel tags”) that transmit certain information about you and your user agent (as defined above) to the service from which the web beacon is loaded. Web beacons (which are a form of embedded content) are sometimes also used instead of or in conjunction with cookies to identify users and track their behavior online.

Categories of Information and Purposes for Collection

In each of the sections below, I indicate the categories of personal information I may collect and the categories of purposes for which I may collect that information.

Those possible purposes include:

  • Functionality: I use the information so that this website, or certain specific functions thereof, can work properly. For example (but without limitation), none of the pages or content on this website will load if the web server doesn’t have a valid IP address to which to transmit the necessary data.
  • Providing services: I use the information to perform some action you have asked me to perform; respond to comments, inquiries, and/or other messages; provide services; and/or otherwise conduct the normal activities involved in running this website and/or its associated business operations. For example (but without limitation), I probably couldn’t send you a physical document without your mailing or delivery address.
  • Completing a transaction: I use the information to conduct or complete financial transactions.
  • Fulfilling a contractual obligation: I use the information to meet the requirements of a contract or legal agreement, whether with you or with a third party.
  • Legal compliance or audit: I use the information to ensure my compliance with applicable laws and/or regulations, and/or so that I can demonstrate my compliance to an auditor or investigator if needed.
  • Research and publishing: I use the information in researching, creating, and/or publishing (and/or performing, broadcasting, exhibiting, and/or otherwise disseminating, as applicable) my content, my other writing/editing/writing consulting work, and/or my other creative endeavors, and/or to help me decide what content and/or other work to create and/or publish (and/or perform, broadcast, exhibit, and/or otherwise disseminate) in the future.
  • Security, troubleshooting, quality control, and service improvement: I use the information to help me protect this website, its users/visitors, my data, my system(s) and/or device(s), my business, me, and/or others from malicious activity; safeguard my property, rights, security, and/or safety, and/or the property, rights, security, and/or safety of others and/or of the public at large; troubleshoot and/or resolve technical problems; and/or maintain and/or improve the quality and/or functionality of the site and/or my services.
  • Recruitment/hiring/employment or business partnerships: I use the information in recruiting/hiring employees, independent contractors, and/or interns; in entering or considering entering business partnerships or other professional relationships with someone; and/or in making other types of employment decisions and/or business decisions regarding professional relationships.
  • Advertising and other commercial purposes: I use the information to help me promote, pitch, and/or advertise my content, services, and/or other creative endeavors; otherwise monetize the site, my content, my other writing/editing/writing consulting work, and/or my other creative endeavors; and/or achieve some other commercial purpose(s).

(I haven’t listed “communicating with you” as a separate category in the above list because achieving any or all of the above-listed purposes may involve communicating with you and/or third parties; listing that separately seemed redundant as well as potentially confusing.)

In many cases, information I collect may have several purposes or possible purposes. Obviously, not every individual piece of information in a particular category will necessarily be used or even useful for each listed purpose.

(Where the sections below list multiple purposes or possible purposes, separated by semicolons, the order does not signify any comparative priority or significance.)

In some cases, I may collect certain types of information in certain circumstances and not in others. In those cases, the information category shown below will be followed by a single asterisk (*). (For example, but without limitation, I generally don’t need your postal mailing address except in connection with certain financial transactions or if you ask me to send you some physical letter or parcel, so I only collect mailing addresses from certain visitors, not from everyone.)

Keep in mind that the categories of information listed in each section below are just the types of information I may collect in the specific context described in that section. Depending on how you use my website, several or all of these sections may apply to you.

Please also note that while the listed categories are intended to encompass the types of personal information I typically collect in the specified contexts, I can’t anticipate every possible scenario. There may be circumstances in which I collect or receive a type personal information that’s not listed in the applicable section(s) below and/or that can’t be easily categorized. (For example, it would be difficult for me to list every category of information someone might conceivably send me in a comment or email communication!) For this reason, I have also listed “other personal information*” in many of these sections as a kind of catch-all category.

Additionally, please keep in mind that the categories listed in the “Categories of information gathered” bullet points of the sections below, which are based on my “Definitions” above, may differ from the categories of personal information defined by law in certain jurisdictions, such as California. (California law now defines a series of specific categories of personal information, which are not necessarily intuitive or easy for the average person to grasp without actually reading the applicable statutes or referring to a list of examples. To learn more about how the personal information I collect could be categorized under California law, see the “Categories of Personal Information Collected” subsection of the “CCPA Information Collection and Sharing Notice” section below.)

Cookies and Similar Technologies

The aaronseverson.com website and/or its embedded content providers (see “Embedded Content” below) may use cookies and/or similar technologies (e.g., storing local shared objects and/or other data in your browser’s web storage) for a variety of purposes. Some are placed on your device/browser automatically while others are only set when you perform certain actions.

For more specific information about the cookies the site may use, what purposes they serve, how long they normally last, and your options for managing them, see the Cookie Notice page or click the “Access Your Privacy and Cookie Preferences” button below and review the summaries under “Cookie Settings”:

(You can also access this button via the Privacy Tools page.) As noted in the preamble above, the Cookie Notice forms part of this Privacy Policy and constitutes the “cookie policy” for this website, for jurisdictions that explicitly require such a policy.

While the cookie descriptions presented in the Cookie Notice and the ones listed in the Cookie Settings menu accessed through the “Access Your Privacy and Cookie Preferences” button are intended to be identical (save for minor variations in formatting and text style), in the event of any substantive discrepancy between those versions, the Cookie Notice version(s) shall govern.

Third-party websites and/or services (including, without limitation, ones I may use in connection with this website) may also use cookies and/or similar technologies, depending on the nature of the service and who provides it. The use of cookies and/or similar technologies by third-party sites and/or services is subject to those sites and/or services’ respective privacy policies, cookie policies, and/or terms of service/terms of use, and in most cases is outside of my control.

Information I Collect Automatically

Certificate Authority Checks

  • Categories of information gathered: IP addresses; user agent information; visitor activity (referring site); geolocation data (estimated from IP addresses and/or inferred from other data)*; special: mobile phone types/models (determined from user agent information)*
  • Purpose(s): Functionality; fulfilling a contractual obligation; legal compliance or audit; security, troubleshooting, quality control, and service improvement
  • Data retention: Typically less than seven days.

To allow visitors (and me!) to connect to the site securely (that is, via encrypted connections), this website uses domain validation (DV) certificates issued by the Let’s Encrypt® certificate authority (CA), a service of the nonprofit Internet Security Research Group™. These certificates enable a web browser or other user agent to confirm that it has an SSL/TLS (Secure Sockets Layer/Transport Layer Security) connection to the correct domain, an important security measure. For a further explanation, see the Let’s Encrypt “How It Works” page.

When you access this website, your web browser may check whether the aaronseverson.com certificate is valid by briefly connecting to the servers of the Let’s Encrypt certificate repository to perform an Online Certificate Status Protocol (OCSP) check (sometimes called an OCSP request or an OCSP query &mdash: these terms are synonymous). This OCSP check provides those servers with your IP address and user agent information; for obvious reasons, it also informs those servers that you have accessed the aaronseverson.com website. The Let’s Encrypt CA service may log and use such data as described in the Let’s Encrypt Privacy Policy. Any further questions about their use and/or retention of public repository log data should be directed to the certificate authority itself (e.g., via the contact information listed in their Privacy Policy), as it is outside of my control. (Internet Security Research Group and Let’s Encrypt are trademarks of Internet Security Research Group. All rights reserved.)

Most aspects of the setup, maintenance, and periodical renewals of my DV certificates are administered on my behalf by my web host, DreamHost®, which also provides technical support for any issues with those certificates. So far as I am aware, DreamHost does not receive or have access to OCSP check data from the certificate authority’s public repository server logs, although DreamHost does obviously have administrative access to the certificates themselves, subject to the DreamHost Privacy Policy. (DreamHost is a registered trademark of DreamHost, LLC.)

Browser Tests

  • Categories of information gathered: User agent information; special: browser technical capabilities and/or settings; special: information collected via cookies and/or similar technologies
  • Purpose(s): Functionality; security, troubleshooting, quality control, and service improvement
  • Data retention: Your current visit.

Each time you visit this website, the site may perform certain automated tests to determine your web browser’s specific technical capabilities, allowing the website to adjust the presentation and functionality of the site to be more compatible with your browser. (Different browsers, and even different versions of the same browser, may handle certain content in different ways, which can create problems if content is not correctly tailored for that browser.) The site’s administrative login page (which is off-limits except to authorized administrative users) may perform similar tests, such as (without limitation) testing whether the user’s browser will allow the cookies required to log into the site’s administrative dashboard.

The results of such tests may be stored in your browser’s web storage and/or saved in cookies. The site may also show you specific messages or other content based on this information, such as (again without limitation) displaying a warning notification that your current browser is incompatible with certain site features.

Online Tracking

As of January 29, 2012, I have discontinued the use of third-party web analytics services on this website.

Obviously, other websites or online services, including ones to which I may link and/or on which I have accounts, may use various web analytics services and/or tools, which in most cases is outside of my control. See the applicable website or service’s privacy policy for more information. The analytics tools used on my automotive website, Ate Up With Motor, and my professional writing/editing/writing consulting website, 6200 Productions, are described in those websites’ respective privacy policies; you can find links to those policies near the top of this page. (Ate Up With Motor is a trademark of Aaron Severson dba Ate Up With Motor. 6200 Productions is a trademark of Aaron Severson dba 6200 Productions.)

Website Server, Error, and Security Logs

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity; errors and suspicious activity*; names*; email addresses*; email header information*; geolocation data (estimated from IP addresses and/or inferred from other data)*; URLs/websites*; other personal information*; special: mobile phone types/models (determined from user agent information)*; special: device identifiers*; special: information collected via cookies and/or similar technologies*; special: usernames, user ID numbers, and/or other identifiers associated with administrative users*; special: other identifiers*; special: other technical details (some of which might be potentially personally identifying and/or constitute personal information in certain jurisdictions)*
  • Purpose(s): Functionality; providing services; fulfilling a contractual obligation; legal compliance or audit; security, troubleshooting, quality control, and service improvement
  • Data retention: Varies, but typically no more than about 90 days, except for recent data captured in backups or specific data for which I have some ongoing need.

Like most websites, the aaronseverson.com website has various logs (some of which I administer directly and some of which are administered by my web host) that may collect certain information (some of which may be considered personal information or potentially personally identifying information in at least some jurisdictions) about each computer or other device that (as applicable, but without limitation) accesses the site and/or its content; uses certain site features; is redirected from an outdated link to a current one; generates an error (such as attempting to access a nonexistent page or file); logs into or otherwise accesses the administrative dashboard and/or other administrative resources or controls; attempts to interact with the site in any unusual or suspicious way (such as trying to access the site’s administrative dashboard without authorization or run an unauthorized script); and/or performs certain other actions. (These examples are a representative sampling, but not an exhaustive list; I may also use or add other logs not specified here, and not all logs are necessarily in use at any given time.)

The information these logs record may include (but is not necessarily limited to) the IP address and/or user agent information of the applicable device (and sometimes the referring site, if any), which sometimes makes it possible to determine, estimate, and/or infer certain other information (e.g., geographical location and/or device type). In some cases, the logs may also record device identifiers (e.g., the advertising identifier and/or other universally unique identifiers of a smartphone or tablet computer). Most such logs include the date and time each logged event took place; certain types of events may also be assigned unique ID numbers and/or other identifiers for reference purposes. Additionally, if a logged event or action involves or appears to involve any of this website’s administrative users, and/or involves or appears to involve credentials I create to allow specific users to access certain resources (e.g., the login credentials for FTP folder(s) associated with this website), certain logs may also record the username(s), user ID number(s), and/or other identifiers associated with such administrative user(s) and/or credentials. All these logs are part of the routine operation of the website and its related systems and are not connected to or associated with any third-party web analytics service.

Most of the routine website log data I and my web host collect is retained on a rolling basis — that is, we customarily retain only the most recently collected data. Typically, website log data is retained for no more than 30 days (and often only a fraction of that time) before being automatically overwritten by newer data or otherwise deleted. Some security audit log data recorded by the Sucuri Security plugin (further described in the “Security Scans” section below) — which is provided by GoDaddy Media Temple, Inc. d/b/a Sucuri, a subsidiary of GoDaddy Operating Company, LLC (Sucuri) — may be stored both locally and on remote servers controlled by Sucuri, and is normally retained for about 90 days. (Sucuri, Sucuri Security, Sucuri Security Inc., and Sucuri Inc. are trademarks of Sucuri Inc. and may be registered in certain jurisdictions. GoDaddy is a registered trademark of GoDaddy Operating Company, LLC.) Certain website logs and/or log reports that contain only aggregated data, anonymous information (e.g., hit counters), and/or data pertaining to administrative resources or controls that are normally off-limits except to authorized administrative users may be retained for longer periods. For example (but without limitation), logs showing the last access dates of certain resources, or showing which administrative user last edited a particular post, may remain unchanged until that resource is accessed or edited again, or until I manually delete the logs.

Naturally, I and/or my web host may retain certain specific information from the website’s logs for longer periods if it is still needed for ongoing security, troubleshooting, and/or service improvement purposes, and/or for legal reasons. For example, but without limitation, if the logs indicate that a specific IP address has been used in repeated attempts to attack this website, I may take steps to block that IP address or otherwise impede future malicious activity from it. Certain security-related log data, such as (again without limitation) records my website security features compile of administrative logins and/or failed attempts to log in as an administrative user, may be retained indefinitely unless manually deleted.

Also, some recent log data may be captured in backups created by me and/or my web host, which in some cases may be retained for a year or more.

Certain events may trigger automated email alerts that are sent to me as the site administrator, notifying me of potential threats, errors, or the status of some automated operation. The alerts may include some or all of whatever data the logs recorded. Such email alerts may be scanned for suspected spam, malware, and/or other suspicious activity, as explained in the “Security Scans” section below. I may retain these email alerts for as long as I need the information they contain.

Please keep in mind that, because my web host owns the servers on which this website runs, they have full access to the site’s server access and server error logs. (My access to those logs is read-only, so I cannot redact or remove any of that log data without the aid of my web host’s technical support staff, and my service agreement prohibits me from tampering with the logs or other normal functions of the DreamHost servers.) In general, DreamHost has access to any data and/or files on any server they own — except in cases where I have specially encrypted such file(s) and/or data — subject to the DreamHost Privacy Policy. I may also share additional data with them if I deem it appropriate for security and/or troubleshooting purposes. (DreamHost is a registered trademark of DreamHost, LLC.)

I may also share, release, and/or otherwise disclose website log data as otherwise described in “Disclosure of Personally Identifying Information” below.

Security Scans

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity*; errors and suspicious activity; names*; email addresses*; email header information*; other contact information (e.g., phone numbers)*; images and/or other media (including metadata)*; geolocation data (determined directly, estimated from IP addresses, and/or inferred from other data)*; URLs/websites*; other personal information*; special: visitor mobile phone types/models (determined from user agent information)*; special: device identifiers*; metadata*; special: information collected via cookies and/or similar technologies*; special: usernames, user ID numbers, and/or other identifiers associated with administrative users*; special: other identifiers*; special: other technical details (some of which might be potentially personally identifying and/or constitute personal information in certain jurisdictions)*; special: fingerprint data*
  • Purpose(s): Functionality; providing services; fulfilling a contractual obligation [see below]; legal compliance or audit; security, troubleshooting, quality control, and service improvement
  • Data retention: Varies; potentially indefinite.

While no online website, Internet-accessible device, or data storage system can be 100 percent secure, I take reasonable measures to protect against unauthorized access, use, alteration, or destruction of personal information I collect through and/or in connection with this website.

I and my web host use a variety of security measures to protect this website and its data, including, but not limited to, scanning the site, site-related files, and/or the site database for malware and/or signs of other malicious activity. Some of these scans are purely automated, but in some cases, I may initiate additional manual scans and/or request that my web host’s technical support staff conduct a more thorough active scan to help me root out a possible security threat or troubleshoot a technical problem.

Like the logs described in the “Website Server, Error, and Security Logs” section above, some of these security measures may collect certain information (some of which may be considered personal information or potentially personally identifying information in at least some jurisdictions) about any device(s) and/or individual(s) involved in suspicious or malicious activity. For example (but without limitation), if an unauthorized visitor attempted to execute an unusual or suspicious server request on this website (which might indicate an intrusion or hacking attempt), one or more security measures might record that visitor’s IP address, user agent information, and other device/browser details along with details about the action(s) they attempted to perform. In some cases, the data recorded may also include device identifiers (e.g., the advertising identifier and/or other universally unique identifiers of a smartphone or tablet computer). Certain events may be assigned unique ID numbers and/or other identifiers for reference purposes. If the activity in question involves or appears to involve any of this website’s administrative users, and/or involves or appears to involve credentials I create to allow specific users to access certain resources (e.g., the login credentials for certain FTP folder(s) associated with this website), the information collected may also include the username(s), user ID number(s), and/or other identifiers associated with such administrative user(s) and/or credentials. The specific information that my security measures may gather in connection with suspicious or malicious activity naturally varies depending on the context and the security measure(s) involved; there are too many possible scenarios to enumerate here.

Certain events may trigger automated email alerts to me as the site administrator, notifying me of potential security threats. These alerts may include some or all of the data described above. Such email alerts may also be scanned for suspected spam, malware, and/or other suspicious activity, as further explained below.

Among the security measures I may use on this website is the Sucuri Security plugin, provided by GoDaddy Media Temple, Inc. d/b/a Sucuri, a subsidiary of GoDaddy Operating Company, LLC (Sucuri), whose available features (not all of which are necessarily used on this website) include, but are not necessarily limited to, activity monitoring, notifications, security auditing tools, a security logging feature that allows certain security audit log data to be stored remotely to deter tampering, a remote scanning feature that can detect security vulnerabilities and some forms of malware by scanning the files and public areas of the website, a remote firewall service intended to block certain forms of suspicious and/or malicious activity, a WordPress file integrity checker (which tests the files of this website’s WordPress installation by accessing a remote API service associated with the WordPress.org websites), and a blocklist-checking feature that warns if this website has been flagged for malicious activity by search engines and/or Internet security services (an obvious sign that a site may have been hacked and/or infected with malware). (A list of the features of the plugin (not all of which I necessarily use on this website) can be found in the “WordPress plugin & API Key” section of the Sucuri Security Terms of Service.) Some data collected and/or processed by this plugin, the remote scanning feature, and/or other associated features and/or tools — which may sometimes include personal information such as (without limitation) IP addresses that perform certain actions (e.g., adding or editing a post, updating or installing a plugin) and/or information in comments or other published content — may be processed and/or stored by Sucuri as well as me and/or my web host; any data processed and/or stored by Sucuri is subject to the Sucuri Security Privacy Policy, the Sucuri Cookie Policy (“Our Use of Cookies, Web Beacons, and Similar Technologies”), and the Data Processing Addendum to their Terms of Service. Certain plugin components may be served by the Cloudflare® content delivery network, which is subject to the Cloudflare Privacy Policy, the Cloudflare Data Processing Addendum (which applies to personal data Cloudflare services process on behalf of their customers), and the Cloudflare Cookie Policy. Communications with API servers, repositories, and/or content delivery networks associated with the WordPress.org websites are subject to the WordPress.org Privacy Policy and Cookie Policy. Communications with any other third-party services are subject to the respective privacy policies of those services. (Sucuri, Sucuri Security, Sucuri Security Inc., and Sucuri Inc. are trademarks of Sucuri Inc. and may be registered in certain jurisdictions. GoDaddy is a registered trademark of GoDaddy Operating Company, LLC. Cloudflare is a trademark and/or registered trademark of Cloudflare, Inc. in the United States and other jurisdictions. WordPress is a registered trademark of the WordPress Foundation in the United States and other countries.)

Some other security measures I use on this website are provided by the free, open source version of the iThemes Security plugin. While most of this plugin’s features operate locally (that is, on the same server this website runs on), certain features may transmit information (which may include, but is not necessarily limited to, personal information and/or potentially personally identifying information about visitors involved in suspicious or malicious activity on this website) to iThemes servers, and/or send and/or receive security-related information (which may also include personal information and/or potentially personally identifying information about site visitors and/or other individuals) to and/or from external sources (for example, but without limitation, for the purposes of testing the files of this website’s WordPress installation via a remote API service associated with the WordPress.org websites). Because iThemes is now one of the Liquid Web family of brands, such features are subject to the Liquid Web Privacy Policy and/or, for the plugin’s security-related communications with other third parties, those entities’ respective privacy policies, such as (again without limitation) the WordPress.org Privacy Policy and Cookie Policy. (iThemes and Liquid Web are trademarks of Liquid Web, LLC. WordPress is a registered trademark of the WordPress Foundation in the United States and other countries.)

I also use a variety of other tools and security measures to protect my device(s), software, and data. A representative sampling of providers of such tools and security measures is included among the examples of third-party vendors and/or service providers that appear in the “Disclosure of Personally Identifying Information” section below. (Since the specific tools, devices, and security measures we use may change over time, those examples should not be regarded as an exhaustive list.)

In addition, my web host also hosts the email servers for many of my email addresses, and may use a variety of means to detect and/or prevent malicious activity and/or abuse involving those addresses and/or domains, including (though not necessarily limited to) scanning incoming, outgoing, and/or stored messages for suspected spam, malware, and/or other suspicious activity. My Internet service provider(s), mobile carrier(s), and/or other applicable service provider(s) may also use their own security tools to detect and/or prevent suspected spam, malware, and/or other suspicious activity involving my account(s) and/or connections. (For example, but without limitation, my current mobile carrier sometimes flags certain incoming voice calls and/or text messages with warnings such as “scam likely.”)

Some of the security measures I use to protect my device(s) may collect additional personal information under certain circumstances. For example (but without limitation), security features I use for my smartphone(s) might automatically photograph anyone attempting unsuccessfully to unlock the device, and/or remotely track the device’s location to help me find or recover the device in the event of loss or theft.

The examples of third-party vendors and/or service providers in “Disclosure of Personally Identifying Information” below include a representative sampling of the providers whose security tools I may use, although that should not be considered an exhaustive list. As noted above, the tools, devices, and security measures I use may change over time, so I may also use and/or add other security measures from different providers, and/or that have other features not specified here.

(Naturally, malware scanning services and other security tools may also provide me with additional security-related information, such as “signatures” of known malware types. Much of this information is of a technical nature and is not personally identifying, but it may sometimes include certain personal information; see the “Information I Receive from Third Parties for Security Purposes” section below.)

By their nature, some anti-malware scanners and other security tools routinely access almost any file or data on the systems or devices they protect. Since modern security tools sometimes incorporate web- or cloud-based scanning features, and/or may transmit samples of suspicious files or code to such services for analysis, this means a certain amount of personal information (e.g., names, contact information, and/or other personal details contained in scanned email messages or electronic documents) could be disclosed to the scanning service and/or other third parties in the course of a scan or security analysis. The likelihood and possible extent of such disclosure is difficult to predict or quantify, but it cannot be completely avoided without greatly compromising the security of my systems, devices, and data.

Special Note: I include “fulfilling a contractual obligation” among the possible purposes listed above for several reasons: First, my various contractual agreements may require me to take appropriate steps to secure my systems and/or data, obligations which the security measures described in this section help me to fulfill. Second, certain of the security scans and/or associated logs described in this section are operated and/or maintained by third parties (e.g., my web host and/or other service providers); in such cases, I may be contractually prohibited from interfering with the normal functions of those scans or with the data they collect. Third, the license agreements and/or terms of service for certain of my security tools may impose specific restrictions on my use of those tools and/or any associated data (e.g., prohibiting me from modifying the scanning functions of a malware detection application beyond what the application’s settings normally permit).

My retention of data related to security scans and/or other security measures varies depending the tools involved, whether they are operated by me or a third party, and the context. As noted in the “Website Server, Error, and Security Logs” section above, any security audit log data remotely stored by Sucuri via the Sucuri Security plugin is normally retained for about 90 days, while most other website security log data is typically retained for 30 days or less, although I may retain certain information for longer periods if it is still needed for ongoing security, troubleshooting, and/or service improvement purposes; for legal reasons; and/or if it pertains to administrative resources or controls that are normally off-limits except to authorized administrative users. Security data for my devices (e.g., malware scan results, system error logs, logs of traffic blocked by a firewall) may in some cases be retained for at least as long as I own that device and/or use the applicable security tool(s). I also typically retain indefinitely any correspondence regarding specific security threats or problems, although I generally only retain automated email alerts for as long as I need the information they contain. The retention and use of security-related data by my web host, Internet service provider(s), mobile carrier(s), and/or other third-party service providers varies, and is generally outside of my control.

I may share information from security scans and/or other security measures with third parties, and/or publicly disclose such information, if I need technical assistance and/or consider such disclosure appropriate for my security and/or the security of others (e.g., to notify my web host’s technical support if I identify malware that might threaten the integrity of their web or email servers). I may also share, release, and/or otherwise disclose information from security scans and/or other security measures as otherwise described in “Disclosure of Personally Identifying Information” below.

Embedded Content

  • Categories of information gathered: IP addresses; domain names; user agent information; visitor activity; errors and suspicious activity*; geolocation data (estimated from IP addresses and/or inferred from other data); special: mobile phone types/models (determined from user agent information)*; special: device identifiers*; special: information collected via cookies and/or similar technologies*; special: other identifiers*; special: other browser settings/configuration details/add-ons*
  • Purpose(s): Functionality; providing services; fulfilling a contractual obligation [see below]; research and publishing; security, troubleshooting, quality control, and service improvement
  • Data retention: Varies depending on the specific content provider; I do not have access to most such data and so its retention is normally beyond my control.

As explained in the “Definitions” section above, this policy defines embedded content as content hosted on and served by some server or service other than my web host and/or its subprocessors. If you access a portion of this website that contains embedded content, your browser requests that content from the respective content provider(s), which enables those embedded content provider(s) to collect information about you. Such information is collected and processed by the applicable embedded content providers, not by me, and is subject to such providers’ respective privacy policies, cookie policies, and/or terms of service/terms of use, which in most cases are outside of my control.

You should generally assume that the information an embedded content provider collects when you access their content through another website or online service includes, at a minimum, your IP address, your user agent information, which specific embedded content you accessed (and/or requested, since the request may be recorded even if the content fails to load for whatever reason), and the website or URL from which you accessed and/or requested the embedded content. (Some embedded content providers claim to remove or discard the latter information.) In some cases, embedded content providers can also detect and/or otherwise determine other information, such as (without limitation) your country and/or geographical location (typically — though not necessarily always — estimated based on your IP address); the presence of certain cookies (e.g., the ones placed on your device when you log into a particular third-party website or online service); your browser’s settings (e.g., your time zone and/or preferred language settings); whether your browser is using certain add-ons (e.g., ad blocker extensions); and/or device identifiers (e.g., the advertising identifier and/or other universally unique identifiers of a smartphone or tablet computer). If you interact with the embedded content in some way — for example, if you play an embedded video or click on an embedded payment button — the embedded content provider usually logs that activity as well.

Some embedded content providers may also use cookies and/or similar technologies to track and/or identify you, and/or store information on your device that could be used for those purposes. For example (again without limitation), an embedded video player might place cookies on your device when the player loads; if you watch the video, portions of the content may also be stored (cached) in your browser to reduce playback interruptions, and certain associated information (e.g., your playback settings and/or how much of the video you’ve watch so far) may be saved in your browser’s web storage and/or plugins. Cookies and/or other information stored on your device in such ways are not necessarily personally identifying (and often have straightforward functional purposes), but some may be used to track you and/or to help identify you, and therefore may constitute potentially personally identifying information.

The Cookie Notice includes more information on the cookies I know the specified embedded content providers have used in at least some instances. Please note that some cookies may be set only in certain circumstances, providers may periodically add new cookies not listed and/or retire ones listed in my Cookie Notice, and content providers not currently listed in the Cookie Notice might begin using cookies in connection with their embedded content (and/or may already do so in circumstances I have not yet recognized), all of which is outside of my control.

Embedded content providers may use various third-party service providers to provide and/or in connection with their content. For example (but without limitation), a video hosting platform might use one or more third-party analytics services to track how many people view an embedded video, use one or more third-party ad services to show advertisements during playback of that video, and/or subcontract certain related data processing functions to third-party subprocessors. Those third parties may gather personal information about you, use cookies and/or similar technologies to track and/or identify you, and/or store information on your device that could be used for those purposes, in the same ways as the embedded content provider(s) for whom such third parties provide their services. Because the use of such third-party services is highly variable, may change over time, isn’t necessarily disclosed to me, and in most cases is entirely outside of my control, I have not attempted to fully enumerate such service providers. Where I recognize an embedded content provider’s use of specific third-party service providers based on the presence of their cookies, I have listed such service providers in the Cookie Notice, although given the above caveats, that should not be considered an exhaustive list — again, too many factors are simply outside of my control.

Since embedded content on this website is served through secure (encrypted) connections, your browser may also contact the embedded content provider’s certificate authority to check the validity of their encryption certificate. (The “Certificate Authority Checks” section above describes how these certificate checks work, although embedded content providers may use different certificate authorities than the one used by this website.)

In some cases, you may be able to hide or disable certain types of embedded content on this website (for example, by using options I may provide through the Privacy Tools, or through your web browser or browser add-ons). Disabling embedded content may prevent that content from functioning, but will generally also prevent it from gathering information about you, at least as long as the content remains disabled. Please note that this does not remove any data the embedded content previously gathered about you or any cookies or potentially personally identifying information it may have placed on your device. If you re-enable the embedded content, or if you visit the website from a different device or browser on which that content is not disabled, the embedded content provider may again be able to gather information about you.

Special Note: The reason I include “fulfilling a contractual obligation” among the possible purposes listed above is that the terms of service or terms of use for most embedded content providers typically prohibit me from modifying their embedded content or interfering with the normal function of their servers, which prevents me from (for example, but without limitation) removing tracking features or attempting to block or “spoof” information their servers would otherwise collect.

Third-party embedded content on the aaronseverson.com website may include, but is not necessarily limited to:

  • Fonts from the Google Fonts API and/or resources from the Google Hosted Libraries API(s), which are libraries of resources hosted on and served by content delivery networks (i.e., remote servers and data centers) operated by Google and/or its subprocessors, which may be located in the United States or elsewhere. The Google Fonts API does not place cookies on your device, but may collect certain information about your device and browser (including, though not necessarily limited to, your IP address, user agent information, and possibly also device identifiers) when you visit a page that uses one or more of those fonts (as well as recording which specific fonts your browser loads). The Google Fonts API may also store (cache) certain information, such as font data and stylesheet requests, in your browser’s web storage for faster loading. To learn more about how the service works (including how long stored information may remain in your browser), see the “What does using the Google Fonts API mean for the privacy of my users?” section of the Google Fonts FAQ. The Google Hosted Libraries API may use cookies and/or similar technologies and/or store potentially personally identifying information on your device in addition to collecting certain information about your device and browser (including, though not necessarily limited to, your IP address, user agent information, and possibly also device identifiers) and which specific resources your browser requests and/or accesses. Google asserts that the Google Hosted Libraries servers remove referring site information from the request logs (so that the logs indicate what resources your browser requested, but not the websites or online services you were visiting when your browser sent those requests). For more information, see the “What does using the Google Hosted Libraries mean for the privacy of my users?” section of the Google Hosted Libraries Terms of Service. See the “How Google Uses Information from Sites or Apps That Use Our Services” page and the Google Privacy Policy to learn more about what information these API services (and/or other Google services I may periodically offer, e.g., embedded maps served by the Google Maps mapping service) may collect and how that information may be used. To learn more about how Google uses cookies and/or other technologies that may collect and/or process personal information, see the “Technologies” section of the “Google Privacy & Terms” pages. Google API services are also subject to the Google Controller-Controller Data Protection Terms, the CCPA Addendum, and the LGPD Controller Addendum, which supplement the Google APIs Terms of Service and apply to the API services’ processing of personal data from areas subject to certain region-specific privacy and/or data protection laws. (Google, Google Maps, and other related marks and logos are trademarks of Google LLC.)
  • Fonts, styles, scripts, and/or icons served by the BootstrapCDN service, which is now powered by the open source jsDelivr project (which is designed, developed, and maintained by Prospect One and Dmitriy Akulov). As with any embedded content provider, this service presumably gathers certain information about your device and browser (e.g., your IP address, user agent information, and possibly also device identifiers) when you access portions of the site containing content loaded from the BootstrapCDN service, as well as recording which specific content your browser requests and/or accesses and the website or URL from which your browser requested and/or accessed that content. To learn more about what data the service may collect and how that data may be used, see the jsDeliver Privacy Policy for cdn.jsdelivr.net. That policy states that the service does not use cookies, but may use various third-party service providers, a current list of which appears in the “Content Delivery” section of the Privacy Policy for cdn.jsdelivr.net; such third parties may collect and/or process data for and/or on behalf of the BootstrapCDN service and/or any other content delivery network powered by the jsDelivr project. (You should consult their privacy policy for further details, as the specific service providers the jsDelivr projects uses may change periodically and is entirely outside of my control.)
  • Scripts and/or other content served by the jQuery® CDN, a content delivery network provided by the OpenJS Foundation® nonprofit organization and powered by StackPath, and/or the jQuery API service. As with any embedded content provider, those services presumably gather certain information about your device and browser (e.g., your IP address, user agent information, and possibly also device identifiers) when you access portions of the site that use content from the CDN and/or the API service, as well as recording which specific content your browser requests and/or accesses and the website or URL from which your browser requested and/or accessed that content. To learn more about what data these services may collect and how that data may be used, see the OpenJS Foundation Privacy Policy. The cookie policy links in that policy and the ones that appear on the CDN and API services’ respective home pages all currently point to the cookie policy of a different organization; it is unclear if this is intentional or an error, so I don’t know if the CDN and/or API services use cookies and/or similar technologies to track and/or identify you and/or store potentially personally identifying information on your device. The CDN service is presumably also subject to the StackPath Privacy Statement and Data Processing Addendum (which applies to personal data StackPath processes on behalf of its customers); you may also wish to consult the StackPath “GDPR” and “CCPA: California Privacy Rights” pages. (jQuery and OpenJS Foundation are trademarks or registered trademarks of the OpenJS Foundation in the United States and/or other countries. StackPath is a trademark of StackPath, LLC.)
  • Certain scripts, images, and/or other content served by the Cloudflare® CDN (content delivery network). To learn more about what data the Cloudflare services may collect from visitors to websites that use those services (whom Cloudflare policies generally describe as “end users”) and how that data may be used, see the “Cloudflare’s commitment to GDPR compliance” page, the Cloudflare Privacy Policy, the Cloudflare Data Processing Addendum (which applies to personal data Cloudflare services process on behalf of their customers), and the Cloudflare Cookie Policy. (Cloudflare is a trademark and/or registered trademark of Cloudflare, Inc. in the United States and other jurisdictions.)
  • Certain icons (whether on the administrative dashboard, the public-facing portions of the site, or both) served by the Font Awesome content delivery networks, which may collect certain information about your device and browser (e.g., your IP address, user agent information, and possibly also device identifiers), as well as recording which specific icons your browser requests and/or accesses and the website or URL from which your browser requested and/or accessed them. To learn more about what data the Font Awesome content delivery networks may collect and how that data may be used, see the Font Awesome Privacy Policy. (They do not currently appear to have a cookie policy, and their Privacy Policy does not discuss the use of cookies or similar technologies except in the context of the Font Awesome website.) Font Awesome may use Cloudflare® CDN services to provide the Font Awesome content delivery networks; see the Cloudflare Privacy Policy, the Cloudflare Data Processing Addendum (which applies to personal data Cloudflare services process on behalf of their customers), and the Cloudflare Cookie Policy to learn more about how information collected by Cloudflare services may be used. (Font Awesome is a trademark of Fonticons, Inc. Cloudflare is a trademark and/or registered trademark of Cloudflare, Inc. in the United States and other jurisdictions.)
  • The payment or donation buttons that certain themes and/or plugins place on the administrative dashboard (not normally accessible to site visitors) incorporate content served by PayPal® served by PayPal® services. Accessing a portion of the site containing such content may enable the PayPal services to collect certain information about your device and browser (e.g., your IP address, user agent information, and possibly also device identifiers) as well as recording which specific content your browser requests and/or accesses and the website or URL from which your browser requested and/or accessed that content. The embedded content may also use cookies and/or similar technologies to track and/or identify you and/or store potentially personally identifying information on your device, and may be able to determine whether you are currently logged into a PayPal account. Naturally, if you use a PayPal button to initiate a payment or purchase, the PayPal services may collect various additional information pertaining to that transaction (e.g., payment information and login details for your PayPal account, if any), and will set additional cookies and/or store additional information on your device for that purpose. For more information about what data PayPal services may collect and how that data may be used, visit the “Legal Agreements for PayPal Services” page to review the PayPal Privacy Statement and Statement on Cookies and Tracking Technologies that apply in your location (the Statement on Cookies and Tracking Technologies that applies to each region is linked from within the applicable PayPal Privacy Statement). (Please note that the terms may different depending on where you are.) See the “Financial Transactions Policy” section below to learn more about what information I may collect in connection with PayPal transactions with me that pertain directly to this website. (PayPal.com, PayPal, and all logos related to the PayPal services are either trademarks or registered trademarks of PayPal, Inc. or its licensors. In addition, all page headers, custom graphics, button icons, and scripts related to the PayPal services are service marks, trademarks, and/or trade dress of PayPal.)
  • Embedded video players (whether posted, shared, and/or otherwise displayed by me and/or displayed by certain themes and/or plugins on portions of the administrative dashboard, which is not normally visible or accessible to site visitors other than logged-in administrative users) for content hosted on the YouTube video platform, which is owned by Google LLC. The embedded video player may use cookies and/or similar technologies to track and/or identify you and/or store potentially personally identifying information on your device as well as collecting certain information about your device and browser (e.g., your IP address, user agent information, and possibly also device identifiers), the website or URL through which you accessed the embedded player, the specific video(s) and/or other content loaded through that player, and potentially also other information (such as, without limitation, whether you are currently logged into a Google account). If you play a video through the embedded player, the video platform may also show you ads, and may use cookies and/or other information stored on your device (and/or other information the embedded player, the YouTube platform, and/or Google have gathered about you) for that purpose. Naturally, the YouTube platform may also record your interactions with the embedded video player (e.g., any adjustments you make to the playback settings and/or if you pause playback), and may associate that activity with your YouTube history and/or other Google account data. Visit the “How Google Uses Information from Sites or Apps That Use Our Services” page and the Google Privacy Policy to learn more about what information the YouTube platform and other Google services may collect through and/or in connection with embedded video players and how that information may be used. For additional information about how Google uses cookies and/or other technologies that may collect and/or process personal information, see the “Technologies” section of the “Google Privacy & Terms” pages. For more information about Google advertising, see the “Advertising” section of the “Google Privacy & Terms” pages, which also discusses the use of cookies by Google advertising services. The “Google Business Data Responsibility” pages also include additional information about what data the YouTube platform may share with YouTube content creators/publishers. (Google, YouTube, and other related marks and logos are trademarks of Google LLC.)
  • Embedded video players (whether posted, shared, and/or otherwise displayed by me and/or displayed by certain themes and/or plugins on portions of the administrative dashboard, which is not normally visible or accessible to site visitors) for content hosted on the Vimeo video platform. The embedded video player may use cookies and/or similar technologies to track and/or identify you and/or store potentially personally identifying information on your device as well as collecting certain information about your device and browser (e.g., your IP address, user agent information, and possibly also device identifiers), the website or URL through which you accessed the embedded player, the specific video(s) and/or other content loaded through that player, and potentially also other information (such as, without limitation, whether you are currently logged into a Vimeo account). If you play a video through the embedded player, the video platform may also show you ads, and may use cookies and/or other information stored on your device (and/or other information the embedded player and/or the Vimeo platform have gathered about you) for that purpose. Naturally, the Vimeo platform may also record your interactions with the embedded video player (e.g., any adjustments you make to the playback settings and/or if you pause playback), and may associate that activity with other data about your use of Vimeo services (e.g., your Vimeo viewing history, if any). See the Vimeo Privacy Policy to learn more about what information the Vimeo platform collects and how that information may be used. For more information about the cookies and/or similar technologies the platform may use and how Vimeo users can control the use of third-party analytics and/or advertising cookies in connection with embedded Vimeo video players, see the Vimeo Cookie Policy. The “Vimeo Videos” section of the Cookie Notice for this website provides additional information about certain third-party advertising and/or analytics partners the Vimeo platform uses or has used, although this should not be regarded as an exhaustive list, since the specific partners that platform uses may change or vary, and are entirely outside of my control. (Vimeo and the Vimeo logos are trademarks of Vimeo.com, Inc., registered in the U.S. and other countries.)
  • Embedded Tweets and/or other content I may post, share, and/or otherwise display from the Twitter social media platform. Embedded Twitter content may use cookies and/or similar technologies to track and/or identify you and/or store potentially personally identifying information on your device as well as collecting certain information about your device and browser (e.g., your IP address, user agent information, and possibly also device identifiers), the specific content your browser requests and/or accesses, the website or URL from which your browser requested and/or accessed that content, and potentially also other information (such as, without limitation, whether you are currently logged into a Twitter account). Embedded Twitter content may also show you ads, and may use cookies and/or other information stored on your device (and/or other information the Twitter services may have gathered about you) for that purpose. Naturally, the Twitter services will also record any interaction you may have with the embedded content. See the Twitter Privacy Policy and the Twitter Help Center page “Our use of cookies and similar technologies” to learn more about what information Twitter services collect and how that information may be used. The “Twitter for Websites — ads info and privacy” page and the Privacy section of the Twitter Developer Platform Documentation provide additional information about what data the Twitter services may collect through Twitter content integrated into other websites and your options for controlling the use of that data. (Twitter, Tweet, Retweet, and the Twitter Bird logo are trademarks of Twitter Inc. or its affiliates.)
  • Certain backend (i.e., administrative dashboard) features (which are not normally visible or accessible to site visitors other than logged-in administrative users) served by the SEO firm Yoast BV, which provides one or more plugins I may use on the site. It appears that certain plugin components include embedded content served by Yoast that may collect certain data about the device and browser of an administrative user who accesses such such content (e.g., their IP addresses, user agent information, and possibly also device identifiers), as well as presumably recording which specific content their browser requests and/or accesses and the website or URL from which their browser requested and/or accessed that content; I am uncertain to what extent (if any) that embedded content may also use cookies and/or similar technologies to track and/or identify administrative users and/or store potentially personally identifying information on their devices. My efforts to obtain more details from the developers proved unsuccessful, and I finally found a means to disable the applicable component entirely. See the Yoast Privacy Policy and their “Yoast and your privacy (GDPR)” page to learn more about how Yoast may use personal information they collect. Some versions of the Yoast SEO plugin have incorporated search tools and/or internal search integration features powered by the Algolia search platform, which I assume is subject to the Algolia Privacy Policy and “Cookies” policy. Recent versions of the Yoast SEO plugin also incorporate optional functionality provided by Ryte GmbH, some of which may be served remotely; I disabled the Ryte integration, although it was enabled by default. My efforts to determine what personal information (if any) the Ryte features may collect were also fruitless, although I assume any data that service does collect is subject to the Ryte Privacy Policy. A subsequent Yoast SEO update also added an optional integration with tools provided by Semrush, an SEO and Internet marketing firm (which I have disabled, although as with the Ryte integration, the Semrush integration is turned on by default in current versions of the Yoast SEO plugin). I have so far been unable to determine what personal information (if any) the Semrush integration features may collect, although I assume any data those features do collect is subject to the Semrush Privacy Policy and Cookie Policy. (Yoast is a trademark of Yoast BV, a Dutch limited liability company, registered both in the U.S. and in Europe. Algolia is a trademark of Algolia. Ryte is a trademark or registered trademark of Ryte GmbH. Semrush and SEMRush are trademarks or registered trademarks of Semrush Inc. in the U.S. and other countries. All rights reserved. All other trademarks are the property of their respective owners.)
  • Blog feeds placed by certain themes and/or plugins on portions of the administrative dashboard (which is not normally visible or accessible to site visitors other than logged-in administrative users) via the FeedBurner services, which are web feed management services owned by Google LLC. If you access areas of the dashboard containing these blog feeds, the services may collect certain data about your device and browser (including, though not necessarily limited to, your IP address, user agent information, and possibly also device identifiers); likely records the website or URL through which you accessed the services; may use cookies and/or similar technologies to track and/or identify you and/or store potentially personally identifying information on your device; can usually determine whether you are currently logged into a Google account; and may use various means to track your use of the services (e.g., which feeds you’ve viewed and which posts you last viewed on a particular feed). The FeedBurner services may also show you ads (the use of which is controlled by the respective publishers of content viewed through the feeds; some publishers do not include ads in their feeds, but others do), and may use cookies and/or other information stored on your device (and/or other information the services and/or Google have gathered about you) for that purpose. Again, these feeds are normally only visible to (and thus can only collect information about) logged-in administrative users, not site visitors who are not logged into this website’s administrative dashboard. See the “How Google Uses Information from Sites or Apps That Use Our Services” page and the Google Privacy Policy to learn more about what information Google services collect and how that information may be used. For additional information about how Google uses cookies and/or other technologies that may collect and/or process personal information, see the “Technologies” section of the “Google Privacy & Terms” pages. For more information about Google advertising, see the “Advertising” section of the “Google Privacy & Terms” pages, which also discusses the use of cookies by Google advertising services. (Google, FeedBurner, and other related marks and logos are trademarks of Google LLC.)
  • Administrative dashboard menus that may load icons and/or other images from the Gravatar API via secure.gravatar.com. Although I have disabled support for user avatars, some administrative dashboard menus may still use them. The loading of such icons and/or other images allows the Gravatar service to collect certain data about the user’s device and browser (e.g., their IP address, user agent information, and possibly also device identifiers), and in some cases also their hashed email address, which the Gravatar service uses to check for a current Gravatar or WordPress.com account. The service presumably records which specific icons and/or other images the user’s browser requests and/or accesses as well as the website or URL from which the browser requested and/or accessed them, and may also use cookies and/or similar technologies to track and/or identify users and/or store potentially personally identifying information on their devices. (I believe I have limited the Gravatar service to backend administrative pages not normally accessible to site visitors, and I am endeavoring to remove it there as well.) The Gravatar service — like the WordPress.com services, with which it’s now apparently being integrated — is a venture of Automattic and is subject to the Automattic Privacy Policy, the Automattic Cookie Policy, and the WordPress.com Terms of Service. (Automattic, Gravatar, WordPress.com, their respective logos, and all other graphics and logos used in connection with those services are trademarks or registered trademarks of Automattic (or Automattic’s licensors). WordPress and the WordPress logos are registered trademarks of the WordPress Foundation in the United States and other countries.)
  • Some components of the Sucuri Security plugin described in the “Security Scans” section above are served remotely (and/or involve communication with a remote server) and thus qualify as embedded content. As noted in the “Security Scans” section above, the plugin and its associated services are provided by GoDaddy Media Temple, Inc. d/b/a Sucuri, a subsidiary of GoDaddy Operating Company, LLC (Sucuri). In the course of monitoring the site for possible malicious activity, the plugin may log and/or transmit to Sucuri certain personal information about visitors and/or logged-in administrative users who perform certain actions (e.g., adding or editing a post, updating or installing a plugin). Such information may include, but is not necessarily limited to, those users’ IP addresses as well as the specific action(s) they performed. Embedded content incorporated into the plugin’s dashboard controls may also allow Sucuri to collect certain data about the device and browser of an administrative user who accesses the plugin controls (e.g., the user’s IP address, user agent information, and possibly also device identifiers) — and of course the specific content the user’s browser accesses and/or requests — and/or may use cookies and/or similar technologies to track and/or identify such users and/or store potentially personally identifying information on their devices. The Sucuri Security plugin and its various services are subject to the Sucuri Security Privacy Policy, the Sucuri Cookie Policy (“Our Use of Cookies, Web Beacons, and Similar Technologies”), and the Data Processing Addendum to their Terms of Service. Certain plugin components may be served by the Cloudflare® content delivery network described above, which is subject to the Cloudflare Privacy Policy, the Cloudflare Data Processing Addendum (which applies to personal data Cloudflare services process on behalf of their customers), and the Cloudflare Cookie Policy. (Sucuri, Sucuri Security, Sucuri Security Inc., and Sucuri Inc. are trademarks of Sucuri Inc. and may be registered in certain jurisdictions. GoDaddy is a registered trademark of GoDaddy Operating Company, LLC. Cloudflare is a trademark and/or registered trademark of Cloudflare, Inc. in the United States and other jurisdictions.)
  • Images and/or other content from Creative Commons, such as (without limitation) the various logos, buttons, and/or icons associated with Creative Commons licenses and/or public domain dedications. Accessing a portion of the site that contains images and/or other embedded content hosted on and/or served by a website or online service operated by Creative Commons Corporation allows Creative Commons to collect certain information about your device and browser (e.g., your IP address, user agent information, and possibly also device identifiers) as well as which specific images and/or content your browser requests and/or accesses and the website or URL from which your browser requested and/or accessed the images and/or content; such embedded content may also use cookies and/or similar technologies to track and/or identify you and/or store potentially personally identifying information on your device. Please note that this only applies to images and/or content hosted on and/or served by websites and/or online services operated by Creative Commons Corporation, not to Creative Commons images and/or content that is locally hosted on this website or that is hosted on and/or served by some other third-party website or online service not operated by Creative Commons. To learn more about about what information Creative Commons may collect and how that information may be used, see the Creative Commons Privacy Policy and Creative Commons Cookies Notice. (Creative Commons, CC, the CC in a circle logo, CCPlus, CC+, the CC+ in a circle logo, CC0, all other Creative Commons license and public domain dedication marks, and their associated buttons and icons are trademarks or registered trademarks of Creative Commons.)
  • Certain content served by by the WordPress.org websites and/or their associated API servers, content delivery networks (CDNs), and/or repositories, which may include domains such as (though not necessarily limited to) api.w.org, ps.w.org, s.w.org, and/or ts.w.org. This website periodically communicates with WordPress.org websites and/or associated associated API servers, content delivery networks (CDNs), and/or repositories to check for updates, announcements, warnings, and/or other information related to the WordPress content management system; to install, remove, and/or update plugins, themes, and/or other add-ons available through the WordPress.org websites; to serve certain elements of and/or content on the site’s administrative dashboard; and/or to check the integrity of the website’s WordPress files (which the site’s security features may do from time to time, as noted in the “Security Scans” section above). Any personal information collected through and/or in connection with such communications (which could include, without limitation, users’ IP addresses, user agent information, and device identifiers, and in some cases might also involve the use of cookies and/or similar technologies to track and/or identify users and/or store potentially personally identifying information on their devices) is typically that of logged-in administrative users rather than site visitors. However, in some cases, certain images, scripts, and/or other content on the publicly accessible portions of this website may be also served by and/or otherwise loaded from the WordPress.org websites and/or their associated servers, CDNs, and/or repositories, which may allow the WordPress.org websites to also collect certain information about the devices and browsers of visitors who are not logged-in administrators (e.g., their IP addresses, user agent information, and possibly also device identifiers); record which specific content visitors’ browsers request and/or access and the website or URL from which their browsers requested and/or accessed that content; use cookies and/or similar technologies to track and/or identify visitors; and/or store potentially personally identifying information on visitors’ devices. For more information about how the WordPress.org websites use the information they gather, see the WordPress.org Privacy Policy and Cookie Policy. (WordPress and the WordPress logos are registered trademarks of the WordPress Foundation in the United States and other countries.)

Not all of the above embedded content is necessarily used on the site at any given time, and from time to time, I may post or otherwise use embedded content hosted on and served by other third-party websites or services not listed above — for example (but without limitation), an embedded player showing an externally hosted video or audio file, or an embedded map provided by some external mapping service. To learn more about what personal information such third-party websites or services may collect and how that information may be used, you should review those sites or services’ respective privacy policies, cookie policies, and/or terms of service/terms.

Please note that the types of information embedded content providers may collect (and/or may place on your device) and the technologies they may use to identify and/or track users are constantly evolving in ways that are outside my control (and sometimes beyond my technical understanding). This means that my embedded content providers may also use and/or add other information-gathering and/or tracking technologies to their embedded content beyond what I can reasonably hope to describe or specify in this section. Additionally, some or all of my embedded content providers may use various subcontractors, subprocessors, vendors, subsidiaries, affiliates, and/or partners to process information related to their services, which is also outside of my control and generally beyond my reasonable ability to enumerate here.

I do not have access to the data embedded content providers may gather about website visitors/users in the manner described in this section, nor do I usually have any control over those providers’ use or retention of that data. Some embedded content providers may use the information they collect about you through your access to or interaction with that content for a variety of commercial purposes, such as showing you advertising and/or providing information about your online habits to the provider’s clients and customers. The only way I could completely avoid the possibility of such commercial use would be to cease using or offering embedded content and the functionality it provides.

Obviously, other websites or online services, including ones to which I may link and/or on which I have accounts, may also use embedded content, including other types of content and/or content from providers not specified here, which in most cases is outside of my control. See those websites or services’ respective privacy policies, cookie policies, and/or terms of service/terms of use for more information. Embedded content used on my automotive website, Ate Up With Motor, and/or my professional writing/editing/writing consulting website, 6200 Productions, is described in those websites’ respective privacy policies; again, you can find links to those policies near the top of this page. (Ate Up With Motor is a trademark of Aaron Severson dba Ate Up With Motor. 6200 Productions is a trademark of Aaron Severson dba 6200 Productions.)

Advertising

Advertisements (including sponsored links), if any that appear on the publicly visible/publicly accessible portions of this website are served by me — that is, the advertisement content is hosted on my website server along with the other site content rather than being served by some external provider. I do not permit my advertisers to use scripts, cookies, web beacons, or other such technologies to collect information about you through the publicly visible/publicly accessible portions of the site. (Advertisements, banners, or donation boxes on the site’s administrative dashboard may sometimes collect personal information, but since the dashboard is only accessible to logged-in administrative users, such information-gathering and disclosure normally only involves my information, not that of other site visitors.) However, if you click on advertising links or otherwise patronize my advertisers’ businesses, they may gather and use information about you — potentially for various commercial purposes — as described in their respective privacy policies, cookie policies, and/or terms of service/terms of use, which is outside of my control. Such advertisers may also be able to tell that you clicked on an ad on this website.

The developers of some of the plugins, themes, and/or other components I use on this website may sometimes display advertisements, donation boxes, or other commercial messages on portions of the site’s administrative dashboard, which is not normally visible or accessible to visitors other than logged-in administrative users. For example, the settings menu for a particular plugin might display an advertisement for a premium version of that plugin or for the developer’s other products or services. Such dashboard advertisements may set cookies and/or incorporate embedded content and/or other information-gathering mechanisms, which may gather information about administrative users who access that content (such as their IP address, user agent information, and/or browser settings and/or add-ons) in the manner described in the “Embedded Content” section above. The collection, use, and retention of such data is controlled by the applicable developers and/or their respective service providers and is typically outside of my control. Because these advertisements are usually not publicly visible or accessible, this information-gathering normally affects only site administrators — meaning me — NOT other site visitors.

Subscribing via Web Feed (Atom and RSS)

Web feeds are a form of web syndication, using protocols such as the Atom Syndication Format or RSS to access online content. In essence, web feeds regularly check for updates on the linked site or resource and automatically display any new content in your feed management app or service (or, for web browser-based feed management add-ons, in a specific area of your browser), allowing you to easily keep track of new content on the linked site or resource. If I configure the aaronseverson.com website to allow such web feed syndication, you may “subscribe” via web feed if you are equipped to do so, and the website may provide buttons and/or other tools to facilitate that “subscription” process. The content displayed through a web feed is the same content shown to other visitors to this website, just formatted and delivered in a somewhat different way to suit the technical parameters of the web feed.

If you “subscribe” in this manner, the connections your web feed management app or service makes to this website to check for and display updates will be automatically recorded in the website logs as described in the “Website Server, Error, and Security Logs” section above, just as if you visited the site directly. It is sometimes possible to determine from the log data if certain individual log entries pertain to a web feed user or to a visitor who directly accessed the site through their browser (and the log data may reveal the type of web feed involved, if any), but otherwise, the types of information I gather from web feed users and my use and retention of that information are generally the same as if you visit the site directly. I don’t receive notifications when someone subscribes or unsubscribes via web feed, nor do web feeds provide me with information such as your name or email address. (There are services that provide such information about subscribers, but I don’t currently use any of them in connection with this website.)

If the website content you view through a web feed contains any third-party embedded content (e.g., an embedded video player), the provider of that content may be able to gather personal information about you as described in the “Embedded Content” section above, just as if you were accessing that content by visiting this website directly.

Some third-party apps and services for managing web feeds may themselves use cookies and/or similar technologies to track and/or identify you, store potentially personally identifying information on your device, and/or employ other means to monitor the content you access via web feed. The details are specific to the app or service involved, and are outside of my control.

Information You Provide to Me

Through your use of this website, you may provide me with personal information in a number of different ways, described in the sections below.

For obvious reasons, I cannot provide certain services or functionality if you don’t provide me with at least a certain amount of accurate information — for example, I can’t respond to your inquiries if I don’t have a valid email address or other contact information for you. I typically also need your legal name and certain other personal information for financial transactions (see the “Financial Transactions Policy” section below) and for communications pertaining to financial and/or legal matters (e.g., copyright inquiries).

Otherwise, you’re under no obligation to share personal information with me beyond what the site collects automatically.

Consents and Agreements

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity*; errors and suspicious activity*; names*; email addresses*; email header information*; other contact information (e.g., phone numbers, postal mailing addresses, and/or other street addresses)*; other documents/materials (including metadata)*; geolocation data (estimated from IP addresses and/or inferred from other data)*; URLs/websites*; other personal information*; special: details of legal agreements (where applicable)*; special: mobile phone types/models (determined from user agent information)*; special: information collected via cookies and/or similar technologies*; special: usernames, user ID numbers, and/or other identifiers associated with administrative users*; special: other identifiers*
  • Purpose(s): Functionality; providing services; completing a transaction; fulfilling a contractual obligation; legal compliance or audit; research and publishing; security, troubleshooting, quality control, and service improvement; recruitment/hiring/employment or business partnerships; advertising and other commercial purposes
  • Data retention: Typically indefinite.

When you use this website and/or certain site functions, you may be asked to give your consent for my gathering and/or use of your personal information; save your privacy preferences (e.g., your cookie settings); and/or accept certain legal terms (e.g., the
Terms of Use). Some site functions and/or content may not be available unless you agree to the Privacy Policy and/or other applicable terms.

Certain consent and privacy preference settings may be stored on your device/browser using cookies and/or similar technologies (see the “Cookies and Similar Technologies” section above). Other consents, preferences, and/or agreements may be recorded in the website database and/or other records, and may be associated with other information I have gathered and/or that you submit to me (e.g., your comment(s) and/or form submission(s)). If you withdraw your consent(s), change your privacy preferences, and/or update or otherwise modify your consent(s) and/or agreement(s) (e.g., to indicate your acceptance of a revised version of this Privacy Policy), those changes may be stored and/or recorded in similar ways.

Where I compile records of user consents, agreements, and/or privacy preferences, those records are usually retained indefinitely unless a user requests deletion of their data (after which I may still retain certain records for audit and compliance purposes and/or for other legal reasons). However, I may periodically delete stored consents, agreements, and/or privacy preferences if they appear to have come from bots rather than human users, or, in some cases, if that information was recorded in connection with some plugin, service, or tool I no longer use (in which case the recorded information may no longer be usable).

Consents, agreements, and/or privacy preferences stored on your device/browser using cookies and/or similar technologies are normally retained only for as long as the applicable cookies and/or stored information remain on your device/browser; if the cookies and/or stored information expire or are removed, you may be asked for your consent, agreement, and/or preferences again. (In general, I do not separately compile or maintain records of consents, agreements, or privacy preferences stored using cookies and/or similar technologies, although if you have ALSO entered into an agreement with us or given us specific consents in other ways, such separate agreements and/or consents may be retained as described above.) The Cookie Notice lists the normal durations of the cookies I use, although as that Notice explains, your actions and/or your individual browser settings may affect how long cookies and/or stored information remain on your device/browser.

I may share, release, and/or otherwise disclose saved consent and/or agreement data in connection with a related dispute or legal action, and/or as otherwise described in “Disclosure of Personally Identifying Information” below. (Naturally, the ways I use, share, release, and/or otherwise disclose such data may depend on the nature and purpose(s) of the specific consent(s) and/or agreement(s) in question.)

Age Verification

  • Categories of information gathered: Visitor activity; errors and suspicious activity*; other personal information (birth dates/ages); special: information collected via cookies and/or similar technologies*; special: usernames, user ID numbers, and/or other identifiers associated with administrative users*
  • Purpose(s): Functionality; providing services; legal compliance or audit; security, troubleshooting, quality control, and service improvement
  • Data retention: None, although age verification cookies (which do not contain your birth date or age, just whether or not you’ve passed the verification test) may remain on your device for up to 14 days.

Before you access certain content on this website, you may be asked to enter your birth date to verify that you are at least 18 years old. The birth date you enter is used only to calculate your age, perform a single logical test (are you at least 18, yes or no), and then place a cookie (see the “Cookies and Similar Technologies” section above) on your device/browser that indicates whether or not you have passed this age verification test. If you fail the verification test, the website may place a cookie on your device/browser to prevent you from trying again to access any age-restricted content.

Each time you access age-restricted content on this site, the website will check for these cookies. If you delete the age verification cookies or if they expire, you may be prompted to enter your birth date again.

The website does not retain either the birth date you enter or the age the verification system calculates, and I do not use that information for any other purpose. (If you access or somehow indicate to me that you’ve accessed age-restricted content on this site — for example, if you leave a comment on an age-restricted post — I will reasonably assume that you are over 18, but the age verification system itself does not store or tell me your actual age or date of birth.)

If you have questions about the age verification system, please contact me via any of the methods described in “Controller/Responsible Party, Questions, and How to Reach Me” below.

Comments

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity; errors and suspicious activity*; names; email addresses; email header information*; other contact information (e.g., phone numbers, postal mailing addresses, and/or other street addresses)*; images and/or other media (including metadata)*; other documents/materials (including metadata)*; geolocation data*; URLs/websites*; other personal information*; special: mobile phone types/models (determined from user agent information)*; special: device identifiers*; special: information collected via cookies and/or similar technologies*; special: usernames, user ID numbers, and/or other identifiers associated with administrative users*; special: other identifiers*
  • Purpose(s): Functionality; providing services; legal compliance or audit; research and publishing; security, troubleshooting, quality control, and service improvement; recruitment/hiring/employment or business partnerships; advertising and other commercial purposes
  • Data retention: Typically indefinite, although I promptly delete spam and/or abuse, comments the submitter asks me to delete, and/or comments on or in reply to a comment or other content that has been deleted. IP addresses and/or user agent information of published comments may be redacted after publication.

Note: Although the comment function includes a box for your name, you are perfectly free to comment me using only a pseudonym. However, without a valid email address, I won’t be able to contact you with any questions about your comment and I may not be able to associate that comment with any other personal information about you (so, for example, it won’t be included if you use the data retrieval tools on the Privacy Tools page).

Comments you submit are usually moderated, meaning they are not published until I approve them. Any comment you submit may also be subjected to certain automated tests for security purposes, to discourage spamming, and/or to filter out comments submitted by automated bots rather than human users. For example (but without limitation), if your IP address was previously used in spamming this website; if your IP address and/or user agent appear on ban lists/blacklists I have obtained; if your comment contains hyperlinks, common spam keywords (such as the names of certain well-known prescription pharmaceuticals), and/or suspicious code; and/or if you posted the comment using an automated script rather than the normal comment form, your comment may be flagged as spam or automatically deleted. Also, if your comment contains hyperlinks, certain types of HTML and/or other code, emojis, and/or special characters, they may be removed, either by being automatically “stripped” prior to publication or manually deleted by me.

Each time a comment is submitted, the website automatically forwards that comment to me as an email notification so that I can review the comment and decide whether or not to approve and publish it. (As noted in “Security Scans” above, this means that any information in your comment may be scanned for scanned for suspected spam, malware, and/or other suspicious activity by me and/or my web host, Internet service provider(s), mobile carrier(s), and/or other applicable service provider(s).)

By submitting a comment, I will assume that you are expressly authorizing me to publish and use the contents of that comment (including any images, other media files, and/or links the comment may contain) Comment Policy section of the Terms of Use. If your comment is approved and published, any information you entered in the “Name” and “Comment” fields (and/or the “Website” field, if I have enabled it) will become publicly visible. The email address you enter in the “Email” field will not be published with your comment, nor will your IP address, although any contact information you include in the “Comment” field may be, as may any images and/or other media files you include and the metadata of those files. (See the “Data in Submitted Images” section below.) If the site’s “Recent Comments” Widget(s) are enabled, your name/pseudonym and a link to your comment may also be visible on the home page and other areas of the website as well as the specific article you commented on; the contents of published comments may also appear in search results of the website’s search function and/or to users who have subscribed to this website’s web feeds (as described in “Subscribing via Web Feed (Atom and RSS)” above). If I have enabled the option that allows visitors to request email notifications of replies or follow-up comments, copies of your published comment may also be emailed to visitors who have requested such notifications. Once your comment is published, I cannot control and take no responsibility for what third parties may do with any publicly visible personal information that comment contains!

As explained in the “Commenting” subsection of the Cookie Notice, when you submit a comment, you may have the option to save your name, email, and URL for use in future comments. Doing so places a set of cookies on your device to store that information. These cookies are browser-specific (that is, they work only in the web browser in which you set them) and normally expire in just under one year unless otherwise deleted. These cookies are not set at all unless you select the appropriate option when submitting a comment, and you can delete the cookies in your browser at any time.

When you submit a comment, you may also have the option to request email notifications each time a reply and/or follow-up comment is posted. If you have previously requested such notifications and wish to stop receiving them, please contact me via email (to admin (at) aaronseverson (dot) com) or by leaving a comment elsewhere on the site asking me to disable the notifications or remove that comment.

If you submit a valid email address with your comment, I may email you at that address prior to or instead of publishing the comment, particularly if I have questions or need to clarify some aspect of your comment. For example (but without limitation), if you have submitted two very similar comments, I might email you to ask which one you prefer me to publish, and if your comment contains what appears to be particularly sensitive information, I typically try to double-check that you wish to publish that information before approving it.

From time to time, I may gather additional information about you in connection with your submitted comment(s). For example (but without limitation), I might look up your name in a search engine to better understand who you are and the context of your comment. In many cases, such additional information comes from publicly available sources, but I may sometimes also seek additional nonpublic information about you, which may from a variety of sources, depending on the specific context and circumstances.

Although the website automatically collects the IP address and user agent information of anyone who submits a comment (information I need for security and troubleshooting purposes and to distinguish human users from automated “bots”), I typically redact that information after a comment is published. I retain the email address along with the comment in case I need to contact the person who submitted it with any questions or issues related to the comment; email addresses are also my primary means of associating comments with the people who submitted them in the event I receive a request to access, delete, and/or correct personal information.

If you would like to edit or remove any of your published comments, please let me know by leaving another comment or emailing me at admin (at) aaronseverson (dot) com, specifying the comment(s) in question and explaining what you want me to do. (I may ask you to clarify or confirm your request before making the change or deletion, especially if I’m not sure exactly what you want me to do or if I need to take additional steps to verify your identity.)

The deletion of a comment (whether at your request or at my discretion) typically also deletes its associated information, although I may retain that information if I still need it for some specific purpose (e.g., for security or troubleshooting, for legal reasons, or because it contains information pertaining to my content or research), and copies of the comment and its associated information may remain for a time in backups or archives created by me and/or my web host. Keep in mind that even if a previously published comment is deleted, any publicly visible information in that comment (and/or any image(s) or other media it may have included) may have been accessed and/or used by third parties prior to its removal, which is beyond my control.

Obviously, if you’ve left multiple comments and/or communicated with me in other ways, I may still retain your email address and/or other information in connection with your other comments/messages even if certain of your individual comments are deleted.

I may also share, release, and/or otherwise disclose personal information I receive through and/or in connection with user comments as otherwise described in “Disclosure of Personally Identifying Information” below.

Contact Forms

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity; errors and suspicious activity*; names; email addresses; email header information*; other contact information (e.g., phone numbers, postal mailing addresses, and/or other street addresses)*; images and/or other media (including metadata)*; other documents/materials (including metadata)*; geolocation data*; URLs/websites*; other personal information*; special: details of legal agreements (where applicable)*; special: mobile phone types/models (determined from user agent information)*; special: device identifiers*; special: information collected via cookies and/or similar technologies*; special: usernames, user ID numbers, and/or other identifiers associated with administrative users*; special: other identifiers*
  • Purpose(s): Functionality; providing services; completing a transaction; fulfilling a contractual obligation; legal compliance or audit; research and publishing; security, troubleshooting, quality control, and service improvement; recruitment/hiring/employment or business partnerships; advertising and other commercial purposes
  • Data retention: Typically indefinite, although I promptly delete obvious spam and/or abuse, duplicates, blank or unreadable submissions, and/or any submission containing suspicious code and/or suspicious links. Form submission data I retain is normally removed from the website server(s) to local and/or offline storage after receipt (although in some cases it may be captured in routine database backup files created by me and/or my web host, which may remain on the server(s) for longer periods) and I may sometimes redact certain portions that I no longer need. Information from California Privacy Request Form submissions must be retained for at least 24 months for compliance purposes. See also the “Additional Information About Data Retention” section below.

This section applies to messages you send me through any contact or feedback forms I may offer on the aaronseverson.com website, including, but not limited to, California Privacy Request Forms submitted through the Do Not Sell My Personal Information page.

This website may perform certain automated tests on form submissions in order to filter out submissions made by automated bots and discourage spamming and other malicious activity. For example (but without limitation), if your IP address was previously used in spamming this website; if your IP address and/or user agent appear on ban lists/blacklists supplied by my security and/or anti-spam plugins; if your submission contains hyperlinks, common spam keywords (such as the names of certain well-known prescription pharmaceuticals), and/or suspicious code; if you submit the form using an automated script; if you incorrectly answer a captcha or math challenge; and/or if you fill in certain “honeypot” fields not intended to be completed by human users, your submission may be flagged as spam and/or automatically deleted. If your form submission contains HTML and/or other code, emojis, and/or special characters, they may be automatically removed. This automatic filtering is in addition to human moderation of form submissions; I routinely delete submissions that appear to be spam or contain suspicious code.

Because the website forwards new form submissions to me as email notifications, your submitted information may also be scanned for suspected spam, malware, and/or other suspicious activity, as described in the “Security Scans” section above.

When I receive your submission, I may gather additional information about you to verify your identity and/or help me better understand the context of your inquiry. For example (but without limitation), if you send me a message containing a business offer or advertising inquiry, I might look up your company name and/or visit your website to learn more about the nature of your business. In many cases, such additional information comes from publicly available sources, but I may sometimes also seek additional nonpublic information about you, which may from a variety of sources, depending on the specific context and circumstances.

If I reply to your submission, I will normally do so via the email address you submitted unless you indicate that you wish me to respond in some other way.

If you use the California Privacy Request Form on the Do Not Sell My Personal Information page to submit a request to exercise your privacy rights under the California Consumer Privacy Act of 2018 (CCPA) (see “Additional California Privacy Rights (CCPA)” below for more information about this law), or if you submit a CCPA request on behalf of someone else for whom you are acting as an authorized agent, I will contact you to discuss the next steps involved in processing your request, which may require me to verify your identity.

For contact or feedback form submissions OTHER than California Privacy Request Forms, I may publish your message or portions of it under the following circumstances:

  • If your inquiry includes corrections, clarifications, and/or suggestions pertaining to my content, I may incorporate the factual substance of your corrections, clarifications, and/or suggestions into the applicable content (e.g., to correct or clarify factual or typographical errors you identified).
  • If your inquiry provides significant assistance with the management of this website, my content, and/or some related matter(s), I may elect to publicly acknowledge and/or thank you by name or applicable pseudonym, unless you ask me not to or I reasonably surmise that you prefer not to be acknowledged or identified.
  • If you ask a general question or report some functional or technical issue with the site, I may (unless you ask me not to) publish excerpts of your question or report on the aaronseverson.com website to respond to your inquiry and/or support other users with similar concerns. I will redact any information that appears to be personally identifying other than your name or pseudonym. If I have published your inquiry in this manner and you wish me to amend or further redact it (for example, to remove your name and substitute a pseudonym), I will make all reasonable efforts to accommodate your request provided that it does not infringe upon the rights of others or attempt to impersonate some other individual or organization.
  • In the event your message identifies a technical problem that I am unable to fix, I may publish or otherwise communicate the substance of your reported issue (but NOT your name or other personal information) on this website in other public forums (e.g., the WordPress.org support forums), and/or to other third parties to help me troubleshoot and/or resolve the problem you identified. (WordPress is a registered trademark of the WordPress Foundation in the United States and other countries.)
  • If you ask or authorize me to publish your message (or some portion of it), I may do so as I deem appropriate.

I may share information related to CCPA requests to the extent required and/or otherwise permitted by applicable law/regulations for administrative and/or compliance purposes; to respond to subpoenas or other court orders; and/or to publish de-identified and/or aggregated information about requests I receive, as described in “Reports and Aggregated Statistics” below.

Otherwise, I may share, release, and/or otherwise disclose personal information I receive through and/or in connection with form submissions as described in “Disclosure of Personally Identifying Information” below.

Other Inquiries, Messages, and Support Requests

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity*; errors and suspicious activity*; names; email addresses*; email header information*; other contact information (e.g., phone numbers, postal mailing addresses, and/or other street addresses)*; images and/or other media (including metadata)*; other documents/materials (including metadata)*; geolocation data*; URLs/websites*; other personal information*; special: mobile phone types/models (determined from user agent information)*; special: device identifiers*; special: information collected via cookies and/or similar technologies*; special: usernames, user ID numbers, and/or other identifiers associated with administrative users*; special: other identifiers*; special: identifiers and/or other information specific to third-party services (as applicable)*
  • Purpose(s): Functionality; providing services; completing a transaction; fulfilling a contractual obligation; legal compliance or audit; research and publishing; security, troubleshooting, quality control, and service improvement; recruitment/hiring/employment or business partnerships; advertising and other commercial purposes
  • Data retention: Varies, but potentially indefinite; see “Additional Information About Data Retention” below.

This section refers to messages or communications I receive about or in connection with this website OTHER than through comments or Contact Forms (such as, without limitation, support requests sent via email, site-related inquiries sent via postal mail, and/or site-related telephone calls and/or text messages.

Special Note: In general, you’re perfectly free to contact me using a pseudonym unless your communication(s) pertain to a legal matter, a specific financial transaction, or certain privacy-related requests, in which case I may need your legal name. Obviously, some modes of communication are better suited than others for anonymity.

The types of personal information I collect in connection with such messages can vary significantly depending on the specific mode of communication. For example (but without limitation), a text message is unlikely to include your IP address or user agent information, but will almost certainly reveal your phone number, and a voice mail message will obviously record your voice (which in some cases may be automatically transcribed). Email messages typically include a variety of potentially personally identifying metadata in the email headers and any file attachments, such as images (see “Data in Submitted Images” below). If you contact me via a third-party website or service such as social media, the message will likely include your account name, profile picture, and potentially information in your public profile and/or that you make visible or otherwise accessible to me; the messages themselves might also be publicly visible. With some third-party services, individual settings may also affect what information is shared and/or accessible in connection with messages and/or other communications.

As noted in the “Comments” section above, when you contact me, I may sometimes gather additional information about you to help me better understand who you are and the context of your message. For example (but without limitation), if I receive a telephone call from an unfamiliar number, I might look up the number in a search engine or reverse telephone directory, and if you email me a business proposition, I might visit your website to learn more about your business before replying. In many cases, such additional information comes from publicly available sources, but I may sometimes also seek additional nonpublic information about you, which may from a variety of sources, depending on the specific context and circumstances.

If I reply to your message, I will normally do so via the same means you used to contact me unless you indicate that you wish me to respond in some other way. In some cases (such as if I receive messages related to one of my other websites through the admin address for this one, or if you send me site-related email through one of my personal accounts or addresses), I may, if possible, forward the message to an appropriate administrative account or address and respond from there instead.

Keep in mind that messages exchanged via third-party sites or services are subject to those sites or services’ respective privacy policies, cookie policies, and/or terms of service/terms of use, which are outside of my control, and which may apply in addition to or, in some cases, instead of this Privacy Policy and the Terms of Use of this website. For example, if you send me a commercial inquiry related to this website via a third-party messaging service, this Privacy Policy will govern how I use and/or retain that inquiry and the information it contains, but the applicable messaging service’s policies will govern how that service uses and/or retains information from and/or related to that communication. This includes (without limitation) calls and/or texts made or received using the Google Voice communications service and/or any messages sent or received via my account(s) on the Gmail email service. Although I now strive to limit my use of third-party email services for site-related business, some messages related to this website (such as, without limitation, notifications, call and/or voice mail transcripts, texts, and/or other messages made or received via the Google Voice service, and/or notifications or other messages pertaining to other Google services I may use) may occasionally be sent or received via and/or remain archived in those accounts, which are subject to any applicable Google terms and policies, including, but not limited to, the Google Terms of Service (and, where applicable, any other terms and policies that apply to the use of the Google Voice service, which are summarized in the Google Voice “Additional Terms of Service” help page); the Google Privacy Policy; and, where applicable, the Google Telephony Services Privacy Disclosure. (Google, Gmail, Google Voice, Google Workspace, and other related marks and logos are trademarks of Google LLC.) Obviously, I may also communicate with people via various other third-party services; these are just a few representative examples.

As explained in the “Security Scans” section above, messages I send or receive may be scanned for suspected spam, malware, and/or other suspicious activity by me and/or (as applicable) my web host, Internet service provider(s), mobile carrier(s), and/or other applicable service provider(s). This may include messages I receive through a third-party website or service if I have message notifications forwarded to me via some other means. (With some services, notifications include only the fact that a new message was received from a particular sender; other services include some or all of the message in the notification.) I (and/or my applicable service providers) may also perform other types of automated tests on messages I receive — for example (but without limitation), I may automatically filter, flag, and/or categorize certain types of messages to help me better organize and manage my inbox(es).

If you communicate with me by some means or medium that is shared by (and thus accessible to) multiple users, and/or that is publicly accessible — for example (but without limitation), via an email discussion group or group chat, on social media, and/or by transmitting electronic files via shared FTP folder(s) — those communications and any personal information they contain may be visible or otherwise accessible to anyone with access to the shared medium. I cannot control and take no responsibility for what third parties may do with any personal information in shared and/or publicly accessible communications, so you should exercise caution when sharing sensitive information in such ways.

I may publish your messages or other communications, or portions thereof, under the same circumstances as described in the “Contact Forms” section above. Obviously, information that pertains to my articles or other content (for example, if I interview or consult with you in connection with an article) may be published and/or otherwise disclosed in that context. Otherwise, I may share, release, and/or otherwise disclose personal information I receive through and/or in connection with inquiries, messages, and support requests as described in “Disclosure of Personally Identifying Information” below.

See the “Additional Information About Data Retention” section below to learn more about my typical data retention practices. The data retention and data use policies of any third-party websites or services you may use to contact me are generally outside of my control.

Other Information You Provide to Me

In certain cases, you may provide me with personal information through and/or pertaining to this website in ways not specifically mentioned above. For example (but without limitation), if you send me an inquiry about this Privacy Policy via postal mail, it will likely include your mailing address as well as any information in your inquiry itself; if for some reason you visit my home and connect your mobile device to my personal wireless network (which is not available to the general public), my wireless router may log certain information about your device and/or its Internet connections. Any images and/or other media you provide to me may contain a variety of personal information; see “Data in Submitted Images” below. (These are just a few of the many possibilities, not an exhaustive list.)

My use and retention of personal information you provide to me in such ways will depend on the nature of the information and the context in which I received it, although in general, I only share, release, and/or otherwise disclose such information as described in “Disclosure of Personally Identifying Information” below. See the “Additional Information About Data Retention” section below to learn more about my typical data retention practices.

Data in Submitted Images

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity*; errors and suspicious activity*; names*; email addresses*; email header information*; other contact information*; images and/or other media (including metadata); other documents/materials (including metadata)*; geolocation data (provided by the creator/rights holder/repository, determined from metadata, and/or inferred from other data)*; URLs/websites*; other personal information*; special: camera and/or mobile phone types/models (determined from metadata or inferred from other data)*; special: device identifiers*; metadata; special: other identifiers*; special: identifiers and/or other information specific to third-party services (as applicable)*; special: other visible and/or audible information that may be personally identifying and/or potentially personally identifying (e.g., a pictured car’s license plate and/or vehicle identification numbers)*
  • Purpose(s): Functionality; providing services; fulfilling a contractual obligation; legal compliance or audit; research and publishing; security, troubleshooting, quality control, and service improvement; recruitment/hiring/employment or business partnerships; advertising and other commercial purposes
  • Data retention: See below.

Photographs and other images or media I collect for use on this website (or for some related purpose) — whether submitted by you in connection with a comment or other communication; created by me; or obtained from some other source — may contain an assortment of personal information.

First, the recognizable image and/or identifiable likeness of any individual person in images and/or other media (and/or their audible voice in a video or audio recording, broadcast, or other media) is usually considered to be personal information about that individual. Images or other media may also contain and/or allow me to infer other types of personal information.

Second, digital media files usually contain metadata (such as Exif information) added by the camera or device that originally generated the file and/or by any software used to edit it, some of which may include and/or constitute personal information and/or potentially personally identifying information. At a minimum, metadata normally includes the filename, type, size, creation date/time, and the date/time of the most recent modification of that file. For digital photos, metadata typically also includes the make and model of the camera/device, camera and image settings (e.g., shutter speed, F-stop, color profile, whether the flash fired), and sometimes the type and version of any editing software used. Depending on the type of camera/device, the software used, and the individual settings, the metadata could also include personal information and/or potentially personally identifying information, such as (though not necessarily limited to) the photographer’s name and/or the location where the photo was taken, based on GPS coordinates (a common option on modern GPS-equipped cameras and mobile devices). Video and/or audio recording devices and/or editing software may add various metadata to other types of digital media files. The number of potential variations is too great to detail here, so you should consult the documentation and settings for your individual device and software.

Naturally, if you submit an image or other media file to me, you are providing me with any information contained in the image or media file and its metadata, as well as any other information you provide to me about the image or media file, its subject(s) and/or setting(s), and/or the context in which it was created. If the image or media file is published on this website, this information may be included, making it publicly available. I cannot control and take no responsibility for what third parties may do with any personal information a published image/other media file or its metadata may contain.

If I use your images and/or other media on this website, I may also ADD metadata to the file(s) and/or alter the filename(s) to indicate your copyright and license information (e.g., “© 2018 John Doe; used with permission”). This helps me to keep track of the provenance of the images and/or media files I use.

I typically also gather additional information about the images and/or other media I use and any subject(s) and/or setting(s) they depict or illustrate so that I can correctly identify and describe them (and/or so I can understand and/or accurately describe the circumstances under which the images and/or other media were created — e.g., where and when a particular photograph was taken). Such information may come from a variety of publicly available and/or nonpublic sources depending on the nature of the images and/or media files and the context in which I obtained them.

If you submit an image or other media file to me, you are free to remove or redact any personally identifying metadata it may contain — and/or to obscure personal information in the image or media itself — prior to submitting it to me. (Certain types of metadata (e.g., file extensions) are necessary for an electronic file to function properly, but other metadata can be edited or redacted, either through your computer’s file system or by using appropriate editing tools.)

In some cases, I may be able, upon your request, to remove or obscure personal information from the images or other media files you submit to me or from specifically previously submitted ones. I may also elect to remove certain data on my own initiative and/or do so incidentally in the process of preparing the images/media files for use (e.g., by creating a resized copy of an image that omits some or all of the original image file’s metadata). However, please note that this is not always feasible. Also, if the image is owned by someone else, I might need the rights holder’s advance permission to alter it.

If I remove or obscure information from an image or other media file that has already been published on this website, copies of the original version (with personally identifying information intact) may remain for a time in cached pages and/or backup files created by me and/or my web host. Again, please keep in mind that any personal information contained in the earlier version of the image or media file may already have been accessed and/or used by third parties during the time it was publicly available, which is beyond my control.

I typically retain indefinitely offline copies and archival backups of the photos, images, and other media files I publish on this website, including, where possible, the associated work files and editing stages, if any, for images or files I have modified. However, I may delete, destroy, or discard certain specific images and/or other media files if they are duplicates; if I deem them unusable (e.g., photos that are out of focus, badly cropped, or too dark to see clearly); if the files are damaged or corrupt; if I have agreed and/or have some contractual or legal reason to delete them (e.g., if I have agreed to delete all copies of a particular image); or if I elect to not use them (or to discontinue using them) for some other reason. If I have contact information and/or other relevant data pertaining to the creator(s) and/or subject(s) of a particular photograph, image, or other media file, I customarily retain that data for at least as long as I retain the file itself.

If you have questions about image-related data, please contact me via any of the methods described in “Controller/Responsible Party, Questions, and How to Reach Me” below.

Data Related to Recruitment/Hiring/Employment or Business Partnerships

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity*; errors and suspicious activity*; names; email addresses; email header information*; other contact information (e.g., phone numbers, postal mailing addresses, and/or other street addresses); images and/or other media (including metadata)*; other documents/materials (including metadata); geolocation data*; URLs/websites*; other personal information; special: mobile phone types/models (determined from user agent information)*; special: device identifiers*; special: information collected via cookies and/or similar technologies*; special: usernames, user ID numbers, and/or other identifiers associated with administrative users*; special: other identifiers*; special: identifiers and/or other information specific to third-party services (as applicable)*
  • Purpose(s): Providing services; fulfilling a contractual obligation; legal compliance or audit; research and publishing; security, troubleshooting, quality control, and service improvement; recruitment/hiring/employment or business partnerships
  • Data retention: Potentially indefinite, although I may delete or discard unsolicited offers or inquiries, spam, inquiries or applications that I believe to be fraudulent or submitted by bots, and/or information I have some legal or contractual obligation to delete or discard; see below for more details.

From time to time, I may seek to recruit and/or hire temporary or permanent employees, independent contractors, and/or interns to help me provide my services and/or perform specific tasks and/or functions for me. In some cases, I may enter or contemplate entering some other type of professional relationship with some other individual(s) or entity: for example (but without limitation), a formal business partnership or joint venture (JV).

Please note that the inclusion of this section DOES NOT necessarily mean that I am hiring, soliciting partnership or JV proposals, or likely to do so in the immediately foreseeable future. The purpose of this section is to describe my policy for handling information in such situations.

In such situations, I may collect (to the extent permitted by applicable law/regulations) a broad range of personal information about any current and/or prospective employees, independent contractors, interns, and/or business partners, such as (without limitation) contact information; resumes/CVs; education information; professional certifications and/or licensure information; employment history; professional references and/or information about current and/or previous clients, customers, and/or business ventures; professional portfolios and/or other samples; skill or aptitude test results; government-issued identification; information about their authorization to work in my locale; salary or compensation information and/or history; tax-related information; and/or the various types of information revealed in a typical background check or investigation. (This is not an exhaustive list; the types of information I collect may vary depending on the context, and applicable law/regulations may dictate what types of information I must and/or must not collect or consider.) Obviously, I may also make various inferences based on the information I collect, such as my judgment of a candidate or applicant’s suitability for a specific role or whether a proposed venture is in my interests.

The information I collect may come directly from the applicable individual(s) or entity — with whom I may of course communicate via email, phone, and/or various other means as I deem appropriate in the particular circumstances — and/or from third-party sources such as (again without limitation) staffing agencies/employment agencies, fingerprinting and/or background check services, current and/or past colleagues and/or coworkers, current and/or past clients and/or customers, current and/or past business partners, professional references, current and/or past instructors and/or students, subject matter experts, public records, news reports, and/or other publicly available information or records.

My retention of such data varies depending on the context in which I received it. I may promptly delete unsolicited offers or solicitations as spam, although I typically retain inquiries to which I respond, even if I decline them. If I advertise a job opening, I may indefinitely retain applications I receive, whether or not the opening is filled, although I may discard applications that appear to be fraudulent or that were obviously generated by bots rather than people. My retention of applications or related information I receive through third parties such as staffing agencies/employment agencies, and/or information I receive in connection with an offer of partnership or other business proposal, may be subject to certain contractual requirements (e.g., an obligation to return or destroy certain information after a specific period of time). Applicable law/regulations may also govern whether and for how long I retain employment, hiring, application, and/or related information. The retention of related data by third parties (such as, without limitation, staffing agencies/employment agencies and/or other vendors or service providers) is subject to the respective policies of such third parties, and in many cases is outside of my control.

I may share information pertaining to current and/or prospective employees, independent contractors, interns, business partners, business proposals, and/or business ventures as I deem reasonable and appropriate (and to the extent permitted by applicable law/regulations and/or any relevant contractual obligations) for me to make informed hiring, employment, and/or other business decisions. For example (but without limitation), I might share a job applicant’s information with a service that conducts background checks for me, discuss a prospective independent contractor’s work and professional reputation with their previous clients, or seek financial and/or legal advice regarding a possible partnership or other business venture. I may also share, release, and/or otherwise disclose such information as otherwise described in “Disclosure of Personally Identifying Information” below.

Financial Transactions Policy

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity*; errors and suspicious activity*; names; email addresses; email header information*; other contact information (e.g., phone numbers, postal mailing addresses, and/or other street addresses)*; images and/or other media (possibly including metadata)*; geolocation data*; URLs/websites*; other personal information*; special: amounts and other transaction-specific details and/or other financial information such as transaction IDs, checks, and/or tax forms*; special: mobile phone types/models (determined from user agent information)*; special: device identifiers*; special: information collected via cookies and/or similar technologies*; special: other identifiers*; special: identifiers and/or other information specific to third-party services (as applicable)* (Please note that payment processor(s), bank(s), other financial institution(s), and/or other applicable third-party service(s) may also collect other types of information not listed here.)
  • Purpose(s): Functionality; providing services; completing a transaction; fulfilling a contractual obligation; legal compliance or audit; research and publishing; security, troubleshooting, quality control, and service improvement; advertising and other commercial purposes
  • Data retention: Typically indefinite; see below.

The following policy applies to financial transactions with me that pertain to the aaronseverson.com website, such as (without limitation) the purchase of advertisements on this website.

Please note that this policy applies only to transactions pertaining directly to the aaronseverson.com website, and then only to transactions you enter into with me, NOT to your transactions with third-party vendors, retailers, or services that are outside of my direct control. For example, if you purchase a copy of some work I have written through an online bookseller, the bookseller’s policies will apply, NOT this Financial Transactions Policy. Transactions related to my professional writing/editing/writing consulting business, 6200 Productions, will be subject to its separate Financial Transactions Policy, while transactions related to my automotive website, Ate Up With Motor, will be subject to the Ate Up With Motor Financial Transactions Policy, not this one. (6200 Productions is a trademark of Aaron Severson dba 6200 Productions. Ate Up With Motor is a trademark of Aaron Severson dba Ate Up With Motor.) You should refer to those separate policies where applicable; while the policies are generally similar, they are not identical.

If your transaction is pursuant to a separate written agreement with me (such as, without limitation, a contract for professional services, an advertising or endorsement agreement, or a license agreement for the use of my content), the terms of that agreement shall, where applicable, take precedence over the terms of this Financial Transactions Policy. Similarly, if a transaction involves one or more third-party services (e.g., payment processors, marketplaces, auction services) that impose or otherwise require specific policies with respect to transactions conducted on and/or otherwise involving their services, those policies shall — to the extent such service(s) may require and where applicable — take precedence over the terms of this Financial Transactions Policy. For example (but without limitation), if a particular transaction is conducted through an online marketplace that requires such transactions to be returnable or refundable under certain conditions, such requirements shall take precedence over the policy described in “Refunds and Returns” below.

Transaction-Related Information Gathering

If you enter into a financial transaction with me that pertains directly to the aaronseverson.com website — whether to make a payment to me or for me to pay you for goods, services, or some other purpose — I may collect certain personal information from you, such as (without limitation) your name, company name (if applicable), email address, billing address and/or other contact information, transaction details, payment information, invoice numbers and/or other transaction identifiers, and (where applicable) relevant tax documents such as (again without limitation) Form 1099-MISC and/or Form W-9.

If your transaction is via a third-party payment processing service, much of this information, including payment details such as bank account or credit card numbers, will be collected and processed by the payment processor rather than by me. For other types of transactions, that information may be collected and processed directly by me and/or the applicable bank(s) and/or other financial institution(s). (For example (but without limitation), if you make a payment to me by check, the check will necessarily include the routing and account numbers so that the applicable bank(s) and/or other financial institution(s) can process the deposit and the transfer of funds.)

Transactions conducted via PayPal® services are subject to the PayPal User Agreement, the PayPal Privacy Statement, the Statement on Cookies and Tracking Technologies (which is linked from within the applicable PayPal Privacy Statement), and any other applicable PayPal policies, terms, and/or conditions. (These may differ depending on where you are, so visit the “Legal Agreements for PayPal Services” page and select your location using the drop-down menu to see the versions of these agreements and documents that apply to you. I am located in the United States and thus am subject to the U.S. versions.) The PayPal services may use cookies and/or similar technologies in the payment button and/or the shopping cart to collect information about, track, and/or identify users, in addition to whatever information the services may collect to log you into your PayPal account (if any) and/or complete any applicable transaction(s). I do not have access to user data gathered by PayPal services except for the information I receive in connection with a completed PayPal transaction, which is described in the following paragraph.

If a transaction is completed via PayPal services, I may receive a standard transaction report (which is sent to me via email as well as being stored in my PayPal account) that contains various personal information, typically including (though not necessarily limited to) a unique transaction ID number, your name, email address, mailing address, and shipping address (if different); the date and amount(s) of the payment(s) (and of course what each payment was for); whether or not you are a “Verified” PayPal user; and any notes or additional instructions that may have been specified. If the payment(s) were for a PayPal invoice, a copy of that invoice will be appended to the report. This transaction report does NOT include bank account or credit card numbers — the PayPal services do not provide and I do not have access to any credit card, bank account, or other financial institution account information you use with your PayPal transactions or have associated with your PayPal account. The receipts, payment confirmations, and/or other transaction-related notices I receive when I make payments and/or purchases via that service may contain personal information similar to that found in the transaction reports for payments I receive via PayPal services. (PayPal.com, PayPal, and all logos related to the PayPal services are either trademarks or registered trademarks of PayPal, Inc. or its licensors. In addition, all page headers, custom graphics, button icons, and scripts related to the PayPal services are service marks, trademarks, and/or trade dress of PayPal.)

In some cases, I may seek additional information about you in connection with your transaction, either from you directly and/or from third-party sources. Some examples might include (without limitation) looking up your address in a mapping or navigation service to clarify delivery instructions for a courier or other delivery provider; checking with the applicable postal service to verify your postal code; inquiring whether payments made from a business account or business email address are for the business or for the individual; and/or investigating suspected fraud and/or other security issues. (These are just a few representative examples, not an exhaustive list.) Such additional information may come from a variety of publicly available and/or nonpublic sources depending on the specific context and circumstances.

If I enter into and/or complete a transaction with you via and/or otherwise involving a third-party service, the applicable service may provide me with additional information about you and/or other individual(s) or entities involved with that transaction (e.g., your profile picture, if any, on that service), as further described in “Transaction-Related Information I Receive from Third Parties” below.

I may use the personal information I collect in connection with transactions for billing/invoicing; so that I can process and/or complete the applicable transaction(s); to respond to your transaction-related questions, inquiries, and/or comments; for my administrative, accounting/bookkeeping, tax reporting, and/or legal compliance purposes; to troubleshoot and/or resolve technical problems, and/or for service improvement purposes; for fraud prevention and/or other security purposes; and/or to fulfill my contractual obligations to the applicable payment processor(s), bank(s) and/or other financial institution(s), and/or other relevant third parties (e.g., my agent(s) and/or manager(s), if any). (In particular, my service agreements with my payment processor(s), bank(s), and/or other financial institution(s) typically require me to cooperate with their investigations and to respond promptly to their requests for relevant information.) Naturally, transaction-related information may also help me to achieve various other business and/or commercial purposes, such as (without limitation) deciding whether to continue offering a particular product or service; measuring the effectiveness of my advertising and/or marketing efforts; setting prices; determining what products, services, and/or content to offer in the future; and/or making my own purchasing decisions. While such purposes typically involve aggregated transaction data (e.g., total sales, revenues, returns, and/or conversions) rather than personal information pertaining to individual transactions, I may also consider and/or otherwise use information related to specific transactions if I deem it relevant — for example (again without limitation), taking specific customer feedback and/or certain past client experiences into account when weighing a particular business or commercial decision, and/or describing my experience with a specific transaction as part of a review of the applicable vendor(s).

Acceptable Payment Types

I accept payments via PayPal services for the purchase of advertising on the aaronseverson.com website. I do not accept payments via PayPal services for my professional writing/editing/writing consulting services or for the licensing of my content. (PayPal is a registered trademark of PayPal, Inc.)

Unless I indicate otherwise, payments for my professional services, the licensing of my content, and/or other types of transactions should be by check, money order, or bank draft/cashier’s check/teller’s check, payable to Aaron Severson.

Currency

Payments to me should be in U.S. funds, with any exceptions to be discussed in advance and subject to my prior approval.

Some payment processors, including many PayPal services, will automatically convert payments or funds transfers to the recipient’s preferred currency, or at least give you the option to do so. If your transaction is via PayPal services, you may assume any non-U.S. funds will be appropriately converted unless the applicable PayPal service warns or notifies you otherwise. (PayPal is a registered trademark of PayPal, Inc.)

For other types of transactions drawn on non-U.S. funds, such as international wire transfers, please contact me in advance so that we can discuss appropriate arrangements for currency conversion.

Taxes

For certain types of transactions, I may be required to collect and/or withhold tax (e.g., sales or use tax) from you and pay it directly to the applicable tax agency or agencies. Please note that you may owe tax (e.g., sales/use tax, VAT, GST, and/or other taxes) on transactions with me even if I do not collect and/or withhold such tax from you. Any applicable taxes you may owe that I do not collect and/or withhold from you are your sole responsibility, as are any tax returns and/or other documents you may be required to submit to the applicable tax agency or agencies in connection with such transactions.

Returned Check Fees

Payments you make to me by check or bank draft that are rejected or returned by my bank(s) and/or other financial institution(s) for insufficient funds or for any other reason shall be subject to a $35 returned check fee. (This fee is to cover the fees my bank(s) and/or other financial institution(s) charge me in such circumstances.) I reserve the right to waive this returned check fee at my sole discretion.

Refunds and Returns

The following refund and return policy shall apply to payments you make to me that pertain directly to the aaronseverson.com website:

  • Advertising Purchases: You may cancel your ad on aaronseverson.com for a full refund within five days of your payment. If you choose to cancel your ad after five days but prior to the expiration date, I will credit the prorated remainder of the commitment period toward a future ad, but cannot provide a cash refund except where I are required to do so by the applicable payment processor(s), bank(s), other financial institution(s), and/or other applicable third-party service(s) or as otherwise required by law. Notwithstanding the foregoing, I reserve the right to refuse and/or refund (in whole or in part) any individual advertising purchase or purchases at my sole discretion.
  • Other Purchases: Purchases of goods or services other than advertising are fully refundable prior to the delivery by me of the applicable good(s) and/or the performance by me of the applicable service(s). In the event you purchase tangible good(s) (e.g., a printed book) from me, you may return the purchased good(s) for a full refund, less any applicable shipping costs, within 21 days of the date of your payment or the period allowed by the applicable payment processor(s), bank(s), other financial institution(s), and/or other applicable third-party service(s), whichever is greater. Except as otherwise required by the applicable payment processor(s), bank(s), other financial institution(s), and/or other applicable third-party service(s) or otherwise required by law, purchases of digital goods and/or services other than advertising (such as, without limitation, the purchase of an ebook and/or payment(s) for my writing/editing/writing consulting services) are nonrefundable once the applicable good(s) and/or service(s) have been delivered and/or performed (as applicable) by me, and I reserve the right to calculate refunds for services I have partly performed, but not yet wholly completed, on a pro rata basis, depending on the nature of the service and the percentage or proportion I have already performed or otherwise completed. Notwithstanding the foregoing, I reserve the right to refuse and/or refund (in whole or in part) any individual purchase or purchases, and/or any applicable shipping costs, at my sole discretion.
  • Other Types of Transactions: For transactions that do not fit into any of the above categories (including, though not limited to, payment(s) of license fees and/or royalties for the reuse of my content), eligibility for refunds or returns shall be determined on a case-by-case basis and shall be at my sole discretion, except as otherwise required by the applicable payment processor(s), bank(s), other financial institution(s), and/or other applicable third-party service(s) or otherwise required by law. I reserve the right to refuse and/or refund (in whole or in part) any individual transaction or transactions, at my sole discretion.

Notwithstanding the foregoing, payments you make to me that pertain directly to the aaronseverson.com website shall be eligible for refunds and/or returns to the extent required by the policies of the applicable payment processor(s), bank(s), other financial institution(s), and/or other applicable third-party service(s) or as otherwise required by law. For example (but without limitation), if payment for a transaction is made via a third-party payment processor, that payment processor’s policies may require me to offer refunds and/or returns for that transaction, even if I otherwise treat such transactions as nonrefundable.

Information Sharing

By making a payment (by whatever means), you grant me express permission to disclose information associated with your transaction(s), including, where appropriate, copies of any applicable invoices, checks and/or receipts, payment processor transaction reports (if applicable), shipping records (if any), and/or related tax documents:

  1. To the applicable email, telephony, and/or other communications service provider(s), for purposes of transaction-related communications; and/or:
  2. To the applicable postal service(s), common carrier(s), and/or shipping agency (or agencies), for purposes of sending, receiving, and/or tracking the status of transaction-related correspondence, shipments, and/or deliveries; and/or:
  3. To the applicable person(s) or entity, in the event the transaction is for or on behalf of some other person(s) or entity (e.g., a purchase you make as a gift for someone else); and/or:
  4. To my legal counsel, accountant/bookkeeper(s), tax preparer(s), and/or tax attorney(s), as I deem reasonably necessary to my routine business operations, for legal compliance and/or audit purposes, and/or for my legal protection; and/or:
  5. To my employees, independent contractors, interns, agents, business partners, vendors, and/or service providers (as applicable) that need to know the information in order to complete your transaction, support my routine business operations, and/or otherwise provide services for me and/or on my behalf; and/or:
  6. To the applicable payment processor(s), bank(s), and/or other financial institution(s); their legal counsel, auditors, and/or fraud protection services (for example, if I must provide information in connection with a dispute or fraud investigation); and/or as otherwise required by my contractual agreements (if any) with such payment processor(s), bank(s), and/or other financial institution(s); and/or:
  7. To any applicable federal, state, local, or other tax agency (whether within or outside the United States), where I deem it reasonably necessary to ensure my compliance with applicable tax laws and/or regulations (e.g., to calculate or estimate applicable tax rates and/or in connection with tax returns, filings, withholding, and/or estimated tax payments), and/or in connection with audits or other official investigations; and/or:
  8. As otherwise required by law (e.g., to comply with applicable government reporting or disclosure requirements, such as customs inspections; in connection with a civil or criminal trial or other official investigation or proceeding; and/or if I have received a subpoena or court order requiring me to disclose certain information); and/or:
  9. As otherwise described in “Disclosure of Personally Identifying Information” below.

Where applicable, I may also disclose in any or all of the above-listed ways personal information related to payments I make to you (and/or transactions with which I am involved in some other way) that pertain directly to the aaronseverson.com website. If the information pertains to my purchase of site-related goods, products, services, and/or content (and/or some other, similar, comparable, and/or related transaction(s)), I may also use and/or disclose relevant portions of that information in connection with customer service, support, warranty, and/or insurance matters, and/or share, release, and/or otherwise disclose relevant information as part of and/or in connection with reviews and/or other commentary regarding the applicable transaction(s). For example (but without limitation), if I post a review of a recent site-related purchase, I might mention my experience with the specific salesperson or customer service representative who assisted me, and filing a warranty claim or support ticket for a recent purchase might require submitting receipts or other proofs of purchase.

By making a payment, you also grant me express permission to communicate with you regarding your transaction via email and/or postal mail (e.g., to acknowledge, complete, and/or address questions and/or issues related to your transaction), and/or, if you call or text me regarding your transaction and/or ask me to call or text you, to communicate with you regarding your transaction by phone and/or via text message.

As explained in the “Security Scans” section of the Privacy Policy, messages and/or notifications that I send or receive, including transaction-related notifications and/or messages, may be scanned for suspected spam, malware, and/or other suspicious activity by me and/or (as applicable) my web host, Internet service provider(s), mobile carrier(s), and/or other applicable service provider(s).

Data Retention

I generally must indefinitely retain records of my business-related financial transactions — including ones I refuse and/or refund — for bookkeeping and compliance purposes. See the “Additional Information About Data Retention” section below to learn more about my typical data retention practices. The retention of transaction-related data by third parties (such as, without limitation, applicable tax agencies, bank(s) and/or other financial institution(s), and/or payment processor(s)) is subject to the respective policies of such third parties, and in many cases is outside of my control.

Customer Service Information

If you have questions about this Financial Transactions Policy or need help with a transaction, you can reach me via email at admin (at) aaronseverson (dot) com; by using the Contact Form (if available); or by calling or texting (310) 909-7846‬. IMPORTANT NOTE: Calls or messages to this number — which is provided by the Google Voice communications service — may be transcribed and/or recorded, and transcriptions, recordings, call notifications (including notifications of missed calls), texts, and/or other messages may be transmitted via email. All communications made or received through this number are subject to any applicable Google terms and policies — including, but not limited to, the ones listed in the Google Voice “Additional Terms of Service” help page; the Google Privacy Policy; and, where applicable, the Google Telephony Services Privacy Disclosure — as well as to this Privacy Policy. (Google, Google Voice, Google Workspace, and other related marks are trademarks of Google LLC. I am not affiliated with or endorsed by Google in any way.)

You can also contact me via postal mail:

Aaron Severson
Attn: Customer Service
11100 National Bl. #3
Los Angeles, CA 90064

You may also submit questions about this Financial Transactions Policy and/or inquiries regarding specific purchases or other transactions via any other contact method I may reasonably designate or make available to you for that purpose — for example (but without limitation), the contact information listed on an invoice I submit to you or that is specified in an applicable written agreement or other business communication with me.

Information I Receive from Other Sources

Transaction-Related Information I Receive from Third Parties

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity*; errors and suspicious activity*; names*; email addresses*; email header information*; other contact information (e.g., phone numbers, postal mailing addresses, and/or other street addresses)*; images and/or other media (possibly including metadata)*; geolocation data*; URLs/websites*; other personal information*; special: amounts and other transaction-specific details and/or other financial information such as transaction IDs and/or payment amounts*; special: mobile phone types/models (determined from user agent information)*; special: device identifiers*; special: information collected via cookies and/or similar technologies*; special: other identifiers*; special: identifiers and/or other information specific to third-party services (as applicable)* (Please note that the applicable vendor(s), service(s), and/or payment processor(s) may also collect other types of information not listed here.)
  • Purpose(s): Functionality; providing services; completing a transaction; fulfilling a contractual obligation; legal compliance or audit; research and publishing; security, troubleshooting, quality control, and service improvement; advertising and other commercial purposes
  • Data retention: Typically indefinite; see below.

As noted in the “Financial Transactions Policy” section above, I may receive information about you from third parties in connection with your transactions with me (e.g., transaction reports). See that section for more details.

If I offer goods, products, services, and/or content through some third-party vendor or service (e.g., if I offer a book I’ve written through a third-party publisher, or offer goods and/or products through an online marketplace or auction service), that vendor or service may provide me with information about completed transactions, which in some cases may include personal information about individuals or households who purchase my goods, products, services, and/or content (rather than just aggregated statistics such as total sales). Similarly, such vendors and/or services may provide me with information about people who interact with my offered goods, products, services, and/or content (or the listings for them) in some other way: for example (but without limitation), by leaving comments, ratings, and/or reviews; adding my product to a wish list; preordering a product or service that is not yet available; bidding on an item offered at auction; and/or asking me a question. The type of information I may receive in such ways naturally varies depending on the specific vendor(s) and/or service(s) involved and the nature of the interaction, but could conceivably include any information about applicable person(s) and/or entities that is publicly visible (e.g., username/account name, profile picture, and/or public profile information) and/or that the person or entity makes visible or otherwise accessible to me.

In the same way, if I purchase goods, products, services, and/or content through a third-party vendor or service, conduct some other financial transaction(s) via such means, and/or am otherwise involved with such transaction(s) in connection with and/or otherwise involving the aaronseverson.com website, the applicable vendor(s) and/or service(s) may provide me with additional personal information about other individual(s) or entities involved in or otherwise connected with the transaction — for example (but without limitation), the seller’s profile picture and/or geographical location, and/or the name of the individual salesperson who processed my order.

Depending on the nature of the transaction, I might also receive additional transaction-related personal information from other third-party vendors and/or service providers. For example (but without limitation), applicable bank(s) and/or other financial institution(s) might inform me that a payment has been declined or disputed, a shipping service might provide me with status updates about the delivery of a package, or a fulfillment service might warn me that certain ordered items are back-ordered or no longer available. The types of information I may receive in such cases, and the vendors and/or service providers that might provide it, naturally depend on the context and the nature of the transaction.

Where I receive personal information in such contexts, I may use that information so that I can (if applicable) process and complete the relevant transaction(s) (and/or resolve transaction-related problems); to respond to transaction-related questions, inquiries, and/or comments; for my administrative, accounting/bookkeeping, tax reporting, and/or legal compliance purposes; to troubleshoot and/or resolve technical problems, and/or for service improvement purposes; for fraud prevention and/or other security purposes; and/or to fulfill my contractual obligations to the applicable third-party vendor or service and/or any other relevant third parties (e.g., my agent(s) and/or manager(s), if any). As noted in the “Financial Transactions Policy” section above, if the information pertains to my purchase of site-related goods, products, services, and/or content (and/or some other, similar, comparable, and/or related transaction(s)), I may also use and/or disclose relevant portions of that information in connection with customer service, support, warranty, and/or insurance matters, and/or share, release, and/or otherwise disclose relevant information as part of and/or in connection with reviews and/or other commentary regarding the applicable transaction(s). For example (but without limitation), if I post a review of a recent site-related purchase, I might mention my experience with the specific salesperson or customer service representative who assisted me, and filing a warranty claim or support ticket for a recent purchase might require submitting receipts or other proofs of purchase.

As noted in the “Financial Transactions Policy” section above, transaction-related information may also help me to achieve various other business and/or commercial purposes. While such purposes typically involve aggregated transaction data (e.g., total sales, revenues, returns, and/or conversions) rather than personal information pertaining to individual transactions, I may also consider and/or otherwise use information related to specific transactions if I deem it relevant — for example (again without limitation), taking specific customer feedback and/or certain past client experiences into account when weighing a particular business or commercial decision.

I typically retain such information indefinitely; it isn’t necessarily separable from transaction records I must retain for bookkeeping and compliance purposes, and some services retain such information (and may continue to make it available to me) indefinitely, whether or not I separately retain it. (See the “Additional Information About Data Retention” section below to learn more about my typical data retention practices.) I may share, release, and/or otherwise disclose such information as indicated above and/or as otherwise described in “Disclosure of Personally Identifying Information” below. The retention of data by third-party vendors or service providers is subject to the respective policies of such third parties, and in many cases is outside of my control.

Information I Receive from Third Parties for Security Purposes

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity*; errors and suspicious activity*; names*; email addresses*; email header information*; other contact information (e.g., phone numbers, postal mailing addresses, and/or other street addresses)*; images and/or other media (including metadata)*; geolocation data (determined directly, estimated from IP addresses, and/or inferred from other data)*; other personal information*; special: mobile phone types/models (determined from user agent information)*; special: device identifiers*; metadata*; special: information collected via cookies and/or similar technologies*; special: usernames, user ID numbers, and/or other identifiers associated with administrative users*; special: other identifiers*; special: identifiers and/or other information specific to third-party services (as applicable)*; special: other technical details (some of which might be potentially personally identifying and/or constitute personal information in certain jurisdictions)*
  • Purpose(s): Functionality; providing services; fulfilling a contractual obligation [see below]; legal compliance or audit; security, troubleshooting, quality control, and service improvement; recruitment/hiring/employment or business partnerships
  • Data retention: Varies, but potentially indefinite.

Some of the security measures I use to secure this website, its data, and/or my system(s) and/or device(s) may periodically supply me with ban lists/blacklists/block lists of IP addresses, domain names, email addresses, user agents, and/or other such information that may be associated with malicious activity such as (without limitation) spamming and/or attempts to transmit or otherwise propagate malicious code. I may also obtain similar information and/or lists from a variety of publicly available and/or nonpublic sources. (A representative sampling of such sources is included among the examples of third-party vendors and/or service providers that appear in the “Disclosure of Personally Identifying Information” section below, although since security-related information and/or alerts may come from many different sources, those examples should not be regarded as an exhaustive list.)

Naturally, my security software and/or services also maintain regularly updated lists of virus signatures and other detection data to identify and prevent malicious activity. I may also receive alerts and/or other security-related information from various sources regarding data breaches and/or suspected intrusion attempts that could potentially expose my online credentials and/or other personal information to unauthorized persons and/or malicious actors.

Such security-related information is not necessarily personally identifying (for example, the IP addresses included on spam block lists are typically for email servers rather than individual users), but certain information may be personally identifying or potentially personally identifying (e.g., email addresses associated with spamming, and/or telephone numbers used by telemarketers or as part of scams or other malicious activity).

In some cases, I may perform WHOIS, RDAP (Registration Data Access Protocol), and/or similar lookups on certain IP addresses and/or domain names, especially if they have been used for suspicious or malicious activity directed at and/or otherwise involving this website and/or me. Such lookups may enable me to determine information such as (though not limited to) the owner of a particular domain registration and/or the geographic location associated with a particular IP address. My firewalls and/or other security applications, software, and/or services may provide me with similar information about any online servers or resources to which my devices and/or systems connect or attempt to connect (and/or that connect or attempt to connect to my devices and/or systems). For example (but without limitation), the NetGuard firewall app retrieves such info via IPinfo to help me understand and control the Internet connections my mobile apps make and/or attempt to make. (IPinfo is a trademark or registered trademark of IDB LLC in the United States and/or other countries.)

As noted in the “Data Related to Recruitment/Hiring/Employment or Professional Partnerships” section above, if I hire, contemplate hiring, or enter into or contemplate entering into a business partnership or other professional relationship with some individual(s) or entity, I may conduct and/or commission background checks on such individual(s) or entity to help me make informed decisions regarding any potential security risks a particular individual or entity might present.

My retention of such data varies. Much of the information I collect of this kind is managed automatically by my security tools, which regularly update the associated data, adding new information and sometimes changing or removing older data. Also, I periodically make manual changes to that information, such as (without limitation) when I whitelist an email address that was wrongly flagged for spam or blacklist an email address or domain that has sent me suspicious emails.

Special Note: The reason I include “fulfilling a contractual obligation” among the possible purposes listed above is that certain sources from which I obtain security information may impose contractual limits on how I collect and handle that information (e.g., terms of service prohibiting me from altering security update data or interfering with the normal update process) and/or may not permit me to pick and choose which data I do or do not add.

In many cases, such data is already publicly available. I may also share, release, and/or otherwise disclose such information if I need technical assistance and/or otherwise consider such disclosure appropriate for my security and/or the security of others. For example (but without limitation), I might submit to the maintainers of these lists or databases certain email addresses or domain names that have been used in malicious activity directed at me, or post information on support forums in order to obtain help or advice in preventing and/or remediating certain malicious activity.

I may also share, release, and/or otherwise disclose such information in connection with legal action involving malicious activity, and/or as otherwise described in “Disclosure of Personally Identifying Information” below.

Other Information I Receive from Third-Party Sources

  • Categories of information gathered: IP addresses*; domain names*; user agent information*; visitor activity*; errors and suspicious activity*; names; email addresses*; email header information*; other contact information (e.g., phone numbers, postal mailing addresses, and/or other street addresses)*; images and/or other media (including metadata)*; other documents/materials (including metadata)*; geolocation data (provided by sources and/or inferred from other data)*; URLs/websites*; other personal information*; special: mobile phone types/models (determined from user agent information)*; special: device identifiers*; metadata*; special: information collected via cookies and/or similar technologies*; special: usernames, user ID numbers, and/or other identifiers associated with administrative users*; special: other identifiers*; special: identifiers and/or other information specific to third-party services (as applicable)*
  • Purpose(s): Functionality; providing services; fulfilling a contractual obligation; legal compliance or audit; research and publishing; security, troubleshooting, quality control, and service improvement; recruitment/hiring/employment or business partnerships; advertising and other commercial purposes
  • Data retention: Varies depending on context; see below.

  • From time to time, I may receive personal information about site visitors or otherwise related to this website from other third-party sources. The following are some representative examples of this information-gathering:

    As noted in the “Comments”; “Contact Forms”; and “Other Inquiries, Messages, and Support Requests” sections above, I may sometimes gather additional information about individuals who contact me in order to better understand who they are and the context of their inquiries. I may seek such information from a variety of public and/or nonpublic third-party sources, in addition to whatever information was provided by the person who submitted the comment or other message.

    As noted in the “Data in Submitted Images” section above, when I gather photographs, other images, and/or other media intended for use on this website or for some related purpose (whether those images were created by me or obtained from others), I typically look for additional information about the subjects of those images. This information, which may come from a variety of public and/or nonpublic sources, may sometimes include personal information and/or potentially personally identifying information, such as (without limitation) biographical details about the famous owners of a particular object shown in a photograph.

    If I use an image or other content you have offered under a Creative Commons license or other, similar license, I typically gather certain publicly available information about you for the purposes of properly attributing that content and otherwise complying with the applicable license terms. (Where I deem it appropriate, I sometimes do the same with content that is in the public domain in my jurisdiction, such as works created by U.S. federal employees in the context of their official duties.) This may include any creator information listed on the hosting service, archive, or repository from which I obtained the content as well as other relevant information I may find in various print or online sources. (Creative Commons, CC, the CC in a circle logo, CCPlus, CC+, the CC+ in a circle logo, CC0, all other Creative Commons license and public domain dedication marks, and their associated buttons and icons are trademarks or registered trademarks of Creative Commons.)

    As noted in the “Data Related to Recruitment/Hiring/Employment or Professional Partnerships” section above, if I hire, contemplate hiring, or enter into or contemplate entering into a business partnership or other professional relationship with some individual(s) or entity, I may collect a range of personal information about them so that I can make informed hiring, employment, and/or business decisions. I may seek such information from a variety of public and/or nonpublic third-party sources in addition to any information provided by the applicable individual(s) or entity.

    Similarly, I may collect a range of personal information about any individual(s) or entity (e.g., editors, publishers, prospective clients or employers, and/or other third parties) for whom I provide or contemplate providing (and/or to whom I offer or contemplate offering) my writing/editing/writing consulting services; to whom I license, sell, and/or otherwise offer (or contemplate licensing, selling, and/or otherwise offering) my content and/or other creative work; and/or for whom I otherwise work, provide services, and/or contemplate working and/or providing services, to help me make informed decisions about my professional engagement(s), business dealings, and/or work. Such information may come from a variety of public and/or nonpublic third-party sources in addition to any information provided by the applicable individual(s) or entity.

    If I have any employees, independent contractors, interns, agents, and/or business partners, their collaboration(s) with me and/or the services they provide for me and/or on my behalf may entail and/or include their providing me with personal information about relevant people. For example (but without limitation), if I hire a researcher to delve into a specific topic, or if I engage a freelance photographer or videographer to take pictures and/or videos for my content, it is likely that the work they do for me will involve their collecting at least a certain amount of personal information about people who are the subjects of and/or otherwise relevant to that work, and then communicating that information to me. Again, the types of personal information that I might receive in such ways will naturally vary depending on the nature of the collaboration and/or specific services involved. For example (again without limitation), a tax preparer is unlikely to provide me with photos of living individuals, but I might hire a researcher or photographer for that express purpose.

    In some cases, third-party vendors and/or service providers also may provide me with personal information about specific individuals and/or households. For example (but without limitation), a messaging service might notify me that someone listed in my phone’s contacts has joined that service, is typing, and/or has seen a particular message; my mobile phone bill might reveal that a certain person I called uses the same carrier I do; or a hotel where I am staying might accept business-related messages and/or packages addressed to me while I am out, which would necessarily involve hotel staff collecting certain information from the sender(s) and communicating that information to me when I return. The precise nature and extent of the information that might be provided to me in such ways naturally depend on the specific circumstances and the nature of the service(s) involved.

    In particular, social media services typically offer a variety of information and insights about the people who interact with me and/or the content I post on those services, and/or whose content I view and/or otherwise interact with on a particular service or services — for example (but without limitation), sending notifications when someone “likes” or comments on my content, or providing insights such as summaries of how many people have viewed or otherwise interacted with a specific post. Again, the precise nature and extent of such information and/or insights obviously vary depending on the specific service and context, and at least some of the information may be in aggregated form (e.g., statistics and graphs showing trends in interactions over time), but it may include (or at least make readily available to me) any information about applicable person(s) and/or entities that is publicly visible (e.g., the username/account name, profile picture, and/or public profile information of someone who comments on one of my posts or marks it as a favorite) and/or that the person or entity makes visible or otherwise accessible to me. Such information may include, but is not necessarily limited to, details about an individual or entity’s connections with other users of that social media service and/or about the individual or entity’s other activity on that service (e.g., other posts on which they have just commented), and in some cases may also reveal a variety of other personal information.

    Also, where I use vendors and/or service providers to purchase, access, and/or otherwise obtain published works and/or other publicly available information and/or resources that contain and/or otherwise incorporate personal information about individuals or households — for example (again without limitation), if I order a copy of a book or magazine from a bookseller; use a streaming service offered through one of my public libraries to watch a documentary; read a news report or historical article published on or offered through another website or an app or online service; that discusses the lives and/or work of notable people related to the class’s subject matter; and/or download a photo containing recognizable people from a repository of images and other media files available under free licenses — the applicable vendor(s) and/or service provider(s) could also be said to be providing me with personal information.

    I may also receive personal information about someone through their employees, independent contractors, interns, agents or other authorized representatives, business partners, vendors, and/or service providers. For example (but without limitation), if I call someone’s office, their assistant or secretary might disclose their employer’s current whereabouts and/or schedule so that we can arrange a call or meeting, or I might speak directly to someone’s accountant(s) and/or tax preparer(s) regarding payment- and/or tax-related questions. Naturally, if someone elects to communicate with me through some agent or other authorized representative, that agent or representative may provide me with whatever personal information the person(s) for whom they are acting instruct and/or authorize them to share. Someone’s vendors and/or service providers (even ones I do not use myself) might also provide me with personal information about someone who uses their services. For example (again without limitation), if someone sends me a package via a shipping service or courier, the shipping label and/or waybill might indicate the sender’s account number as well as their name and return address, or the email service of someone to whom I have sent an email message might warn me that my message could not be delivered because the recipient’s mailbox is full. Furthermore, in some jurisdictions, the simple fact that someone uses a particular vendor or service may constitute personal information. Again, the details and extent of any personal information I might receive in such ways may vary considerably depending on the specific context and circumstances.

    From time to time, site visitors and/or personal and/or professional acquaintances (which may include, but obviously are not limited to, other members of a given household and/or family) may provide me with personal information about some individual and/or household, whether directly or indirectly. For example (but without limitation), another site visitor might provide me with your contact information for some specific purpose, send me a clipping of a newspaper interview with you, or submit photographs and/or other media in which you are visible. If you own an interesting or unusual car, someone might provide me with pictures of and/or information about it, either for my general interest or for use on my Ate Up With Motor website and/or in connection with my other automotive writing. (Ate Up With Motor is a trademark of Aaron Severson dba Ate Up With Motor.)

    Published works (e.g., books, magazines, newspapers, CDs, DVDs, broadcast radio and/or television programs, streaming media, other publicly available online content, and/or theatrical movies) I use and/or access in connection with this website, its content, and/or my other creative endeavors (and/or advertising and/or promotional materials related to such published works) often contain and/or otherwise incorporate an assortment of personal information, both about the subjects of the work and about the people who created, produced, and/or published it. I may also gather additional information about the people described, depicted, and/or involved with such published works, such as (without limitation) seeking to identify pictured individuals not named in a photo caption, determine the names of contributors not credited in the work itself, and/or obtain the contact information of an editor or publisher. Such information may come from a variety of public and/or nonpublic sources.

    Similarly, whenever I install software/apps, services, themes, and/or add-ons — particularly software/apps/services/themes/add-ons I use under open source licenses — the software and/or installation files (and/or the website or other source from which I obtained them) may provide me with personal information about the developer/development team (e.g., names, contact information, digital signatures). If you’re a developer, I may collect or have collected information about you in such contexts. Software licenses typically prohibit altering or deleting the credits, copyright notices, and/or other developer information contained in the software, even where the license otherwise permits modification.

    I routinely gather a wide variety of information related to the content I create and/or edit (and/or on which I consult and/or otherwise collaborate), whether for this website or in connection with my business and/or my other creative endeavors (professional or otherwise), which often includes information about people involved with and/or otherwise relevant to such content and/or creative endeavors. The process of researching, creating, and/or editing such content and/or creative endeavors (and/or consulting on others’ content and/or creative endeavors) routinely involves discussing and/or sharing such information with third parties such as (without limitation) subject matter experts, other writers, historians, biographers, researchers, instructors and/or coaches, academics, scientists and/or engineers, journalists, critics, reviewers, enthusiasts, collectors, librarians and/or other library staff, archivists, translators, photographers, videographers, filmmakers, illustrators, podcasters, other media creators, publicists and/or promoters, public relations representatives and/or other press contacts, observers, eyewitnesses, and/or other knowledgeable parties (and/or, in the case of I perform, propose to perform, and/or consider performing for others, the applicable client(s), employer(s), and/or prospective client(s) or employer(s)), as well as looking up names and/or other relevant personal details in sources such as (as applicable, but without limitation) books; magazines and/or journals; reports, white papers, and/or other such documents; newspapers and/or other news reports; films and/or other videos; audio recordings; broadcasts of whatever type; public records; and/or online or offline electronic resources such as (again without limitation) websites, search engines, library catalogs, repositories, and/or databases. My research, writing, and/or editing process may sometimes also include inviting comment from and/or presenting questions to the public regarding related topics. If you are or were somehow involved with the subject(s) of my content and/or other creative endeavors, if you are or were otherwise relevant to such content and/or creative endeavors, and/or if you are a public figure, some of the information I gather may be about you, your work, and/or your career. In many cases, this information is drawn from sources that were already publicly available, but it may also include nonpublic information obtained from a variety of sources. It may also include images, such as (without limitation) publicity photos or official portraits, and/or other media, such as (again without limitation) films and/or other videos, audio interviews, and/or podcasts. In some cases, I may look for your contact information so I can ask you questions related to my content, request an interview, and/or let you know about content in which you were mentioned. (Naturally, certain information I gather in connection with content I write, edit, and/or otherwise research may also come from you if I communicate with you in connection with my research and/or if you have disclosed the information publicly and/or in some other context known to me.)

    Much, though not necessarily all, of the content I create and/or edit (and/or on which I consult and/or otherwise collaborate) for this website and/or in the course of my business and/or other creative endeavors (professional or otherwise) is intended for eventual publication (and/or public performance, broadcast, and/or exhibition, as applicable). If that content is published, performed, broadcast, exhibited, and/or otherwise distributed by third parties — for example (but without limitation), if another website, a magazine, or some other publication runs one of my articles or stories, or if a publisher agrees to publish a book I’ve written — the applicable third party or parties may provide me with additional personal information pertaining to such content and/or the people who read, comment on, inquire about, and/or otherwise interact with that content. For example (again without limitation), a website that runs one or more of my articles might communicate to me comments or questions the website receives about the content, or otherwise share with me details about the content’s readership and/or reception; a magazine interested in publishing a fictional story I’ve written might ask me to change certain character names that could be misconstrued as referring to specific real people; and a publisher who receives an inquiry from an overseas publisher about translating a book I’ve written into other languages will likely inform me of the particulars of that offer. For obvious reasons, what personal information (if any) I may receive in such contexts may vary considerably depending on the specific context and circumstances. Such information may be provided to me directly and/or through my agents, representatives, and/or other intermediaries.

    (Again, the above scenarios are just some representative examples, not an exhaustive list. The disclosures in the “CCPA Information Collection and Sharing Notice” section below will give you a sense of what kinds of personal information I may collect. Please note that the definitions and categories listed in that section are based on California law; other jurisdictions may have different definitions of what constitutes personal information, and/or may categorize it differently.)

    My retention of such information varies depending on the nature of the information and the context in which I received it. I normally retain indefinitely my research notes and other information relevant to my past, current, or possible future articles or content, including image-related information. (Obviously, I can’t and don’t retain or remember every fact I see, read, or hear, but I do typically retain my notes in some form or other, although I may delete or discard certain research notes, materials, and/or information that I deem unusable, elect not to use, and/or no longer need.) Since software licenses typically prohibit redacting or altering any of the developer credits or copyright information, I usually retain that information for at least as long as I continue using the applicable software. With some social media platforms, certain types of information, insights, and/or notifications can be muted or hidden, but cannot normally be deleted, and may still remain in the social media service’s files even if the applicable content and/or users have been removed, whether or not I separately retain such information. See the “Additional Information About Data Retention” section below to learn more about my typical data retention practices. The retention of data by third parties (such as, without limitation, my vendors and/or service providers) is subject to the individual policies of the applicable third parties, and in most cases is outside of my control.

    Obviously, information I gather for my articles and/or other content may be published and/or otherwise disclosed in that context; other, nonpublic information generally will not be except as otherwise described in “Disclosure of Personally Identifying Information” below.

    Additional Information About Data Retention

    In addition to the data retention practices described in the various sections above, I typically retain indefinitely:

    • Information pertaining to my professional writing/editing/writing consulting work and/or other creative endeavors, including — except as otherwise stipulated by a specific client or employee agreement and/or other applicable legal requirement(s) — research notes, drafts, and/or other relevant data, which may sometimes include information about or in some way connected with visitors to this website. (I may delete or discard certain drafts and/or research notes, materials, and/or information that I deem unusable, elect not to use, and/or no longer need.) I generally also retain (again without limitation) calendar and/or journal entries and related notes (e.g., a calendar entry pertaining to a business meeting or phone call and/or my notes on what was discussed during that meeting or call).
    • Information pertaining to any financial transactions and/or legal agreements involving this website, including (but not limited to) records of purchases or payments I make or receive in connection with the website or related matters. (Obviously, my financial and legal records often necessarily include some personal information.) I must also retain my tax records for bookkeeping and compliance purposes. (Vendor(s), service provider(s), payment processor(s), bank(s), and/or other financial institution(s) involved in a given transaction may also retain certain information related to that transaction, which is generally outside of my control.)
    • The contact information and other details of individuals with whom I repeatedly or regularly correspond and/or otherwise communicate regarding this website and/or related matters. (Naturally, if I regularly communicate with someone and/or have (or previously had) some type of business and/or personal relationship with them, I will likely add them to my contacts, potentially including other personal details — for example (but without limitation), their job title (if any), their birthday, the name of their spouse/partner, and/or the email address and phone number of their secretary or assistant — if I possess such information.)
    • Names and/or company/domain names I’ve entered into my spell-checking dictionaries (which I retain for what I hope are obvious reasons!).
    • Copies of published works (e.g., books, magazines, CDs, DVDs, software) that I own or for which I have a perpetual license, along with (where applicable) associated documentation and/or notes and any inventories, catalogs, and/or lists that I may create and/or utilize to manage my collection(s) of such works. (I may dispose of copies that are duplicates, that are damaged or otherwise unusable, and/or that I no longer need; naturally, copies of published works that I have borrowed or rented are eventually returned as appropriate.)
    • Information pertaining to my licenses/authorizations for the use of intellectual property owned by others, including any relevant contact information. (I may discard this information if I discontinue using that intellectual property, e.g., if I uninstall a particular app or other software.)
    • Information pertaining to site-related technical or legal questions.
    • Any information pertaining to a site-related dispute or legal issue. Similarly, for compliance purposes, I must retain information pertaining to certain privacy-related requests to the extent required by applicable law and/or regulation. (For example, if you send me a request to exercise your rights under the California Consumer Privacy Act of 2018 (CCPA), I am legally required to retain records of that request for at least 24 months.)

    Even where it is my customary practice to indefinitely retain certain information, my retention of individual communications/messages may vary based on the medium and/or format of those communications/messages:

    • Email: I typically retain indefinitely most site-related emails, excepting obvious spam, mass mailings, messages and/or attachments that contain suspicious code, and/or certain automated notification/alert emails (which I may delete if they are no longer needed and/or relevant).
    • Communications/messages via third-party services (including, without limitation, calls and/or texts made or received through the Google Voice communications service, social media services, and/or other communications services): Most site-related communications/messages that I send and/or receive via third-party services are retained indefinitely in some form, although in such cases, I may, to the extent possible, retain local and/or off-line copies in addition to (or instead of) leaving the original communication/message(s) on the applicable third-party service. For example (but without limitation), if I receive messages via the Google Voice communications service, I may remove the original messages from my account on that service, but retain the notification emails and/or other local copies of those messages. Recordings of calls (if any) made via the Google Voice service or other third-party services, and/or voice mail messages received through such services, may be retained for as long as I reasonably need those recordings, except as otherwise required by law and/or the applicable service’s terms of use/terms of service. Please note that in some cases, third-party services may retain records of messages sent via those services even if the users who sent and/or received those messages delete their copies and/or their accounts, which is outside of my control. (Google, Google Voice, and other related marks are trademarks of Google LLC.)
    • Other activity history on third-party sites and/or services: Many third-party websites and/or online services (including, though not limited to, social media services, marketplace services, and payment services) compile and maintain fairly comprehensive histories of user actions and/or activity involving that service, which sometimes include certain personal information (e.g., records of comments made on a social media platform, or of recent payments made or received). Third-party sites and/or online services don’t necessarily offer the option to selectively edit or delete such information; doing so may be a cumbersome and/or time-consuming task even where the option is available (e.g., requiring the user to scroll through years worth of activity to find specific items); and the site or service may retain the information even if the user’s copy of their history is partially or completely deleted. For that reason, my activity history on many of the third-party sites and/or services I use can normally be considered to be retained indefinitely, although I may sometimes delete or otherwise remove certain activity history if I have some compelling reason to do so and if the applicable site or service allows such deletion or removal.
    • Text messages: My retention of site-related text messages and/or other, similar non-voice direct messages that I send and/or receive via my phone(s) is highly variable. (My older smartphone(s) could be set to automatically delete older messages after a certain period of time — I normally set that interval to 60 days — unless they were deliberately saved, but not all the devices and apps I currently use provide that functionality, at least not in the same global manner.) Depending on the nature and context of the specific message(s), I may delete them immediately, retain them indefinitely, or something in between; in some cases, I may set messages to automatically delete themselves after a certain period of time, and/or retain only a certain number of messages in any particular text “conversation.” In any event, even if I delete a text message or messages, any included information and/or attachments for which I have some ongoing need may be transferred to other records before the deletion of the original message(s). (For example, if you send me a text message asking me to contact you via postal mail, I typically will separately record your mailing address in order to comply with and retain records of your request.) Text messages may also be captured in periodic phone backups, which I may retain for a year or more. Please note that my mobile carrier(s) and/or other service providers may also retain records of text messages sent or received via my phone(s), which is outside of my control.
    • Phone calls: Records of calls I make or receive via my phone(s) (i.e., NOT via the Google Voice communications service or some other third-party service) are typically included in my phone bills and/or other phone usage records, which I customarily retain indefinitely. (My phone service provider(s) and/or mobile carrier(s) may also retain such records, which is outside of my control.) My retention of call logs or records on my phone(s) is typically determined on a case-by-case basis and is highly variable. Recordings of phone calls (if any) and/or voice mail messages may be retained for as long as I reasonably need them, except as otherwise required by law (and/or, in the case of voice mail messages, the policies of the applicable phone company or mobile carrier). (Google, Google Voice, and other related marks are trademarks of Google LLC.)
    • Postal mail and/or physical documents: I promptly discard most mass mailings and unsolicited business inquiries (“junk mail”) I receive via postal mail or other physical means. Where I receive legitimate correspondence or business documents pertaining to this website and/or related matters (e.g., copies of contracts or receipts) by mail or some other physical means, I typically retain them, although, where possible, I may scan, photograph, or photocopy them (and/or retain the electronic versions, if I have received both electronic and physical copies) in addition to (and in some cases instead of) retaining the original physical copies. Naturally, if I have agreed and/or have some contractual or legal obligation to return or destroy specific business documents, I will do so as appropriate.

    Personal information I may collect in connection with this website that is not specified above or mentioned elsewhere in this Privacy Policy is normally retained only as long as I reasonably need that information, which is determined on a case-by-case basis depending on the nature of the information and how and why I received it. In some cases, my retention of certain information may be dictated by applicable law/regulations and/or other legal obligations (e.g., a contractual obligation to return or destroy certain information after a specific period of time).

    In all cases (even circumstances where I typically retain information indefinitely), I may delete, discard, or destroy specific messages, communications, documents, files, records, and/or data (of any type, format, and/or medium) if:

    • They are duplicates, and/or:
    • I reasonably believe that they are substantially redundant of other data I still retain (e.g., an “order shipped” notification for an order for which I also have a delivery receipt), and/or:
    • They are unreadable, inaccessible, and/or otherwise unusable, and/or:
    • They are corrupted, contaminated, or otherwise damaged, particularly if I reasonably believe that the corruption, contamination, or damage poses a danger to health, safety, security, and/or the integrity of other data and/or property, and/or:
    • I have agreed and/or have some contractual or legal obligation to delete, discard, or destroy them, and/or:
    • I have some other compelling reason to do so.

    Even where it is my normal practice to retain personal information about site visitors, I periodically remove certain personal information from the website’s online database(s) and/or mail servers, transferring the data to local and/or offline storage for greater security and/or redacting portions of the data that I no longer need.

    Special Note on Subpoenas, Court Orders, and Preservation Requests: In certain cases, I may be legally compelled to retain and preserve certain data, even data I would not otherwise retain, pursuant to a subpoena, a valid court order, or a preservation request from a government or law enforcement agency. In such event, I will preserve the specified information (and may disclose it to the requesting party) to the extent required by applicable law, which in some cases may also require me to keep the order or request confidential.

    The retention of data by third parties (such as, without limitation, my vendors and/or service providers) is subject to the respective policies of such third parties, and in many cases is outside of my control.

    Reports and Aggregated Statistics

    From time to time, I may compile aggregated statistical information about users of this website. For example, I may create reports on trends in the usage of the website, such as total page views, the average number of unique visitors per month, the most popular pages on the site, and/or the average time visitors spend on the site. The data contained in such reports and/or statistics will be de-identified, anonymized, redacted, and/or aggregated such that it could not reasonably be used to identify specific person(s) and/or household(s) (other than me, if I am somehow included in that information and elect not to de-identify, anonymize, redact, and/or aggregate my own information).

    I may also, to the extent required and/or otherwise permitted by applicable law and/or regulations, publish aggregated, de-identified information and/or statistics about requests I receive pursuant to the California Consumer Privacy Act of 2018 (CCPA), (as described in “Additional California Privacy Rights (CCPA)” below) and/or other privacy laws (e.g., how many requests of a particular type I received in a given period).

    I may publish such reports and/or aggregated statistics and/or otherwise share them with third parties such as (as applicable, but without limitation) my current and/or prospective advertisers, clients, employers, and/or commercial partners (e.g., with prospective buyers in connection with the possible sale of this website); my employees, independent contractors, interns, agents, and/or business partners, if any; and/or my vendors and/or service providers.

    Information Captured by Service/Software/App/Device Telemetry

    Many modern electronic services, software programs, apps, and devices, from operating systems to office software and even printers/print drivers, now incorporate surveillance mechanisms (often called “telemetry”) that gather information about the use of that service/software/app/device and then transmit that data to the manufacturer/developer and/or other third parties. The information collected by these mechanisms can sometimes include personal information or potentially personally identifying information about me and/or other individuals and/or households.

    Here are some examples of how this might occur:

    • If a service/app/software/device crashes while I am accessing a file or website containing personal information, details about that file or website and its contents might be captured and transmitted as part of a crash report.
    • If a website or online service I access uses the familiar reCAPTCHA human verification service, which is provided by Google, the reCAPTCHA service may collect detailed information about my activity on that site or service, including (but not limited to) taking snapshots of my browser window and any personal information that may be visible there. Google provides no way to opt out of this data collection, which with current versions of reCAPTCHA is not limited to interactions with the reCAPTCHA interface itself. (Google and other related marks and logos are trademarks of Google LLC.)
    • Security features incorporated into my web browsers and/or devices might capture personal information contained in the filenames, metadata, and/or contents of documents or other files I download from or upload to the Internet.
    • My antivirus software and/or other security services/software/apps might capture personal information in scanned email messages and/or other electronic files.
    • My office software might record the filenames and/or other metadata of files I access, and/or capture any text on which I use the software’s spelling and/or translation features.
    • Mapping or navigation services/software/apps I use, particularly ones with access to my mobile phone’s location data, might record the geographical locations and/or addresses of people I meet or visit.
    • Services/apps/software/devices with access to device microphone(s) might overhear and/or record my calls or other conversations.
    • Certain services/apps/software/devices might record what I type while using that service/app/software/device.

    Again, these examples are just a small sampling of the possible scenarios. The specifics of device and software telemetry vary widely, and manufacturers/developers are not always forthcoming about the details of their information-gathering.

    Such surveillance can be difficult or impossible to escape. Certain services/software/apps/devices, like malware detection services, cannot adequately perform their intended functions without full access to device/system data. Some information-gathering features, like the telemetry incorporated into recent versions of the Microsoft® Windows® operating system (Microsoft and Windows are trademarks of the Microsoft group of companies) can’t be completely disabled without modifications that would violate the license agreement or terms of service. Even where it is theoretically possible to disable the telemetry features of a specific service/software/app/device, doing so may require advanced technical knowledge and/or special tools. Also, my work and research sometimes involves my using devices, software, and/or apps controlled by third parties — e.g., the computers offered to patrons of public libraries — that may incorporate telemetry or other surveillance mechanisms that I cannot disable or with which I am not familiar.

    While I have made an effort to block and/or minimize such surveillance — for my privacy and security as well as yours — the bottom line is that some of the services/software/apps/devices I use retain at least the potential to collect and transmit personal information about me, the subjects of my writing/editing/writing consulting work, and/or the people with whom I interact in the course of operating this website.

    The examples of third-party vendors and service providers listed in the “Disclosure of Personally Identifying Information” section below include a representative sampling of services, software, apps, and/or electronic devices I may use that could gather personal information related to this website and/or its visitors through telemetry and/or other integrated information-gathering/surveillance features. Please note that this is NOT an exhaustive list. I may sometimes use services, software, apps, and/or devices not listed (obviously, it’s not practical for me to list every service, device and/or piece of software I might conceivably use!); certain services/software/apps/devices that did not previously incorporate information-gathering/surveillance features might add them in subsequent updates; and certain services/software/apps/devices may incorporate surveillance features that are not readily apparent to me.

    As noted in the “Security Scans” section above, the likelihood and possible extent of any disclosure of personal information in such ways is difficult to predict or quantify, but it cannot be completely avoided without greatly compromising my security, the functionality of the tools and devices I use, and my ability to operate this website and/or provide my services.

    Disclosure of Personally Identifying Information

    I may share, release, and/or otherwise disclose personal information I collect through and/or in connection with this website:

    • To publish your submitted comments (including, as applicable, any images, other media files, and/or links they may contain), as described in the “Comments” section above. As explained in that section, this may include emailing copies of your comment to other users who have requested email notifications of replies/follow-up comments, and/or emailing you directly (at the email address you provided with your comment) prior to or instead of publishing your comment(s).
    • To respond (publicly and/or privately) to your messages, inquiries, and/or support requests, as described in the “Contact Forms” and “Other Inquiries, Messages, and Support Requests” sections above.
    • To appropriately credit someone for the use of their images, other media, fonts, themes/plugins, and/or other content or intellectual property — particularly where such credit is required by the applicable license terms. As noted in “Data in Submitted Images” above, this may include adding copyright and license information to the applicable filename and/or metadata to ensure that the attribution is clear. If you want to modify or remove your credit information, please contact me!
    • To publicly acknowledge and/or thank someone for their assistance, whether with the management of this website, my content, and/or some related matter(s), except where they have specifically asked me not to or where their communications with me reasonably suggest that they prefer not to be acknowledged or identified. Such acknowledgments will typically be limited to their name/pseudonym, the nature of their assistance, and (where applicable) the date(s), although in some cases, certain other personal information may be obvious or implicit in the nature of the assistance provided.
    • As part of and/or in connection with my content and/or other creative endeavors; content I write and/or edit for others; and/or content and/or other creative endeavors on which I consult and/or otherwise collaborate — if the person(s) to whom the information pertains are the subject(s) of and/or otherwise pertinent to such content and/or creative endeavor(s). (This may include, without limitation, information contained in images, other media, bibliographies, annotations, and/or metadata.) For obvious reasons, journalistic, historical, and/or other nonfiction content, and many reviews and other critical accounts, routinely incorporate personal information about relevant people, as do some works of fiction and other types of art and/or creative work. As noted in “Other Information I Receive from Third-Party Sources” above, the process of researching, creating, and/or editing (and/or consulting and/or otherwise collaborating on) such content and/or creative endeavors routinely involves routinely involves discussing and/or sharing relevant information with various third parties and/or the public; the same is true of publishing, promoting, publicly performing, exhibiting, broadcasting, and/or otherwise disseminating and/or discussing such content and/or creative endeavors.
    • In photographs, images, and/or other media in which someone (and/or information such as their car’s license plate number) may be visible or otherwise included. Photographs, images, and/or other media (e.g., videos) I use and/or collect for use on and/or in connection with this website — not all of which are necessarily created by me — may include recognizable people (and/or their voices) and/or personal information or potentially personally identifying information about individuals and/or households, whether in the photos, images, and/or other media themselves and/or in the filenames, titles, and/or other metadata (see the “Data in Submitted Images” section above for more about what the metadata may include). Obviously, in certain cases, those people (and/or their information) may be the subject(s), or among the subjects, of the photo(s), image(s), and/or other media; even where they are not, it is not always practical or even feasible for me to completely remove or obscure visible bystanders or other personal information or potentially personally identifying information such photos, images, and/or other media may contain (for example, the license terms under which I use images owned by others may not permit me to modify those images in such a way). In many cases, I have no reasonable way to identify such individuals or associate photos, images, and/or other media in which they appear with other information about them. In certain cases, I may share photos, images, and/or other media and/or information about them with others and/or take other steps to find out more about the subjects, settings, and/or circumstances of those photos, images, and/or other media; identify visible and/or audible individuals; and/or determine to whom certain vehicles, other objects and/or property, and/or animals depicted in the photos, images, and/or other media may belong. For example (but without limitation), if I have photos of a particular car that were taken at a car show or other public event, I might send those photos and/or information such as the car’s description and/or license plate number to the event organizers in hopes of identifying and/or getting in touch with the car’s owner(s); if I have a clip from a home movie or similar video, I might show the clip to someone who appears in the video in hopes of identifying the other people shown. (These are just a few representative examples, not an exhaustive list of inquiries I might conceivably make.) Please note that it isn’t necessarily always practical, appropriate, or even feasible for me to make such inquiries, and any inquiries I do make are not necessarily always fruitful. If you have recognized yourself (and/or your information) in a photo, image, or other media I have published and/or shared and would like me to obscure or remove it, please contact me!
    • If that information is or was already publicly available (such as — without limitation — information that’s available on the website of the person(s) to whom the information pertains; that they’ve included in their published memoirs, books, articles, or other published works, or in public posts or public comments they’ve made on this or other websites; that appears in published interviews with and/or books, news reports, articles, and/or other published works about the person(s) to whom the information pertains; and/or that is otherwise part of the public record, such as court records or transcripts of public hearings).
    • If the information is contained in and/or otherwise incorporated into artwork, a copy of a published work, a useful article, or some other object (including, without limitation, information inscribed or imprinted upon and/or affixed or otherwise attached to such work, copy, article, or object, particularly where that information cannot reasonably be removed without damage and/or defacement — for example (again without limitation), an autograph signed on a trading card; an artist’s signature and/or watermark on a lithograph or original art piece; the original subscriber’s name and mailing address imprinted upon the cover of a magazine; a previous owner’s name stamped on the flyleaf of a book; and/or handwritten notes in the margins of some text). For obvious reasons, such information is typically (and often necessarily!) included in any loan, donation, sale, and/or other disposal of that work, copy, article, or object.
    • To editors, publishers, clients, employers, and/or other third parties for whom I provide (and/or to whom I offer) my writing/editing/writing consulting services; to whom I may license, sell, and/or otherwise offer my content and/or other creative work; for whom I may otherwise work, provide services, and/or offer to work and/or provide services; with whom I may collaborate and/or offer to collaborate in performing and/or offering my services and/or in researching, creating, editing, performing, and/or offering my content, other creative work, and/or other creative endeavors; and/or as I may reasonably elect and/or be requested or directed to do as part of and/or in connection with such services, content, creative endeavor(s), collaboration(s), and/or work (and/or the offer thereof), where the information is part of and/or otherwise pertains to such services, content, creative endeavor(s), collaboration(s), and/or work (and/or the offer thereof). For example (but without limitation), if I approach a publisher about turning one or more of my posts on this website into a book, or if I apply for some similar or related job or assignment, those activities might include discussions of this website and/or its content.
    • To my employees, independent contractors, interns, agents, and/or business partners, if any, that need to know the information in order to collaborate with me and/or to provide services for me and/or on my behalf (such as, without limitation, accounting, tax preparation, legal services, translation, transcription, technical troubleshooting, website development/improvement, malware recovery/removal, other types of repair/maintenance/installation/technical service, training, tutoring, and/or education) and that have agreed to follow this Privacy Policy (or that have their own, comparably strict or stricter confidentiality policies and/or confidentiality agreements) regarding any personal information that I share with them. Some or all of such employees, independent contractors, interns, agents, and/or business partners may be located outside your home country and/or the European Economic Area; by using this website, you consent to my transfer of such information to them.
    • To my third-party vendors and/or service providers that need to know that information in order to provide services available on this website, support my business operations, and/or otherwise provide services for me and/or on my behalf. (As noted in the “Information Captured by Service/Software/App/Device Telemetry” section above, this may include, but is not limited to, services, software, apps, and/or electronic devices I may use that could gather personal information related to this website, its content, the management of my business operations, and/or my other creative endeavors through telemetry and/or other integrated information-gathering and/or surveillance features, some of which cannot be disabled without simply ceasing to use that service, software, app, or device.) Please note that some or all of my vendors and/or service providers may use various subcontractors, subprocessors, vendors, subsidiaries, affiliates, and/or partners, not necessarily listed here, in order to provide their services for me. Representative examples of my third-party vendors and/or service providers may include (as applicable, but without limitation):
      • Social media services (including, without limitation, chat rooms, online bulletin boards/message boards/discussion groups, wikis, and/or similar online forums) on which I have accounts and/or that I might use to research, promote, and/or discuss this website, its content, the management of my business operations, and/or my other creative endeavors, such as (without limitation) the Blogger (a.k.a. Blogspot) web publishing service, which is owned by Google and subject to the Google Privacy Policy — I don’t currently have a Blogspot blog, although in the past, I had a little-used (and long since deleted) Ate Up With Motor blog on that service, and I could theoretically create another blog on the Blogger service through my Google account(s) if I choose to do so in the future (Google, Blogger, Blogspot, and other related marks are trademarks of Google LLC; Ate Up With Motor is a trademark of Aaron Severson dba Ate Up With Motor); the Facebook social media service (I initiated the deletion of my Facebook account on December 11, 2018, and have no intention of reactivating or recreating it, but the Facebook service likely retains at least some related data, and I retain an offline copy of my account data as of that date; Facebook is a trademark of Facebook, Inc.); the Flickr photo-sharing service (which is presently owned and operated by Flickr, Inc., owned in turn by SmugMug, Inc.), on which I have shared some images related to this website and/or my content and which I use to communicate with some of the people who have allowed me to use their images (Flickr and SmugMug are trademarks of SmugMug); the IntenseDebate comment system (which is owned by Automattic and subject to the Automattic Privacy Policy; Automattic and IntenseDebate are trademarks or registered trademarks of Automattic (or Automattic’s licensors)); the Tumblr social media service (Tumblr is a trademark of Tumblr, Inc. in the United States and other countries); the Twitter social media service, which I currently use only in connection with my Ate Up With Motor account, although I have had a personal account on that service in the past and might again at some point in the future (Twitter is a trademark of Twitter, Inc. or its affiliates; Ate Up With Motor is a trademark of Aaron Severson dba Ate Up With Motor); and/or the WordPress.com blogging platform (which is also owned by Automattic and subject to the Automattic Privacy Policy; Automattic and WordPress.com are trademarks or registered trademarks of Automattic (or Automattic’s licensors); WordPress is a registered trademark of the WordPress Foundation in the United States and other countries). I technically still have a personal blog on the LiveJournal social networking service (which I previously archived using a patched version of the ljArchive backup utility by Erik Frey), but I can no longer use or even delete that blog because I refuse to accept the current LiveJournal user agreement. (The LiveJournal service, which does not appear to have a privacy policy, is now owned by Rambler Group LLC. LiveJournal is a trademark of the advertising agency Index 20 LLC (a Rambler Group company), registered in the United States.)
      • Providers whose services I may use in operating this website, such as (without limitation) my web host, DreamHost® (which provides — directly and/or through its applicable subcontractors, subprocessors, vendors, subsidiaries, affiliates, and/or partners — various services for me, including (without limitation) hosting this website and its associated files, database(s), and server logs; managing my domain name registration for the aaronseverson.com domain name; hosting the mail servers for all aaronseverson.com email addresses; and providing certain of my administrative and security tools, as well as technical support and troubleshooting; DreamHost is a registered trademark of DreamHost, LLC); the Let’s Encrypt® certificate authority (CA), a service of the nonprofit Internet Security Research Group&#x2122 described in the “Certificate Authority Checks” section above (Internet Security Research Group and Let’s Encrypt are trademarks of Internet Security Research Group; all rights reserved), and/or other certificate authorities I may use or access; iThemes, whose iThemes Security plugin and/or other plugins I may use on this website (iThemes is one of the Liquid Web family of brands and subject to the Liquid Web Privacy Policy; iThemes and Liquid Web are trademarks of Liquid Web, LLC); GoDaddy Media Temple, Inc. d/b/a Sucuri, a subsidiary of GoDaddy Operating Company, LLC (Sucuri), which provides the Sucuri Security plugin described in the “Security Scans” section above, which is subject to the Sucuri Security Privacy Policy, the Sucuri Cookie Policy (“Our Use of Cookies, Web Beacons, and Similar Technologies”), and the Data Processing Addendum to the Sucuri Security Terms of Service; Sucuri, Sucuri Security, Sucuri Security Inc., and Sucuri Inc. are trademarks of Sucuri Inc. and may be registered in certain jurisdictions; GoDaddy is a registered trademark of GoDaddy Operating Company, LLC); GoDaddy® (which I previously used for domain registration and certain related services, although I ceased to use their services (except for those provided by Sucuri, a subsidiary) several years ago and permanent closed my GoDaddy account on October 8, 2020; GoDaddy is a registered trademark of GoDaddy Operating Company, LLC); embedded content providers such as (though not necessarily limited to) those described in the “Embedded Content” section above; Font Awesome (which, in addition to any embedded content it may serve on this site, may also be used by some of my other vendors and/or service providers in connection with other services I use, such as (without limitation) my web host’s online control panel and webmail interfaces; Font Awesome is a trademark of Fonticons, Inc.); the phpMyAdmin project, whose open source database administration tool my web host provides for managing my website databases; the project doesn’t appear to have a privacy policy, but its source code is freely available for review — my use of this tool in connection with this website is subject to the DreamHost Privacy Policy, since DreamHost actually provides the tool and owns and operates the servers that store and run the databases I use the tool to access and manage; DreamHost is a registered trademark of DreamHost, LLC; phpMyAdmin is either a registered trademark or trademark of Software Freedom Conservancy, Inc. in the United States and/or other countries; PHP is a trademark of The PHP Group; all other trademarks are the property of their respective owners); the Roundcube project and its associated libraries, whose open source webmail client software my web host uses for my browser-based email access (Roundcube doesn’t appear to have a privacy policy, but the mail client’s source code is freely available for review; my use of the mail client through my web host is subject to the DreamHost Privacy Policy, since DreamHost actually operates the client and the mail servers to which it connects — as noted above, DreamHost is a registered trademark of DreamHost, LLC); the WordPress.org websites and/or their respective developers, contributors, volunteers, and other users (as explained in “Embedded Content” above, this website uses the WordPress content management system, so the WordPress.org websites may gather certain information about users who access the website’s administrative dashboard in the course of managing the site and its various plugins, themes, and add-ons, as well as about and/or related to my use of the WordPress.org websites and/or forums, which I regularly use to seek help in managing, troubleshooting, and/or improving this website as well as to report bugs, security flaws, and/or other issues with the WordPress content management system itself; WordPress is a registered trademark of the WordPress Foundation in the United States and other countries); the developers of the various plugins, themes, and/or add-ons used on this website (who may gather information via telemetry features incorporated into those plugins, themes, and/or add-ons, and/or through my communications with the developers regarding the management, troubleshooting, and/or security of their respective plugins, themes, and/or add-ons — such communications are frequently, though not necessarily exclusively, via the aforementioned WordPress.org forums; WordPress is a registered trademark of the WordPress Foundation in the United States and other countries); other sources of informational and/or instructional resources related to web development, online security, and/or the various aspects of operating and/or maintaining online systems, including (without limitation) providers of tutorials, guides, wikis, help files, online documentation, knowledge bases, technical consulting services, articles, and/or white papers offering recommendations, warnings, suggestions, examples, and/or discussion of how to use, manage, maintain, develop, customize, troubleshoot, and/or secure the WordPress content management system; its various plugins, themes, and/or add-ons; and/or other software, apps, tools, services, and/or code (WordPress is a registered trademark of the WordPress Foundation in the United States and other countries); PayPal® (which serves the payment buttons that appear on the site and may process certain payments I make or receive in connection with this website — PayPal.com, PayPal, and all logos related to the PayPal services are either trademarks or registered trademarks of PayPal, Inc. or its licensors; in addition, all page headers, custom graphics, button icons, and scripts related to the PayPal services are service marks, trademarks, and/or trade dress of PayPal); the Blacklight tool (click here for more about how Blacklight works) developed and offered by the nonprofit newsroom The Markup, which I may use to help me identify potential privacy and/or security issues with this website and/or other websites and online services I use in the course of my business (Blacklight and The Markup are trademarks owned by The Markup or its licensors); WebAIM (Web Accessibility in Mind) (whose WAVE Accessibility Tool and/or other tools I may use to improve the accessibility of this website and/or my content; WebAIM and WebAIM Web Accessibility in Mind are trademarks of Utah State University); website speed testing services/tools (which examine the publicly accessible/visible portions of the website to analyze how quickly they load and identify technical issues that may affect loading speed and/or other functionality); and/or WHOIS, RDAP (Registration Data Access Protocol), and/or similar lookup providers (if I need to look up IP addresses and/or domain registrations using tools such as (though not necessarily limited to) the ICANN Domain Name Registration Data Lookup tool; ICANN is a trademark or registered trademark of the Internet Corporation for Assigned Names and Numbers).
      • Google, which provides various software, apps, tools, and/or services I may use and/or offer, which are too numerous to fully enumerate here, but may include (without limitation) the Google Fonts API, Google Hosted Libraries API(s), Google Maps, FeedBurner, Gmail, Google Safe Browsing API, Blogger, and Blogspot services mentioned and/or described elsewhere in this Privacy Policy; the Android platform and related apps, services, APIs, and infrastructure (e.g., the Google Location Service infrastructure); the Android SDK Platform-Tools; the Firebase platform mentioned elsewhere in this section of the Privacy Policy; the Google Play store and its related services; the well-known Google search engines (and/or related search tools and/or services); the Google Search Console tool (formerly known as Google Webmaster Tools reports), which lets webmasters identify issues that may affect their site’s indexability, search visibility, and/or performance; the Google Ads platform (which I believe is formally called the Google Ad Network advertiser network, although many Google policies and documents refer to “Google Ads”) and various advertising services, such as (without limitation) the AdMob, AdSense, and/or DoubleClick advertising services (which I don’t use on this website, but may be used by some websites, apps, and/or services I use, and/or may serve advertising through embedded YouTube videos, as noted in the “Embedded Content” section above); the reCAPTCHA human verification service (which I don’t currently use on this website, but which may be used by various websites and/or online services I access and/or use in the course of my online activity, and which can gather information about and/or related to my online activity in those contexts, as described in the “Information Captured by Service/Software/App/Device Telemetry” section above); the Google Voice communications service (a VoIP (Voice over Internet Protocol) service provided by Google Voice Inc., a subsidiary of Google LLC, which is subject to the Google Privacy Policy and, where applicable, the Google Telephony Services Privacy Disclosure); Google Workspace productivity and collaboration tools; the Widevine digital content manager (a digital rights management (DRM) technology many web browsers use to allow playback of encrypted media content protected by DRM); and, as noted in the “Embedded Content” section above, the YouTube video platform. All Google products and/or services are subject to the the Google Privacy Policy. For additional information about how Google uses technologies that may collect and/or process personal information, see the “Technologies” section of the “Google Privacy & Terms” pages. (Google, AdMob, AdSense, Android, Blogger, Blogspot, DoubleClick, FeedBurner, Firebase, Gmail, Google Ad Network, Google Ads, Google AdSense, Google Location Service, Google Maps, Google Play, Google Safe Browsing, Google Voice, Google Webmaster Tools, Google Workplace, Widevine YouTube, and other related marks and logos are trademarks of Google LLC. I am not affiliated with or endorsed by Google in any way.)
      • Microsoft, which provides (directly and/or through its various subsidiaries and/or affiliates) some of the software, apps, tools, and/or services I may use and/or offer — which are too numerous to fully enumerate here, but may include (without limitation) the operating systems and associated software and services for some of the devices I use; the Microsoft® Office suite of productivity software and services; Microsoft® Bing® search engine(s); BitLocker encryption and data protection features; and/or the other software, apps, tools, and/or services offered by Microsoft that are mentioned and/or described elsewhere in this Privacy Policy — and gathers certain information about and/or related to the use of such software, apps, tools, and/or services as described in the Microsoft Privacy Statement. (Microsoft, Bing, and BitLocker are trademarks of the Microsoft group of companies, as are the names of many other Microsoft products and/or services. I am not affiliated with or endorsed by Microsoft in any way.)
      • Other providers whose services enable me to operate and/or secure my system(s), device(s), and/or data, such as (without limitation) TCL Communication Ltd. (a.k.a. TCT) and/or its subsidiaries and/or affiliates, which manufactured my BlackBerry® KEY2 LE smartphone, which may gather information about and/or related to the use of that smartphone and/or its associated software and services as described in the BlackBerry Mobile Privacy Policy (the current TCT Privacy Policy available online appears somewhat different from the Privacy Policy presented in the legal information on the smartphone itself, and the latter version is apparently no longer available on the TCT website now that TCT has ended its license to manufacture and sell BlackBerry® smartphones; BlackBerry, KEY2, and KEY2 LE are the trademarks or registered trademarks of BlackBerry Limited; TCL is a registered trademark of TCL Corporation); BlackBerry Limited (and/or, where applicable, its subsidiary companies and/or affiliates), which makes the suite of BlackBerry® apps and services used by and with my BlackBerry® smartphones; manufactured (under the previous corporate name of Research In Motion Limited) the older of those smartphones (and many of its associated accessories); owns much of the underlying intellectual property of both smartphones and their associated software; and may gather information related to the use of those smartphones, software, apps, and/or services as described in the BlackBerry Privacy Notice (BlackBerry and Research in Motion are the trademarks or registered trademarks of BlackBerry Limited, the exclusive rights to which are expressly reserved — I am not affiliated with, endorsed, sponsored, or otherwise authorized by BlackBerry Limited); Dell Technologies, Inc. and/or its affiliates, which manufactured certain of my devices, displays, peripheral devices, and/or other components and may gather information about and/or related to the use their use and/or the use of their associated drivers and/or software as described in the Dell U.S. Privacy Statement (Dell is a trademark of Dell Inc.); HP Inc., which may gather certain information about and/or related to my use of HP printers, scanners, copiers, and/or other devices; their associated ink, toner, and/or other consumable supplies; and/or their associated drivers, software, and/or services as described in the HP Privacy Statement; HP is a trademark of HP Inc., as are the names of many of its products and services); Intel Corporation and/or its subsidiaries and/or affiliates, which manufactured certain of my devices and/or components and may gather information about and/or related to their use and/or the use of their associated drivers and/or software as described in the Intel Privacy Statement (Intel is a trademark of Intel Corporation or its subsidiaries in the U.S. and/or other countries); I.R.I.S. and/or its affiliates, whose optical character recognition software I may use in connection with my printer(s) and/or scanner(s) (I.R.I.S. is an I.R.I.S. trademark); The Khronos® Group, whose Vulkan® Runtime Libraries and/or other software, software development kits, and/or software components may be installed in conjunction with and/or incorporated into certain software and/or devices I may use, including, though not limited to, the drivers for certain of my display cards and/or other devices and/or components (Khronos and Vulkan are registered trademarks of The Khronos Group Inc.); LG Electronics and/or its subsidiaries and/or affiliates, which manufactured certain of my devices, displays, peripheral devices, and/or other components and may gather information about and/or related to their use and/or the use of their associated drivers and/or software as described in, as applicable, their website Privacy Policy and any applicable product privacy policies (LG is a registered trademark of LG Corp.); Logitech and/or its subsidiaries and/or affiliates, which manufactured certain of my devices, peripheral devices, and/or other components and may gather information about and/or related to their use and/or the use of their associated drivers and/or software as described in, as applicable, their Product Privacy Policy and/or their Website Privacy Statement (Logitech is a trademark or registered trademark of Logitech Europe S.A. and/or its affiliates in the United States and/or other countries); Nuance Communications, Inc., present owner of the VoiceSignal® VSuite® voice recognition software used by the older of my BlackBerry® smartphones, which may gather information through and/or about my use of that software (to the extent that software still works, which is unclear) as described in the Nuance Privacy Policy (VoiceSignal, VSuite, and Nuance are registered trademarks or trademarks of Nuance Communications, Inc. or its affiliates in the United States and/or other countries; BlackBerry is the trademark or registered trademark of BlackBerry Limited); Qualcomm Incorporated and/or its subsidiaries and/or affiliates, which manufactured some of the components and provides some of the services of my BlackBerry® KEY2 LE smartphone and/or my desktop computer and may gather information about and/or related to the use of such components and/or services, and/or any associated software and/or drivers, as described in the Qualcomm Incorporated Privacy Policy (Qualcomm is a trademark of Qualcomm Incorporated, registered in the United States and other countries; BlackBerry, KEY2, and KEY2 LE are the trademarks or registered trademarks of BlackBerry Limited); Realtek Semiconductor Corp. and/or its subsidiaries and/or affiliates, which manufactured certain of my peripheral devices and/or other components as well as their associated software and drivers (the company’s official website does not appear to have any privacy policy; Realtek is a trademark of Realtek Semiconductor Corp.); Renesas Electronics Corporation and/or its affiliates, which manufactured certain of my devices and/or components and may collect information about and/or related to their use and/or the use of their associated drivers and/or software as described in the Renesas Privacy Policy (Renesas is a trademark or registered trademark of Renesas Electronics Corporation in Japan, the United States and other countries); Rosewill, Inc. and/or its parent company, affiliates, and/or subsidiaries, which manufactured certain of my peripheral devices and/or other components and may gather information about and/or related to their use and/or the use of their associated drivers and/or software as described in the Rosewill Privacy Policy (Rosewill is a registered trademark of Rosewill Inc.); Sabrent (which manufactured certain of my peripheral devices and/or other components and may gather information about and/or related to their use and/or the use of their associated drivers and/or software as described in the Sabrent Privacy Policy; Sabrent is a trademark of Sabrent); Seagate Technology LLC and/or its subsidiaries and/or affiliates, which manufactured certain of my hard drive(s) and/or other memory storage device(s) and their associated drivers and/or software, whose use is subject to the Seagate Privacy Statement (Seagate and Seagate Technology are registered trademarks of Seagate Technology LLC in the United States and/or other countries); Staples, Inc. and/or its affiliates, which manufactured certain of my peripheral devices, other components, and/or other office equipment and may gather information about and/or related to the use of of such devices, components, and/or equipment and/or their associated software and/or drivers as described in Staples’ U.S. Privacy Notice, which also applies to data they may collect in connection with my purchase(s) of supplies, equipment, and/or other office products from their retail stores and/or website (Staples is a registered trademark of Staples, Inc. or its subsidiaries in the United States and/or other countries); Toshiba Corporation and/or its affiliates, which manufactured certain of my hard drives, other memory storage devices, and/or other devices and/or components and may collect information about and/or related to their use and/or the use of their associated drivers and/or software as described in the applicable Toshiba privacy policy or privacy policies (Toshiba is a registered trademark of Toshiba Corporation in the United States and other countries); Waves Audio Ltd., which makes the Waves MaxxAudio® Pro audio processing software I use on some of my devices and may gather information about and/or related to the use of that software as described in the Maxx Privacy Policy (Maxx, MaxxAudio, and Waves are trademarks or registered trademarks of Waves Audio Ltd.); Western Digital® and/or its subsidiaries and/or affiliates, which manufactured certain of my hard drive(s) and/or other memory storage device(s) and their associated drivers and/or software, whose use is subject to the Western Digital Privacy Statement; Western Digital is a registered trademark or trademark of Western Digital Corporation or its affiliates in the U.S. and/or other countries); Avast Software s.r.o and/or their subsidiary Piriform (CCleaner®), whose security and maintenance tools I may use on some or all of my systems and devices (their Data Factsheet explains what data their products may gather; Avast is a registered trademark of Avast Software s.r.o. in the U.S. and/or other countries; Piriform and CCleaner are trademarks or registered trademarks of Piriform Software Ltd. in the U.S. and/or other countries); Bitdefender, whose Bitdefender Mobile Security and/or Bitdefender Central apps and/or associated services I may use on some of my devices (Bitdefender is a trademark of Bitdefender); like many apps and services for the Android platform, the Bitdefender apps and/or services may incorporate and/or utilize various Google services, such as (without limitation) the Crashlytics crash reporter and/or other services of the Firebase platform and/or the Google Safe Browsing API (all of which are subject to the Google Privacy Policy; Google, Android, Crashlytics, Firebase, Google Safe Browsing, and other related marks are trademarks of Google LLC) as well as various other subprocessors such as (without limitation) Akamai Technologies, Inc. and/or Amazon Web Services; Akamai is a registered trademark or service mark of Akamai Technologies, Inc. in the United States (Reg. U.S. Pat. & Tm. Off.); Amazon Web Services is a trademark of Amazon.com Inc. or its affiliates in the United States and/or other countries); Malwarebytes, whose security tools I may use on some or all of my systems and devices (Malwarebytes is a trademark of Malwarebytes); Safer-Networking Ltd., whose Spybot® security and privacy software and/or tools (such as, though not necessarily limited to, Spybot – Search & Destroy security software and/or its associated apps, tools, and/or services) I may use on some or all of my systems and devices (Spybot and Spybot – Search & Destroy are registered trademarks of Patrick Kolla-ten Venne in the EU and/or other jurisdictions; Spybot is a registered trademark of Safer-Networking Ltd. dba Spybot in the United States and/or other countries); developers of Internet firewall applications, software, and/or services, such as (without limitation) Károly Pados’ TinyWall and/or Marcel Bokhorst’s NetGuard mobile firewall and Internet traffic monitor (see the NetGuard privacy statement; NetGuard may also connect to IPinfo to obtain information about IP addresses and/or domains to which mobile apps attempt to connect; IPinfo is a trademark or registered trademark of IDB LLC in the United States and/or other countries); other providers of filter lists, block lists, and/or other security information, such as (without limitation) HackRepair.com (HackRepair.com is a trademark of Jim Walker dba HackRepair.com; HackRepair is a registered trademark of Jim Walker); the MVPS HOSTS file; Perishable Press; StevenBlack/hosts; Disconnect (whose Tracker Protection lists some web browsers may use to help prevent fingerprinting and/or certain other forms of tracking; Disconnect is a trademark of Disconnect, Inc.); and/or The Spamhaus Project (Spamhaus is a registered trademark of The Spamhaus Project SLU in the EU and/or other jurisdictions; the Have I Been Pwned data breach notification service (which is a project of Troy Hunt and subject to the Have I Been Pwned Privacy Policy; Have I Been Pwned is a trademark and brand of Superlative Enterprises Pty. Ltd.) and/or other data breach notification and/or identity theft protection services; and/or encryption software and/or services such as (without limitation) the open source GNU Privacy Guard for Windows (Gpg4win) and the software included with it, which may include (again without limitation) GnuPG (the encryption backend) and the GNU Privacy Assistant (GPA), the GpgOL and GpgEX plugins, and the Kleopatra certificate management application, which was developed by members of the KDE® Community and may be subject to the KDE Software Privacy Policy (GNU is a trademark or registered trademark of the Free Software Foundation; Microsoft, Outlook, and Windows are trademarks of the Microsoft group of companies; KDE is a registered trademark of KDE e.V.; all other trademarks are the property of their respective owners); the OpenKeychain open source mobile encryption app; the OpenKeychain open source mobile encryption app; cryptographic key servers and/or other encryption key management services and/or tools; the open source VeraCrypt disk encryption tool developed by IDRIX (portions of which were developed by various others, summarized in the VeraCrypt Copyright Information notice; IDRIX and VeraCrypt are trademarks of IDRIX); and/or online forums, message boards, discussion groups, chat rooms, mailing lists, technical consulting services, wikis, help files, online documentation, knowledge bases, and/or other online venues and/or resources for investigating, troubleshooting, resolving, and/or preventing technical problems and/or suspicious and/or malicious activity, and/or otherwise discussing and/or researching matters pertaining to the operation, function, and/or security of my system(s), device(s), and/or data.
      • Other providers whose services I may use in accessing the Internet, such as (without limitation) my home Internet service provider (currently Spectrum Internet®, a service of Charter Communications, Inc.; Spectrum Internet and Charter Communications are trademarks or registered trademarks of Charter Communications), which processes and thus has information about and/or related to much of my online activity (in addition to any information I may share with them for security, support, and/or troubleshooting purposes); my mobile carrier(s) (currently T-Mobile®; T-Mobile and T-Mobile USA are registered or unregistered trademarks of Deutsche Telekom AG; this website is not sponsored, certified, endorsed or approved by, or affiliated with, Deutsche Telekom AG, T-Mobile USA, Inc., or their respective subsidiaries and affiliates), which provide my mobile voice, text, and data plan and may process certain emails sent to and from my phone(s), and thus have information about and/or related to voice calls, texts, and online activity made, received, and/or otherwise conducted on my mobile device(s) (in addition to any information we may share with them for security, support, and/or troubleshooting purposes); other Internet service providers, mobile carriers, phone service providers, and/or wireless network services I may use; ASUSTeK Computer Inc. and/or its affiliated entities, which manufactured my ASUS® wireless router and may gather information about and/or related to the use of that router and/or its associated software and/or services as described in the ASUS Privacy Policy (ASUS is either a U.S. registered trademark or trademark of ASUSTeK Computer Inc. in the United States and/or other countries. Reference to any ASUS products, services, processes, or other information and/or use of ASUS Trademarks does not constitute or imply endorsement, sponsorship, or recommendation thereof by ASUS.); NETGEAR, Inc. and/or its affiliates and subsidiaries, which manufactured my NETGEAR® wireless router and may gather information about and/or related to the use of that router and/or its associated software and/or services as described in the NETGEAR Privacy Policy (NETGEAR is a trademark and/or registered trademark of NETGEAR, Inc. and/or its subsidiaries in the United States and/or other countries); the open source Simple DNSCrypt utility developed by Christian Hermann and other contributors (which doesn’t have a privacy policy, although its source code is freely available for review; it implements Frank Denis’s open source DNSCrypt-Proxy to allow me to encrypt my domain name system (DNS) queries on my desktop computer(s); DNSCrypt is a trademark of Frank Denis); Cloudflare, Inc., through and/or in connection with my use of their 1.1.1.1 Public DNS Resolver (which is a partnership between Cloudflare and APNIC Labs, subject to the Cloudflare Privacy Policy; Cloudflare and 1.1.1.1 are trademarks and/or registered trademarks of Cloudflare, Inc. in the United States and other jurisdictions); the 1.1.1.1 App and/or its associated WARP mobile security/encryption service (which are subject to the Cloudflare Application Privacy Policy; Cloudflare, 1.1.1.1, and WARP are trademarks and/or registered trademarks of Cloudflare, Inc. in the United States and other jurisdictions); the Cloudflare Resolver for the Mozilla Firefox browser (whose unique privacy practices are discussed in the “Frequently asked questions about the Cloudflare resolver for Firefox” page; Cloudflare is a trademark and/or registered trademark of Cloudflare, Inc. in the United States and other jurisdictions; Mozilla and Firefox are trademarks of the Mozilla Foundation in the U.S. and other countries); and/or other Cloudflare® services, such as (without limitation) the content delivery network (CDN) and distributed denial-of-service (DDoS) protection services used by some websites and/or online services we may access and/or use (most other Cloudflare services are subject to the Cloudflare Privacy Policy and/or the Cloudflare Application Privacy Policy, as applicable; Cloudflare is a trademark and/or registered trademark of Cloudflare, Inc. in the United States and other jurisdictions); any other DNS resolver service(s) I may use; other CAPTCHA and/or comparable human verification services, such as (without limitation) the hCaptcha® service (a service of Intuition Machines, Inc.; hCaptcha and Intuition Machines are registered trademarks of Intuition Machines, Inc.), which may be used by various websites and/or online services I access and/or use in the course of my online activity; link shorteners and/or other hyperlink redirection services and/or tools; Cisco Systems, Inc., whose OpenH264 Video Codec many web browsers use for encoding and decoding certain types of audiovisual content; this open source codec library does not have its own privacy policy, since it is usually incorporated into web browsers as a binary module (Cisco and Cisco Systems are trademarks or registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries); the Guardian Project (through and/or in connection with my use of the Orbot app and/or Tor Browser for Android app, which are subject to the project’s Data Usage and Protection Policies — these apps connect to the Tor® network developed by The Tor Project (Tor is a registered trademark of The Tor Project, Inc.; Google, Android, and other related marks are trademarks of Google LLC); Hidden Reflex (through and/or in connection with my use of the Epic Privacy Browser (for desktop, mobile, or both), associated encrypted proxy/VPN browser extension, associated Epic AdBlocker extension (which is based on the uBlock Origin browser extension developed by Raymond Hill and uses many of the same lists, which are developed and maintained by a variety of people), associated EpicSearch.in search extension (which submits anonymized queries to the Yandex Search search engine(s) (whose use is subject to the Yandex Privacy Policy; Yandex and Yandex Search are trademarks of Yandex LLC) as an alternative to the browser’s default search function, which uses the Yahoo Search search engine(s) (whose use is subject to the Verizon Media Search Services privacy practices and/or, where applicable, the Verizon Media Privacy Policy; Yahoo! and Yahoo Search are the trademarks and/or registered trademarks of Oath Inc., which is part of Verizon Media Group, a division of Verizon Communications, Inc.; Oath is the registered trademark of Oath Inc.; Verizon and Verizon Media are registered trademarks of Verizon), and/or other browser extensions and/or themes (Hidden Reflex, the Epic Privacy Browser, Epic Browser, EpicSearch, and the names of related products and services are trademarks of Hidden Reflex); Mozilla Corporation (which may gather certain information through and/or in connection with my use of the Firefox, Firefox Focus, and/or Fennec F-Droid web browsers (whether for desktop, mobile, or both) and/or browser extensions, themes, and/or other add-ons as described in the Mozilla Privacy Policy (Mozilla, Firefox, and Firefox Focus are trademarks of the Mozilla Foundation in the U.S. and other countries); the Phishing and Malware Protection features of these browsers may also use the Google Safe Browsing API, which is subject to the Google Privacy Policy; Google, Google Safe Browsing, and other related marks are trademarks of Google LLC); Opera Software AS (through and/or in connection with my use of the Opera web browser (for desktop, mobile, or both), its integral VPN/proxy service, and/or associated browser extensions and/or themes; Opera is a trademark of Opera Software AS); providers of other web browsers I may use (whether for desktop, mobile, or both); and/or the providers and/or developers of browser extensions, themes, and/or other add-ons I may use, such as (without limitation) the Abine Blur browser extension (formerly known as DoNotTrackMe; Abine, Blur, and DoNotTrackMe are trademarks of Abine Inc.) — I’ve also used their email masking tool in an effort to reduce the spam and mass mailings I tend to receive after filling out comment or petition forms; aka_StephanAS‘s browser themes and/or other add-ons; Chris Antanki’s Disable WebRTC extension (whose privacy policy indicates that the extension does not collect usage data); the Cookie AutoDelete browser extension developed by Kenny Do and CAD Team (which does not appear to collect usage data; its source code is freely available for review); damagnat‘s browser themes and/or other add-ons; Francesco De Stefano’s Opena11y Toolkit browser extension (which doesn’t appear to have a privacy policy, although its source code is freely available for review), which facilitates use of the open source tota11y accessibility visualization tool created by Khan Academy® developers to assess potential accessibility issues in online content (although “a11y” is a commonly used abbreviation for “accessibility”, A11Y is a trademark of the Bureau of Internet Accessibility in the United States — it’s not clear if the tota11y project is associated in any way with that organization; Khan Academy is a registered trademark of Khan Academy, Inc. in the United States and other jurisdictions; A11Y and Bureau of Internet Accessibility are registered trademarks of the Bureau of Internet Accessibility, Inc. in the United States); the various ad-blocking and other filter lists by the EasyList authors; the Adblock Plus® browser extension by eyeo GmbH and that extension’s related lists (Adblock Plus and eyeo are trademarks of Ad-IP GmbH & Co. KG, registered in the United States and other jurisdictions); browser add-ons and/or other privacy tools offered by the Electronic Frontier Foundation® (EFF®) (which are subject to the EFF Privacy Policy: Software and Technology Projects; Electronic Frontier Foundation and EFF are trademarks of the Electronic Frontier Foundation); the Ghostery® browser extension by Cliqz International GmbH (Ghostery and Cliqz are registered trademarks of Cliqz International GmbH); the NoScript extension developed by Giorgio Maone of InformAction (which, according to the developer, does not collect personal information); the Nodetics Cookiebro – Cookie Manager browser extension (which currently asserts that it does not collect personal information); Thomas Rientjes’s open source Decentraleyes browser extension (whose Privacy Policy says the extension does not collect user data); Hosh Sadiq’s adblock-nocoin-list); the uBlock Origin browser extension (which is developed by Raymond Hill) and its related lists (which are developed and maintained by a variety of people); and/or the Cookie Quick Manager extension developed by ysard; and/or Jefferson Scher’s userChrome.org website, which offers an unofficial guide and style recipes for customizing the appearance of the Mozilla Firefox web browser (the userChrome.org website is not maintained by or affiliated with Mozilla, which makes the Firefox browser; Firefox and Mozilla are trademarks of the Mozilla Foundation in the U.S. and other countries).
      • Other providers of software, apps, tools, and/or services I may use in connection with this website, its content, the management of my business operations, and/or my other creative endeavors, such as (without limitation) Adobe Inc. and/or its subsidiaries and/or affiliates, which provide some of the software, apps, tools, and/or services I may use and/or offer and may collect information about and/or related to the use of such software, apps, tools, and/or services as described in the applicable sections of the Adobe Privacy Center (Adobe is either a registered trademark or trademark of Adobe in the United States and/or other countries; I am not affiliated with or endorsed by Adobe in any way); Apple Inc. and/or its subsidiaries and/or affiliates, which may gather information about and/or related to my use of iTunes, the iTunes Store, and/or other Apple products and/or services as described in the Apple Customer Privacy Policy (Apple and iTunes are trademarks of Apple Inc., registered in the U.S. and other countries; iTunes Store is a service mark of Apple Inc., registered in the U.S. and other countries); Artifex Software Inc., which may gather certain information about and/or related to my use of their SmartOffice® mobile app as described in the SmartOffice Privacy Policy and/or the Artifex.com Privacy Policy, as applicable (Artifex and SmartOffice are registered trademarks of Artifex Software Inc.); Audacity® open source audio editing and recording software, whose new owners may collect personal information about and/or related to the use of the software — whose source code remains freely available for review — as described in the Desktop Privacy Notice, although this notice technically only applies to newer versions of the software than I currently use (the name Audacity® is a registered trademark of MuseCY SM Ltd.; all other trademarks are the property of their respective owners); Peter Batard’s open source Rufus utility (whose source code is freely available for review); Cannaverbe Limited (through and/or in connection with the use of their CDBurnerXP software); the open source CDex audio utility developed by Georgy Berdyshev, Ariane Paola Gomes, and Albert L. Faber; CompanionLink Software, Inc., whose CompanionLink® and/or DejaOffice® CRM products and/or services I may use to synchronize data and manage contacts, calendar entries, tasks, and notes on my device(s); the CompanionLink Data Processing Agreement applies to data their services (and/or their associated subprocessors) process that may be subject to European Union data protection laws (CompanionLink and DejaOffice are registered trademarks of CompanionLink Software, Inc.); Pavel Cvrček’s open source MozBackup utility, (whose source code is freely available for review); the ComicRack comics reader developed by cYo Soft; DataViz, Inc., which might gather information about and/or related to the use of the Documents To Go® app on the older of my BlackBerry® smartphones (DataViz and Documents To Go are registered trademarks of DataViz, Inc.; BlackBerry is the trademark or registered trademark of BlackBerry Limited); The Document Foundation, which may gather information about and/or related to my use of the open source LibreOffice® office productivity suite and/or its associated repository of extensions, themes, and other add-ons as described in the LibreOffice Privacy Policy (LibreOffice and The Document Foundation are registered trademarks of The Document Foundation or are in actual use as trademarks in one or more countries); the open source F-Droid repository and client app (which may gather a limited amount of information about and/or in connection with my use of the repository and/or app, as described in the “Terms, etc.” section of their About page); Shahin Gasanov’s ZoneIDTrimmer tool; The GIMP Team, which maintains the open source GNU Image Manipulation Program (aka GIMP, which doesn’t appear to have a privacy policy, although the source code is freely available from the “Downloads” page of The GIMP Website); The GIMP Help Team, which maintains the GIMP documentation; and/or the developers and/or maintainers of the software’s various associated plugins, scripts, brushes, filters, and/or other add-ons, such as (without limitation) Alessandro Francesconi’s open source Batch Image Manipulation Plugin (whose source code is also freely available) (GNU is a trademark or registered trademark of the Free Software Foundation); Kovid Goyal’s calibre ebook management software (which lacks a privacy policy, although its code is open source and publicly available; calibre is a trademark or registered trademark of Kovid Goyal); the MakeMKV format converter utility developed by GuinpinSoft Inc. (which doesn’t appear to have a privacy policy); the open source HandBrake video transcoder (whose source code is freely available for review); Mark Harman’s open source Open Camera mobile app; Phil Harvey’s ExifTool utility and Bogdan Hrastnik’s related ExifToolGUI user interface for it; Florian Heidenreich’s Mp3tag utility (Mp3tag is a trademark of Florian Heidenreich); Don Ho’s Notepad++ open source editing tool (which doesn’t appear to have a privacy policy, although again its source code is freely available for review) and its various plugins (which may include, but are not necessarily limited to, the DSpell spell-checker plugin developed by Sergey Semushin as well as the NPP Converter, NPP Export, NPP mimetools and WinGup (Windows Generic Updater) plugins that currently ship with Notepad++; Microsoft and Windows are trademarks of the Microsoft group of companies; all other trademarks are the property of their respective owners); Ivan Ivanenko’s open source Librera Reader app (the F-Droid version, which omits the Internet access features, ads, and analytics and to which I have granted no Internet access privileges; the F-Droid version does not appear to gather personal information except to the extent necessary to manage updates, but the technically inclined can always browse the source code to be sure); JoeJoe‘s Rename Master utility; Tibor Kaputa’s Simple Mobile Tools Voice Recorder app (whose source code is freely available for review); Tim Kosse’s open source FileZilla® FTP client (whose source code is freely available from the project’s “Download FileZilla Client” page; FileZilla is a registered trademark of its respective owners); Petr Lastovicka’s open source Precise Calculator utility (which doesn’t have a privacy policy, although its source code is freely available for review); the open source HashCheck Shell Extension developed by Kai Liu, Christopher Gurnee, David B. Trout, and Tim Schlueter; the ImgBurn freeware disc-burning utility developed by Lightning UK (ImgBurn is a trademark of ImgBurn); the open source Media Player Classic – Black Edition (MPC-BE) (which doesn’t have a privacy policy, although its source code is freely available for review); Igor Pavlov’s 7-Zip utility (which doesn’t have a privacy policy, but whose source code is freely available for review); Dương Diệu Pháp’s open source ImageGlass (which doesn’t have a privacy policy, but whose source code is freely available for review); the open source PuTTY SSH/Telnet client utility (whose source code is freely available for review); the open source SQLiteStudio SQL editing tool developed by SalSoft (whose source code is freely available for review); JHM Schaars’ vDos MS-DOS emulator, which doesn’t appear to have a privacy policy (Microsoft and MS-DOS are trademarks of the Microsoft group of companies; all other trademarks are the property of their respective owners); Ted Smith’s open source QuickHash utility (which doesn’t have a privacy policy, although its source code is freely available for review); the suite of PDF creation and editing software and tools offered by Tracker Software Products (Canada) Ltd., a wholly owned subsidiary of PDF-XChange Co. Ltd., which includes an optical character recognition plugin powered by the ABBYY® FineReader® Engine software development kit (PDF-XChange is an internationally registered trademark of PDF-XChange Co. Ltd.; ABBYY, FineReader, and ABBYY FineReader are either registered trademarks or trademarks of ABBYY Software Ltd.; all other trademarks are the property of their respective owners); Jesse van den Kieboom’s open source gitg GNOME® GUI client for viewing Git repositories (which doesn’t appear to have a privacy policy, although its source code is freely available for review; the GNOME name is a registered trademark or trademark of GNOME Foundation in the United States or other countries; Git is either a registered trademark or trademark of Software Freedom Conservancy, Inc. in the United States and/or other countries; all other trademarks are the property of their respective owners); and/or the VLC media player and/or other open source multimedia software projects of VideoLAN (which doesn’t appear to have a privacy policy, although the VLC media player source code is freely available for review, as is the source code of all VideoLAN open source projects; VideoLAN, VLC, and VLC media player are trademarks internationally registered by the VideoLAN nonprofit organization).
      • Manufacturers of other electronic devices I may use, such as (without limitation) cameras, recorders, or memory storage devices, either through my direct interactions with those manufacturers (e.g., my use of their customer service and/or technical support resources) and/or through telemetry or other information-gathering mechanisms incorporated into the devices and/or their associated software and/or drivers. I don’t believe that my current Canon® or FUJIFILM® digital cameras; SanDisk® portable audio player(s) and/or memory storage devices; analog television; Sony® digital recorder or DVD player; various USB flash drives, memory cards, hubs, and/or drive enclosures (which are from an assortment of different manufacturers); headphones and/or headsets; webcams and/or microphones; speakers and/or sound systems; home appliances (e.g., refrigerator, air conditioner, dehumidifier, vacuum cleaner(s)); or other such devices, equipment, and/or accessories independently transmit personal information to third parties, and I generally seek to avoid or at least limit my use of these devices’ proprietary software and/or apps, if any (obviously excepting firmware necessary for a device to function), but any information they did collect would be subject to the manufacturers’ respective privacy policies (and/or any applicable product- and/or software-specific privacy policies), as is any information they may collect through my use of the manufacturers’ websites, customer service, and/or technical support resources. (Canon is a registered trademark of Canon Inc. in the United States and may also be a registered trademark or trademark in other countries. FUJIFILM is a registered trademark of FUJIFILM Corporation in various jurisdictions. SanDisk and Western Digital are registered trademarks or trademarks of Western Digital Corporation or its affiliates in the U.S. and/or other countries. Sony is a registered trademark of Sony Corporation.)
      • Providers of other search engines and/or other research and/or reference tools, services, facilities, and/or resources I may use, such as (without limitation) the DuckDuckGo search engine(s) and/or associated browser extension(s), whose use is subject to the DuckDuckGo Privacy Policy (DuckDuckGo is a trademark or registered trademark of DuckDuckGo); the Startpage search engine(s) and/or associated browser extension(s), whose use is subject to the Startpage Privacy Policy, which also applies to use of the Startpage “Anonymous View” proxy service, Private Currency Converter feature, Private Language Translator feature, Private Shopping feature, and/or other associated features (Startpage and Startpage.com are trademarks or registered trademarks of Startpage BV); the Yahoo Search search engine(s) and/or other Verizon Media Search Services, whose use is subject to the Verizon Media Search Services privacy practices and/or, where applicable, the Verizon Media Privacy Policy (Yahoo! and Yahoo Search are the trademarks and/or registered trademarks of Oath Inc., which is part of Verizon Media Group, a division of Verizon Communications, Inc.; Oath is the registered trademark of Oath Inc.; Verizon and Verizon Media are registered trademarks of Verizon); the Yandex Search search engine(s), whose use is subject to the Yandex Privacy Policy (Yandex and Yandex Search are trademarks of Yandex LLC); the providers of any other search engines I may use; the International DOI Foundation, whose servers resolve the Digital Object Identifiers (DOI® numbers) used to identify certain academic papers and other online documents and redirect DOI requests to the appropriate online address(es) (DOI® and DOI.ORG® are trademarks of the International DOI Foundation); the Wikimedia Foundation®, through and/or in connection with my use of and/or contributions to Wikimedia Commons®, Wikipedia®, and/or their other collaborative projects (Wikimedia, Wikimedia Commons, Wikimedia Foundation, and Wikipedia are trademarks or registered trademarks of the Wikimedia Foundation, Inc., a nonprofit organization; I am not endorsed by or affiliated with the Wikimedia Foundation); press and/or public relations representatives; museums, libraries, archives, and/or databases, public or otherwise, including but not limited to the Los Angeles Public Library and/or L.A. County Library, through my use of their collections, holdings, exhibits, galleries, catalogs, databases, computers, equipment, and/or other systems and/or services (some of which may be provided by, powered by, and/or otherwise supported by third parties, which may have their own privacy policies); through my attendance at and/or participation in their tours, presentations, classes, programs, and/or events; and/or through my communications with their librarians, archivists, docents, guides, other staff, employees, workers, and/or volunteers, as applicable; organizations, services, and/or resources (public and/or private) that publish, catalog, offer, and/or otherwise make available public records and/or public information of whatever type(s); other online information and/or reference services, encyclopedias and/or dictionaries, almanacs, calculators and/or unit conversion tools, catalogs, repositories, news services, newsletters, online publications, online publishing services and/or platforms, websites, wikis, help files, online documentation, knowledge bases, blogs, video blogs (“vlogs”), podcasts, educational and/or instructional resources and/or services, tutorials and/or other training resources and/or services, file-sharing services, photo-sharing services, stock photo services, other services and/or platforms for sharing images and/or other media, video stores and/or video rental services, online and/or satellite radio and/or television services, and/or streaming services and/or platforms (of whatever type); and/or bookstores and/or other retailers, vendors, merchants, resellers, marketplaces, auction services, distributors, and/or providers through which I may search for, purchase, and/or otherwise obtain and/or access materials, equipment, software, and/or supplies related to this website, its content, the management of my business operations, and/or my other creative endeavors.
      • Vendors, services, and/or service providers that help me promote, monetize, sell, and/or otherwise offer for commercial advantage my content, writing/editing/writing consulting services, and/or other creative endeavors, such as (without limitation) talent and/or literary agents and/or agencies; publicists; promoters; public relations services; advertising agencies and/or services; brokers; distributors; publishers; print-on-demand publishing and/or distribution platforms (such as, without limitation, Lulu Press, Inc. (Lulu.com); Lulu.com and the names and logos of all Lulu products and/or services are trademarks and/or service marks or registered trademarks and/or service marks of Lulu); other types of platforms and/or services for publishing and/or distributing written content and/or images; platforms and/or services for publishing and/or distributing audiovisual content (e.g., videos and/or podcasts); vendors and/or service providers through which I may create and/or offer merchandise related to my services, content, and/or creative endeavors; wholesalers; resellers; booksellers; other retailers; marketplaces (of whatever kind); job search and/or professional networking sites and/or services; and/or staffing agencies/employment agencies.
      • My landlord(s), if any (and/or their respective employees, contractors, and/or agents), who are not normally privy to the operation of this website or my business, but do obviously have access to any residence and/or other space(s) I may rent from them, to the extent permitted by applicable law and/or the terms of my applicable lease(s) and/or rental agreements(s).
      • Other types of vendors and/or service providers, such as (without limitation) other applicable telephony and/or email services (through my phone, text, and/or email communications with you and/or others, and/or as appropriate for security and/or troubleshooting purposes); Voice over Internet Protocol (VoIP), voice chat, teleconferencing, and/or video chat apps, clients, platforms, and/or services; other types of messaging and/or chat apps, clients, platforms, and/or services, such as (without limitation) the Discord services (Discord is a trademark of Discord Inc.) and/or the Signal services (which are offered by Signal Messenger LLC, and whose associated service providers and/or subprocessors may include, but are not necessarily limited to, services provided by Google and/or Amazon Web Services; Signal is a registered trademark of Signal Technology Foundation in the United States and other countries; Google and other related marks are trademarks of Google LLC.; Amazon Web Services is a trademark of Amazon.com Inc. or its affiliates in the United States and/or other countries); bank(s), other financial institution(s), and/or payment processor(s) that process (and may sometimes audit or otherwise investigate) my financial transactions; other wire transfer and/or other funds transfer services; online time servers; online scheduling, task management, meeting, and/or collaboration platforms, tools, and/or services; electronic signature and/or agreement services; online file transfer, file sharing, and/or file storage services (which may include, but are not necessarily limited to, cloud storage services); storage facilities (including, though not limited to, providers of safe deposit boxes) and/or document/information management services; data recovery services; data and/or document destruction and/or shredding services; third-party printers and/or print services; copying and/or facsimile services; providers of public computers and/or wireless networks I may periodically use; photography, videography, and/or filming services and/or studios; processing, conversion, and/or duplication services for photos, film, video, audio recordings, other audiovisual materials, and/or other such content, such as (without limitation) film and/or photo development and/or processing, photo printing, video and/or audio conversion, and/or the production of optical discs and/or phonorecords of whatever type; sound and/or lighting technical and/or engineering services; icon generators; font and/or typeface providers and/or repositories; repair, maintenance, installation, and/or technical service providers and/or resources; transcription, captioning, subtitling, and/or translation services, automated or otherwise; notaries; insurers and/or warranty providers (and/or, where applicable, their respective administrators, affiliates, agents, brokers, claims adjusters, subcontractors, and/or subsidiaries); staffing agencies/employment agencies; fingerprinting and/or background check services; credit bureaus and/or credit reporting agencies; payroll services; bookkeeping, accounting, and/or tax preparation services; auditing services; management consulting services; financial planning, financial management, and/or financial advisory services; brokerages; attorneys and/or law firms; legal aid and/or other legal consulting or legal counseling services; marketplaces, auction services, merchants, resellers, consignment sellers, second-hand shops, antiques dealers, pawn shops, and/or other vendors, service providers, charitable organizations, and/or other organizations and/or entities through which and/or to which I sell, otherwise offer for commercial advantage, donate, and/or otherwise dispose of my copies of published works (e.g., books, magazines, newspapers, CDs, DVDs), other personal property and/or goods, and/or vehicles, and/or vendors and/or services through which I advertise and/or announce such sale(s), offer(s), donation(s), and/or disposal (e.g., classified advertising services, bulletin boards, and/or social media groups that allow posting items for sale); teachers, instructors, trainers, tutors, coaches and/or other educators; healthcare providers and/or their respective support staffs; convention centers, conference centers, meeting rooms, exhibit and/or exhibition halls, concert halls, stadiums, arenas, places of worship, and/or other such venues, and/or ticket brokers and/or other vendors who sell or otherwise provide tickets for and/or admission to such venues (for purposes of and/or in the course of attending, obtaining tickets for and/or admission to, arranging, organizing, and/or otherwise accessing and/or utilizing conventions, conferences, meetings, exhibitions, screenings, public performances, athletic events, ceremonies, services, and/or other such events, and/or the facilities therefor); event planning, management, and/or organization services; private security services; cleaning, janitorial, and/or laundry services; sanitation, waste disposal, trash disposal, waste reclamation, and/or recycling services; environmental remediation and/or inspection services; mapping, navigation, and/or trip-planning services and/or apps such as (though not limited to) the OsmAnd mobile app by OsmAnd B.V. (OsmAnd is a trademark of OsmAnd B.V.); taxi, livery, shuttle, carpool, and/or rideshare services (which I may use if I use and/or arrange such transportation in some context related to this website and/or in the course of my business); travel agencies, travel bureaus, ticket brokers, and/or similar services (in connection with trips I take and/or arrange in some context related to this website and/or in the course of my business); airlines, bus services, and/or rail services (in connection with trips I take and/or arrange in some context related to this website and/or in the course of my business); hotels, motels, and/or other lodging providers (if I use, arrange, and/or communicate with people using such lodgings in some context related to this website and/or in the course of my business); rental services and/or rental agencies for vehicles such as (without limitation) cars, trucks, vans, bicycles, scooters, and/or boats (if I use and/or arrange such services in some context related to this website and/or in the course of my business); parking attendants, security guards, property managers, receptionists, and/or other such functionaries (if I must communicate with such functionaries in some context related to this website and/or in the course of my business — for example (but without limitation) when signing in at the front desk prior to attending a meeting); restaurants, caterers and/or other food preparation services, meal delivery services, and/or other food delivery and/or grocery delivery services (if I use and/or arrange such services in some context related to this website and/or in the course of my business); towing and/or roadside assistance services (if I use and/or arrange such services in some context related to this website and/or in the course of my business); movers (professional or otherwise), moving companies, and/or relocation services (in the event I relocate and/or need to transfer some or all of my business assets to some other site); and/or postal services, common carriers, shipping agencies, delivery services, and/or mailbox rental services (for the purposes of sending, receiving, and/or tracking the status of correspondence, packages, and/or shipments).

      Some or all of my third-party vendors and/or service providers (and/or any subcontractors, subprocessors, vendors, subsidiaries, affiliates, and/or partners those entities may employ and/or utilize in providing their respective services) may be located outside your home country and/or the European Economic Area; by using this website, you consent to my transfer of such information to them.

    • As I deem reasonable and appropriate (and as permitted by applicable law/regulations) to enable me to make informed hiring, employment, and/or business decisions regarding current and/or prospective employees, independent contractors, interns, business partners, business proposals, and/or business ventures, as described in the “Data Related to Recruitment/Hiring/Employment or Business Partnerships” section above.
    • If I am required by law to do so, such as (without limitation) pursuant to a subpoena, search warrant, or other court order or administrative order; in connection with tax returns or other legally required filings, reports, registrations, or disclosures; and/or in connection with an audit, civil or criminal trial, or other official investigation or proceeding. In some cases, I may disclose certain information if I deem it reasonably necessary to ensure my compliance with applicable law or regulation, even if the specific disclosure is not expressly required. For example (again without limitation), if I enter into a financial transaction with you that is subject to sales/use tax, I might provide your address to the applicable tax agency in order to determine the correct tax rate.
    • If I am contractually obligated to do so pursuant to my agreement(s) with my business partner(s), client(s), licensor(s), licensee(s), vendor(s), and/or service provider(s) (as applicable), such as (without limitation) in connection with a dispute, an investigation, an audit, and/or arbitration. For example, if my payment processor investigates a payment I received that they suspect of being fraudulent, the payment processor’s terms of service may require me to provide relevant information to their investigators. Similarly, third-party services such as social media may compel me to provide information related to suspected violations of their terms of service, and many service providers’ user agreements and/or terms of service now include “binding arbitration” clauses requiring all parties to cooperate with and submit to the judgment(s) of an arbiter in the event of a dispute. (These are just a few representative examples, not an exhaustive list of possible scenarios.)
    • If I believe in good faith that such disclosure is reasonably necessary to protect my property, rights, security, and/or safety, and/or the property, rights, security, and/or safety of others and/or of the public at large. For example (but without limitation), if I were to learn that I had been exposed to (or contracted) an infectious disease, I might provide information regarding anyone with whom I had recently been in close contact to healthcare workers and/or public health officials for contact tracing purposes. Additionally, as noted in the Copyright/Intellectual Property Violations section of the Terms of Use, if you submit a notice asserting that material on or linked to by this website that was provided to me by a third party violates your copyright or other intellectual property right(s), I may forward (and you expressly authorize me to forward) your claim to that third party (since such claims may implicate their rights).
    • If the person(s) to whom the information pertains (and/or, where applicable, their respective heirs, successors, and/or assigns) have asked or authorized me to do so, either directly or through their respective agent(s) or other authorized representative(s).
    • If the information is de-identified, anonymized, redacted, and/or aggregated such that it could not reasonably be used to identify the specific person(s) and/or household(s) to whom the information pertains (other than me, if I am somehow included in that information and elect not to de-identify, anonymize, redact, and/or aggregate my own information).
    • As part of a business transfer (e.g., if I sell or transfer control of this website; enter bankruptcy; or pass my assets to my heirs, successors, and/or assigns through my death or incapacity), in which case personal information I have gathered would likely be among the assets sold or otherwise transferred to the new owner(s), who could continue to use that information only as set forth in this policy.

    Additionally, if I have roommates, houseguests, other cohabitants, and/or visitors, they may, from time to time, become incidentally aware of certain personal information pertaining to this website and/or my business operations — for example (but without limitation), noticing the sender and/or recipient information on letters or packages I send or receive via postal mail or common carrier, and/or overhearing some portion of voice calls or video conferences in which I participate. The likelihood and potential extent of any such incidental disclosures is difficult to quantify, but the possibility is hard to avoid with any business activity conducted at home.

    In general, I do not sell or rent the information I collect from individual visitors to the aaronseverson.com website, at least not in the sense most people understand the terms “sell” and “rent.” (Some jurisdictions’ privacy laws, such as the California Consumer Privacy Act of 2018 (CCPA), have greatly complicated this question by expanding their definitions of “sale” to include virtually any disclosure in which any party has any financial stake whatsoever; see the “Information Shared for Business or Commercial Purposes” subsection of the “CCPA Information Collection and Sharing Notice” section below for more information on this issue as it relates to California law.)

    There are a number of potential exceptions:

    First, as noted above, if I sell or transfer control of this website, personal information I have collected through and/or in connection with the site would likely be among the assets involved in such sale or transfer (which, surprisingly, the CCPA apparently does not regard as a sale for the purposes of that law).

    Second, if I possess artwork, copies of published work(s), useful article(s), and/or other object(s) that contain and/or otherwise incorporate personal information about certain individual(s) or household(s) who have visited this website (such as, without limitation, a book by or about you; a magazine you once owned that still bears your name and address on the subscription mailing label; a DVD of a movie in which you appeared; or some item you once autographed), I might sell, lend, donate, or otherwise dispose of such artwork, my copy or copies of such published work(s), and/or such article(s) and/or object(s).

    Third, it is conceivable that from time to time, personal information about one or more site visitors may be included in content that I research, write, adapt, edit, share, publish, and/or otherwise disseminate (and/or on which I consult and/or otherwise collaborate) as part of and/or in connection with my profession writing/editing/writing consulting services, and/or in connection with my automotive website, Ate Up With Motor. For example (but without limitation), if you are a public figure and/or were involved in some newsworthy event, it is possible that a client may hire me (or has previously hired me) to research and write a profile about you for a magazine or other publication; if you own an interesting old car, I might include a photo I took of it at a car show in an article I license to some website or publication. (There are many possible scenarios — these are just a few representative examples.) Therefore, in the event that I incorporate your name, other relevant personal information, and/or potentially personally identifying information about you into my written content and/or bibliographies, annotations, and/or metadata; if your name and/or information is incorporated into content I research, write, adapt, edit, share, publish, perform, and/or otherwise disseminate (and/or on which I consult and/or otherwise collaborate) in or for some other some other format(s) and/or medium(s), and/or the metadata of such content; and/or if you and/or your information are somehow visible, audible, and/or otherwise included in certain of my images and/or other media, and/or present in their metadata, I may license, sell, and/or otherwise offer it for commercial advantage in that context. (Ate Up With Motor is a trademark of Aaron Severson dba Ate Up With Motor.)

    Please note that in many cases, I have no reasonable way of associating data gathered through this website with information I may have collected about you in other contexts, or of associating different types of personal information and/or potentially personally identifying information I may have obtained about a given individual or household. For example (again without limitation), your IP address being recorded in my server logs doesn’t necessarily mean that I know your name or can recognize your face in the background of a photo! (If you have questions about this, please contact me via any of the methods described in “Controller/Responsible Party, Questions, and How to Reach Me” below.)

    Fourth, as noted in “Advertising” above, I don’t permit the site’s advertisers or sponsors to use scripts, cookies, web beacons, or other such technologies to collect information about you through the publicly visible portions of the aaronseverson.com website. (Advertisements, banners, or donation boxes on the site’s administrative dashboard may sometimes collect personal information, but since the dashboard is only accessible to logged-in administrative users, such information-gathering and disclosure normally only involves my information, not that of other site visitors.) However, if you click on ad links to visit the websites of my advertisers or otherwise patronize their businesses, they may gather and use information about you — potentially for various commercial purposes — as described in their respective privacy policies, cookie policies, and/or terms of service/terms of use, which is outside of my control. Such advertisers may also be able to tell that you clicked on an ad on this website. This could conceivably be deemed to constitute sharing information “for commercial purposes” as the CCPA defines it, even if I do not directly provide any information about you to those advertisers (and even though I obviously can’t control whether or not you click on an ad link).

    Fifth, some of my service providers and/or vendors (including, though not necessarily limited to, providers of embedded content used on this website, as described in “Embedded Content” above) may use and/or disclose — potentially for advertising, marketing, and/or other commercial purposes — personal information they gather through my use of their content and/or services in ways that are beyond my control. (For example, but without limitation, I have no control over how video hosting platforms use the information they may collect about visitors who watch embedded videos I share, or how companies such as search engines or social media services use data they may gather through their services.)

    As previously noted, while no online website, Internet-accessible device, or data storage system can be 100 percent secure, I take reasonable measures to protect against unauthorized access, use, alteration, or destruction of personal information I collect through and/or in connection with this website, including, but not limited to, the use of encryption and encrypted connections, online and offline malware scans, and appropriate password protection.

    Your Rights (GDPR and Other National or State Privacy Laws)

    If you are located in certain countries, including those that fall under the scope of the European General Data Protection Regulation (GDPR, now sometimes called the EU GDPR to distinguish it from the similarly named regulations of other regions), the UK GDPR, or Brazil’s Lei Geral de Proteção de Dados (LGDP), or in certain U.S. states, such as Nevada (see “Nevada Consumer Opt-Out Rights” below) or California (see “Your California Privacy Rights” below), applicable data protection laws may give you certain rights with respect to your personal information (which some jurisdictions call “personal data”), subject to any exemptions provided by the law and/or associated regulations.

    For example, the rights provided by the EU GDPR and UK GDPR include the rights to:

    • Request access to your personal data
    • Request rectification (correction) of your personal data
    • Request deletion of your personal data
    • Object to my use and processing of your personal data
    • Request that I limit my use and processing of your personal data
    • Request portability of your personal data; and
    • Make a complaint to the applicable government data protection authority.

    In the UK, the applicable data protection authority is the Information Commissioner’s Office (ICO); for a current list of European national data protection authorities, see the “Our Members” page of the European Data Protection Board website.

    If you have questions or would like to exercise your privacy rights under applicable national and/or state law, you can contact me via any of the methods described in “Controller/Responsible Party, Questions, and How to Reach Me” below. I’ve also added a Privacy Tools page with tools that will allow residents of countries outside the U.S. to request to export, correct (rectify), and/or delete their personal information under applicable national privacy and/or data protection laws. (The data available through those tools is subject to certain technical limitations, explained more fully on the Privacy Tools page. Also, please note that those tools are NOT intended for use by U.S. residents requesting to exercise their rights under the privacy and/or data protection laws of their home state; state laws may impose specific requirements for the processing and/or verification of such requests that my automated tools weren’t designed to accommodate.)

    To safeguard your privacy and the privacy of others, I may (to the extent permitted — and/or required — by applicable law/regulations) take steps to verify your identity and/or residency before processing certain requests pertaining to your personal information.

    Also, please note that I may be obligated to retain certain data (such as financial transaction records) for legal or administrative purposes and/or to secure this website and its data.

    Nevada Consumer Opt-Out Rights

    If you are a consumer residing in Nevada, Nevada law gives you the right to request that I not sell certain types of personal information about you to third parties for monetary consideration (whether or not I am currently selling such information in such ways). This Nevada consumer opt-out right does not apply to publicly available information, to information I share with service providers who process the information for me, or to information transferred as part of the sale or transfer of my business, and is subject to certain other restrictions and exemptions provided by applicable law.

    If you are a Nevada consumer and request to opt out of the sale of your personal information in this way, I am required to take reasonable steps to verify your identity and the authenticity of your request. The law requires me to honor verified opt-out requests from Nevada consumers within 60 days of receipt (which may be extended to 90 days if I deem it reasonably necessary and provide adequate notice of the delay to the requesting consumer).

    You can request to opt out by contacting me via any of the methods described in “Controller/Responsible Party, Questions, and How to Reach Me” below.

    Your California Privacy Rights

    California Do Not Track Disclosure

    This website does not currently respond to Do Not Track browser settings.

    Information-Sharing Disclosures (Shine the Light Law)

    California Civil Code § 1798.83 et seq. (the “Shine the Light” law) gives California residents who have established business relationships with certain businesses the right to request information about those businesses’ disclosure of the customer’s personal information to third parties for direct marketing purposes.

    The law defines “direct marketing purposes” as “the use of personal information to solicit or induce a purchase, rental, lease, or exchange of products, goods, property, or services directly to individuals by means of the mail, telephone, or electronic mail for their personal, family, or household purposes.” An “established business relationship” is defined as “a relationship formed by a voluntary, two-way communication between a business and a customer” that is either ongoing or was established with a purchase or other transaction within the past 18 months.

    Under the Shine the Light law, if you are a California resident and have an established business relationship with a business subject to the law’s requirements, you may request, once per calendar year, an Information-Sharing Disclosure that details:

    1. What categories of personal information about you, if any, that business shared with third parties for direct marketing purposes in the preceding calendar year, and
    2. The names/identities and addresses of such third parties.

    (The law does not require the business to reveal which specific pieces of information may have been shared, only the categories of information, as defined by the applicable statutes.)

    Although I believe I am exempt from the requirements of this law, since I have fewer than 20 employees, I will nonetheless make every reasonable effort to provide you with such a disclosure within 30 days of my receipt of your request. To submit a request, please contact me via any of the methods described in “Controller/Responsible Party, Questions, and How to Reach Me” below.

    Please note that this disclosure only covers information shared for direct marketing purposes. See the other sections of this Privacy Policy to learn more about other types of information I collect and how I use it.

    Additional California Privacy Rights (CCPA)

    Starting January 1, 2020, California privacy laws, including the California Consumer Privacy Act of 2018 (CCPA), give California residents additional rights with respect to their personal information. The rights the CCPA provides California residents include:

    1. The Right to Know (sometimes described as the right to access): You have the right to request — free of charge, and (where possible) in “a readily usable format”:

      1. The categories and/or specific pieces of personal information I have collected about you in the preceding 12 months, and
      2. The categories of business and/or commercial purposes for collecting and using that information, and
      3. The categories of sources from which I collected that information, and
      4. The categories of personal information about you that I have shared with third parties for business or commercial purposes in the preceding 12 months, and
      5. The categories of third parties with whom personal information was shared.
    2. The Right to Delete: You have the right to request deletion of personal information about you that I have collected in the course of my business.
    3. The Right to Opt-Out of the sale of your personal information.
    4. The right to not receive discriminatory treatment for exercising these rights.
    5. The right to make a complaint to a state government supervisory authority.
    6. The right to take private legal action in the event of a data breach that exposes your personal information to theft or unauthorized access.

    These rights are subject to certain exemptions, exceptions, and restrictions provided by the law and/or its associated regulations. You need not be physically present in California to exercise these rights provided that you have a current California residence. You may designate an authorized agent to act on your behalf in exercising these rights.

    While I believe I do not technically meet any of the applicability thresholds specified by this California law, I am committed to providing visitors with as many privacy choices as I reasonably can.

    You (or your authorized agent) can exercise your California privacy rights via any of the methods specified on the Do Not Sell My Personal Information page.

    Applicable law and/or regulations stipulate the maximum time allowed for acknowledging and/or responding to your request. There is no charge for for making a request.

    In order to better safeguard your privacy and the privacy of others, I may be required to verify your identity before processing certain requests pertaining to your personal information. I may be unable to fulfill your request if I cannot verify your identity to the degree of certainty applicable law and/or regulations require. (You can find more information in the “Identity Verification Requirements” section of the Do Not Sell My Personal Information page.) The CCPA regulations issued by California’s Office of the Attorney General stipulate that if I request additional personal information from you that I did not already possess in order to verify your identity to the degree of certainty those regulations require, I may use such additional personal information solely for that purpose and may only retain that information to the extent necessary to comply with the regulations’ record-keeping requirements.

    Even if I verify your identity, the regulations prohibit me from disclosing certain types of extremely sensitive personal information (e.g., Social Security Numbers or financial account numbers) in response to a request to know. (In the event that I possessed such sensitive personal information about you, the regulations would only permit me to disclose the fact that I possessed the information, not tell you the actual information I possessed.)

    Please note that in addition to any exceptions and exemptions applicable law and/or regulations may provide to the rights provided by the CCPA (particularly with regard to the deletion of your personal information), I may be unable to delete certain information (e.g., my web host’s server and error logs) for technical reasons.

    Except as otherwise required by law, privacy-related requests pertaining to children under 18 should be submitted by a parent, legal guardian, or other authorized adult representative.

    Opting-Out or Submitting Other California Privacy Requests (Do Not Sell My Personal Information Page)

    If you are a California resident and would like to exercise your Right to Opt-Out of the sale of your personal information, or any of your other rights under the California Consumer Privacy Act of 2018 (CCPA), such as the Right to Know (a.k.a. the right to access) and/or the Right to Delete your personal information, you (or your authorized agent) should visit the Do Not Sell My Personal Information page.

    CCPA Information Collection and Sharing Notice

    The California Consumer Privacy Act of 2018 (CCPA) also requires certain businesses to provide California residents with additional information about the categories of personal information the business collects, the sources from which the business gets that personal information, and how and why the business uses and/or shares that personal information. These disclosures must be updated at least once a year.

    As noted above, I believe I do not meet any of the CCPA applicability thresholds, but for the avoidance of doubt, I make the disclosures listed below.

    Categories of Personal Information Collected

    The following list summarizes the categories of personal information I collect and/or have collected about individuals and/or households, both through and/or in connection with this website and in the context of my business, which for the purposes of this notice includes both my work as a professional writer/editor and writing consultant, which is subject to the separate 6200 Productions Privacy Policy, and my automotive website, Ate Up With Motor, which also has its own privacy policy. (6200 Productions is a trademark of Aaron Severson dba 6200 Productions. Ate Up With Motor is a trademark of Aaron Severson dba Ate Up With Motor.)

    Please note that I do not necessarily collect all of these categories of personal information about every individual, or even most individuals. While I collect certain information from all site visitors (e.g., IP addresses, user agent information), the categories listed below also encompass the range of information I gather in connection with the articles and other content I create and/or edit (and/or on which I consult and/or otherwise collaborate) and/or my other creative endeavors, which is far more extensive than I customarily gather about site visitors. (Simply reading a single magazine article or encyclopedia entry about some public figure as part of my research can sometimes provide me with most if not all of the categories of personal information listed here!) These categories also include information (a) that certain people volunteer to me, whether about themselves or someone else; (b) that I only collect from/about certain people for some specific reason(s); and/or (c) that I infer or surmise from other data (e.g., inferring an approximate geographical location based on an area code or email domain).

    The statutory definitions of some of these categories overlap, with certain types of information (e.g., real names) technically falling into multiple categories; I have tried to limit repetition in the interests of space and comprehensibility. This list also includes some types of information that the law would probably regard as personal information, but that are not specifically described in the applicable statutes and/or regulations.

    The examples listed for each category are intended to be a representative sampling, NOT an exhaustive list of all the specific pieces of information I may gather and/or have gathered within a particular category. Also, this list describes the categories of information I collect and/or have collected on individuals and/or households from ANY locale, NOT only from California residents. (In many cases, I have no reasonable way to know whether the individuals and/or households to whom certain personal information pertains are California residents or not.)

    In the last 12 months, I have collected the following categories of personal information through and/or in connection with this website and/or in the course of my business:

    • Identifiers, such as:
      • Real names, pseudonyms/aliases, nicknames, usernames, and/or account names
      • IP addresses
      • Email addresses
      • Postal mailing addresses and/or street addresses
      • Social Security Numbers, taxpayer ID numbers, driver’s license numbers, and/or other government-issued identification numbers
      • Unique personal identifiers, device identifiers, online identifiers, and/or other similar identifiers
      • Information collected through cookies and/or similar technologies
    • Additional categories of personal information as defined in the California Customer Records statute, California Civil Code § 1798.80(e), such as:
      • Signatures, physical and/or digital
      • Other physical characteristics and/or descriptions of individuals (e.g., height, weight, hair color, distinguishing marks and/or distinguishing features)
      • Telephone numbers (and/or FAX numbers)
      • Other contact information
      • Account numbers
      • Records of financial transactions with and/or otherwise involving me, including, where applicable, but without limitation, transaction ID numbers, tax-related information, billing addresses, full and/or partial credit card information, check information, bank account and/or other financial institution account information, and/or other account details (I do NOT receive any credit card, bank account, or other financial institution account information in connection with PayPal® transactions; PayPal is a registered trademark of PayPal, Inc.)
      • Other financial information (e.g., credit ratings; whether someone has (or had) loans, past foreclosures, and/or declared bankruptcy; other information pertaining to creditworthiness, assets, benefits, income, and/or liabilities; the net worth of public figures)
      • Medical information (e.g., information about health conditions; tests and/or treatments received; drugs, therapies, and/or medical products and/or equipment used; healthcare providers and/or organizations visited, consulted, and/or otherwise used or seen)
      • Health insurance information (e.g., whether or not individuals or households are insured and if so, with which insurance provider(s) — I do NOT collect policy numbers or similar data, and much of what health-insurance-related data I do collect is in aggregated form)
      • Information about other types of insurance and/or insurance coverage
    • Characteristics of classifications protected by law, such as:
      • Age and/or date of birth
      • Race, color, ancestry, national origin, citizenship, and/or residency
      • Religion and/or creed
      • Marital/relationship status and/or information about spouses/partners
      • Medical condition and/or physical or mental disability
      • Sex, gender, gender identity, and/or gender expression
      • Pregnancy, childbirth, and/or related medical conditions
      • Sexual orientation
      • Veteran or military status
      • Information about children (such as the number of children and/or their names, ages, and/or genders) and/or other family members
      • Language(s) spoken and/or preferred
    • Commercial information, such as:
      • Information about cars and/or other vehicles an individual or household has owned, purchased, rented, leased, otherwise obtained, and/or considered; that they have indicated they want to purchase, rent, lease, and/or otherwise obtain; and/or that they are considering
      • Information about art, books, other publications, films and/or other videos, music, and/or other media an individual or household has read, watched, viewed, listened to, and/or otherwise consumed; desires/intends to read, watch, view, listen to, and/or otherwise consume; and/or is considering reading, watching, viewing, listening to, and/or otherwise consuming
      • Information about personal property, products, goods, and/or services an individual or household owns, rents, leases, has otherwise obtained, and/or uses; has owned, purchased, rented, leased, otherwise obtained, used, and/or considered; desires to purchase, rent, lease, otherwise obtain, and/or use; and/or is considering purchasing, renting, leasing, otherwise obtaining, and/or using
      • Information about food, beverages, groceries, meals, recipes, drinks, and/or cuisine(s) an individual or household purchases, otherwise receives and/or obtains, prepares, consumes, prefers, and/or disdains
      • Information about retailers, vendors, marketplaces, and/or service providers an individual or household has patronized, is considering patronizing and/or planning to patronize, prefers, and/or disdains
      • Information about lodgings, residence(s), office space(s), and/or other real property an individual or household owns, rents, leases, and/or otherwise uses (and/or is considering purchasing, renting, leasing, and/or otherwise using), and/or information about who owns, manages, administers, sells, rents, leases, and/or otherwise offers for commercial advantage particular lodgings; a particular residence; and/or a particular building, lot, office space, industrial facility, or other real property
      • Information about stock and/or securities ownership, purchases, sales, and/or transfers (e.g., whether an individual or household owns and/or has recently purchased and/or sold shares in a particular corporation or other business entity, and/or what broker(s) and/or other intermediaries, if any, conducted and/or administered such transaction(s))
      • Information about other types of purchases, transactions, and/or investments
      • Information about an individual or household’s participation and/or interest in sports, games, hobbies, and/or other pastimes
      • Information about an individual or household’s participation, scores, achievements, winnings, losses, and/or prizes in sweepstakes, lotteries, raffles, contests, wagers, other forms of gambling, and/or other games of chance or skill
      • Information about an individual or household’s critical judgments, tastes, opinions, and/or preferences
      • Other information about an individual or household’s purchasing and/or consuming history and/or tendencies
      • Information about products, goods, services, and/or property an individual or household sells, rents, leases, and/or otherwise offers for commercial advantage
    • Biometric information, such as if you provide me with information about your health, sleep, and/or exercise habits, and/or if I configure my smartphone(s) and/or other device(s) to be unlocked using a fingerprint
    • Internet or similar network activity information, such as:
      • Web browsing activity and/or history
      • Search history
      • Information gathered through cookies and/or similar technologies
      • User agent information
      • Email header information
      • Online avatars, profile images, and/or icons
      • Domain names and/or URLs of personal blogs, social media pages/feeds, and/or other online profiles
      • Network, shared device, and/or online service information (e.g., names, passwords/login credentials, URLs, IP addresses, technical details, and/or other information pertaining to wireless networks; local area networks; shared printers and/or other devices; databases; websites; online accounts; and/or other means of networking, connecting, sharing, and/or otherwise accessing electronic devices, files, messages, communications, and/or data)
      • Other information about an individual or household’s use of and/or interactions with websites, applications, software, devices, electronic systems and/or services (online and/or otherwise), messages, and/or advertisements, including, but not limited to, information about errors and/or suspicious activity
    • Geolocation data, such as an individual or household’s physical location and/or movements, whether directly observed; stated and/or described to me (directly or indirectly); and/or determined, estimated, and/or inferred from other data (e.g., from an IP address, telephone area code, and/or GPS coordinates)
    • Sensory data (audio, electronic, visual, thermal, olfactory, or similar information), such as photographs, illustrations and/or other images, films and/or other videos, audio recordings, broadcasts, live streams, voice and/or video calls or chats, and/or other media in which recognizable individuals and/or their identifiable likenesses are visible and/or their voice(s) audible
    • Professional or employment-related information, such as:
      • Resumes/CVs
      • Current and/or past employer(s) and/or client(s)
      • Job title(s), position(s), role(s), duties, and/or responsibilities
      • Work schedule(s), location(s), and/or assignment(s)
      • Compensation and/or benefits
      • Business or organization ownership, officership, and/or registration information (e.g., whether an individual has some ownership interest in and/or is an officer of a corporation, some other business entity, or a nonprofit organization)
      • Information about professional clients, clientele, customers, users, advertisers, vendors, suppliers, contractors, subcontractors, and/or service providers
      • Information about other professional relationships (such as, without limitation, publishing and/or licensing deals, management, representation, endorsement deals, contractor and/or subcontractor relationships, colleagues, coworkers, mentor/mentee relationships, professional collaborations, joint ventures, and/or partnerships)
      • Military service information
      • Membership in and/or affiliation with other organizations and/or groups
      • Professional certification(s) and/or license(s)
      • Training, professional development, career goals, and/or professional aspirations
      • Skills, aptitudes, abilities, and/or intelligence
      • Professional achievements and/or honors
      • Publishing histories/bibliographies/discographies/filmographies/performance histories/broadcast histories/portfolios/development credits/patent records and/or other, similar and/or comparable information about writers, artists, photographers, designers, architects, filmmakers, musicians, performers, translators, editors, producers, developers, researchers, scientists, engineers, inventors, and/or other such professionals
      • Authorship, other credits, and/or rights holder information for creative works, designs, inventions, and/or performances (e.g., books, articles, scientific and/or engineering studies, essays, blog posts, photographs, illustrations and/or other images, films and/or other videos, songs and/or musical compositions, choreography, audio recordings, films, television and/or radio programs, other media, software, architectural plans, mechanical inventions and/or blueprints, designs of whatever type, and/or other types of artwork and/or creative endeavors), and/or other types of intellectual property such as trademarks, service marks, and/or patents
      • Professional references
      • Performance evaluations and/or information about an individual’s professional reputation and/or conduct
      • Other information about an individual’s current, past, and/or prospective work, vocation, trade, professional services, products, and/or other commercial endeavors
    • Nonpublic education information, such as school applications and/or attendance; class lists; grades and/or test scores; transcripts; major(s); degree(s), certifications, and/or credentials earned and/or in progress; graduation date(s); other information about a current or former student’s instructors, coursework, academic projects, and/or academic performance; and/or information about student loans and/or financial aid
    • Inferences I draw from other personal information, such as my estimation of an individual’s personality, aptitudes, predispositions, psychological trends, and/or behavior
    • Other types of personal information not specifically described in the applicable statutes, such as:
      • Information about specific vehicles, such as license plate numbers, vehicle identification numbers, related information (e.g., vehicle registration dates); vehicle position(s) and/or location(s); and/or other identifying characteristics or details (e.g., year, make, model, body style, color, equipment, features, distinguishing markings, modifications, customization, damage, repairs, and/or maintenance)
      • Information about individuals’ places of birth and/or upbringing
      • Information about an individual or household’s involvement in and/or connection with accident(s), natural disaster(s), and/or other catastrophic event(s) or hardship(s) (of whatever type(s) and/or cause(s))
      • Legal information (e.g., information regarding an individual having been accused of, charged with, and/or convicted of crime(s), infraction(s), and/or misconduct; having been a victim (or alleged victim) of crime(s) and/or misconduct; and/or being involved in a civil lawsuit)
      • Information about an individual or household’s employees, independent contractors, interns, agents or other authorized representatives, and/or service providers (e.g., assistant and/or secretary, attorney(s) and/or other legal counsel, talent and/or literary agent(s), manager(s), broker(s), accountant(s), auditor(s), and/or other authorized representatives and/or professional service providers)
      • Information about wills, estates, executorship, inheritance, trusts, trusteeship, conservatorship, and/or guardianship
      • Information about gifts, donations, charitable contributions, and/or political contributions made and/or received
      • Information about community service (e.g., jury duty), volunteer work, and/or charitable activity
      • Information about political affiliations, opinions, and/or activity
      • Information about other beliefs, opinions, feelings, predispositions, attitudes, and/or viewpoints
      • Information about social class, rank, position, title, and/or investiture, of whatever type(s) and/or source(s)
      • Information about membership in and/or affiliation with clubs, societies, fraternal orders, and/or other types of groups
      • Information about awards, honors, prizes, and/or other recognition
      • Information about individuals’ public and/or personal reputations
      • Information about friendships, personal relationships, and/or social interactions (including observations and/or inferences regarding individuals’ tendencies and/or preferences therein)
      • Information about other household members (e.g., roommates) and/or pets
      • Information about an individual’s style(s), themes, influences, tendencies, development, and/or achievements in writing, art (in whatever medium(s)), photography, filmmaking, music, fashion, design, architecture, and/or other creative endeavors (professional or otherwise)
      • Handwritten notes and/or documents; illustrations; paintings; sketches; and/or other examples of individuals’ handwriting, calligraphy, and/or artwork (in whatever medium)
      • Encryption public keys and/or similar security data
      • Other potentially personally identifying information in electronic files and/or associated metadata
      • Other types of personal information, and/or other types of data that could potentially be deemed personal information, that do not readily fit into any of the above-listed categories.

    Although I do not knowingly collect personal information from children under 18 through this website, I may sometimes collect such information as part of my professional writing/editing/writing consulting work. (For example (but without limitation), I might write or edit a news article about a minor child’s notable achievements or involvement in some matter of public interest, which could include personal information obtained through an interview with that child and/or from other sources.) If you have questions, if you are a parent or legal guardian and believe that I may have collected personal information about your minor child, or if you wish to exercise your right to remove or delete such information, please contact me via any of the methods described in “Controller/Responsible Party, Questions, and How to Reach Me” below. (Parents or legal guardians can also submit CCPA requests on behalf of their minor children via any of the methods specified on the Do Not Sell My Personal Information page.)

    The fact that I collected and/or inferred certain information does not necessarily mean that I still retain it, or that I have any practical way to associate the different categories of information I may have collected about a given individual or household (e.g., to connect a visitor’s name with an IP address in the server logs and/or a face visible in the background of a photograph).

    Keep in mind that if you have interacted with me via some third-party service, that service may have collected and/or shared — potentially for commercial purposes — personal information about you that is not reflected in the above list. The collection, use, and/or retention of personal information by third-party services is subject to such services’ respective privacy policies, cookie policies, and/or terms of service/terms of use, and in most cases is outside of my control. (The disclosures above DO include categories of personal information that third-party services have provided to me.)

    Collection Sources

    Personal information I collect about you and/or your household comes from one or more of the following categories of sources, whether directly or indirectly:

    • You, whether through your interactions with me; through public disclosures you make (e.g., social media posts); through your use of this website; and/or through your employees, independent contractors, interns, agents or other authorized representatives, business partners, vendors, and/or service providers (as applicable)
    • My employees, independent contractors, interns, agents, and/or business partners, if any (and as applicable)
    • My vendors and/or service providers
    • Other visitors/users
    • Published and/or publicly available sources (e.g., news reports, books, articles, reports and/or white papers, films and/or other videos, television programs, radio programs, podcasts, other audio recordings, social media, websites, online databases and/or repositories, public records)
    • Nonpublic documents, records, collections, and/or archives (e.g., unpublished correspondence, manuscripts, and/or interviews; unreleased versions, outtakes, scripts, and/or other materials from film, television, radio, and/or other media projects; internal business and/or organizational records, reports, memoranda, documents, and/or other materials; school transcripts and/or other school records)
    • Subject matter experts, other writers, historians, biographers, researchers, instructors and/or coaches, academics, scientists and/or engineers, journalists, critics, reviewers, enthusiasts, collectors, librarians and/or other library staff, archivists, translators, photographers, videographers, filmmakers, illustrators, podcasters, other media creators, publicists and/or promoters, public relations representatives and/or other press contacts, observers, eyewitnesses, and/or other knowledgeable parties (which in some cases may include (without limitation) personal and/or professional acquaintances (whether yours, mine, and/or someone else’s), such as (again without limitation) friends, current and/or past employers and/or supervisors, current and/or past colleagues and/or coworkers, current and/or past clients and/or customers, current and/or past business partners, professional references, current and/or past instructors and/or students, and/or other members of a given household and/or family)
    • Clients or employers for whom I provide (or have provided) writing/editing/writing consulting services, and/or publishers and/or other third parties through which I publish, perform, broadcast, exhibit, and/or otherwise distribute my content and/or other creative endeavors (professional or otherwise).

    Each of the above-listed categories of sources may provide me with information that falls into several or all of the categories of personal information listed in “Categories of Personal Information Collected” above.

    Collection Purposes

    Personal information I collect through and/or in connection with this website and/or in the course of my business is collected for one or more of the following categories of purposes:

    • Functionality
    • Providing services
    • Completing a transaction
    • Fulfilling a contractual obligation
    • Legal compliance or audit
    • Research and publishing
    • Security, troubleshooting, quality control, and service improvement
    • Recruitment/hiring/employment or business partnerships
    • Advertising and other commercial purposes

    These categories of purposes are defined in the “Categories of Information and Purposes for Collection” section above and have the same meanings here as in other sections of this Privacy Policy.

    Information Shared for Business or Commercial Purposes

    The CCPA defines sharing information “for business purposes” as disclosing personal information about individuals or households to third parties such as service providers or independent contractors for certain specified purposes, which the law divides into the following categories:

    1. Auditing interactions with consumers
    2. Security
    3. Debugging/repair
    4. Certain short-term uses
    5. Performing services
    6. Internal research for tech development
    7. Quality and safety maintenance and verification.

    A disclosure of personal information is considered to be “for commercial purposes” if it serves to “advance a person’s commercial or economic interests, such as by inducing another person to buy, rent, lease, join, subscribe to, provide, or exchange products, goods, property, information, or services, or enabling or effecting, directly or indirectly, a commercial transaction,” with the exception of “engaging in speech that state or federal courts have recognized as noncommercial speech, including political speech and journalism.”

    The CCPA definitions are so expansive that almost any disclosure of virtually any piece of information about any individual or household — even information that was already publicly available — could potentially be considered sharing of personal information for business or commercial purposes if it takes place in any business-related context. Furthermore, by the CCPA definitions, a disclosure for commercial purposes may be deemed “selling” personal information even if it does not constitute a sale as most people understand that term.

    I may share, release, and/or otherwise disclose personal information I collect through and/or in connection with this website as described in the “Disclosure of Personally Identifying Information” section above. Also, as noted in that section and elsewhere in this Privacy Policy, my work as a professional writer/editor and writing consultant and/or other creative endeavors routinely involve collecting and sharing personal information, often for publication (and/or public performance, exhibition, and/or broadcast, as applicable). Such information routinely encompasses most or all of the categories of personal information listed in “Categories of Personal Information Collected” above, although I don’t necessarily share, release, or disclose every type of information that may fall within a particular category, nor do I necessarily share, release, or disclose every piece of information I collect within a given category.

    Therefore, by the law’s definitions, I may share any or all of the categories of personal information I collect through and/or in connection with this website and/or in the course of my business with any or all of the following:

    • My employees, independent contractors, interns, agents, and/or business partners, if any; and/or:
    • My vendors and/or service providers; and/or:
    • Any government agency, investigator, auditor, court, arbiter, or other official entity that legally requires or compels me to disclose personal information related to my business; and/or:
    • Any individual or entity with whom I communicate and/or consult in the process of researching, creating, and/or editing my content, writing/editing/writing consulting work, and/or other creative endeavors, and/or who communicates and/or consults with me in the course of researching, creating, and/or editing their content, work, and/or creative endeavors; and/or:
    • Editors, publishers, clients, employers, and/or other third parties for whom I provide (and/or to whom I offer) my writing/editing/writing consulting services; to whom I may license, sell, and/or otherwise offer my content and/or other creative work; for whom I may otherwise work, provide services, and/or offer to work and/or provide services; with whom I may collaborate and/or offer to collaborate in performing and/or offering my services and/or in researching, creating, editing, performing, and/or offering my content, other creative work, and/or other creative endeavors; and/or as I may reasonably elect and/or be requested or directed to do as part of and/or in connection with such services, content, creative endeavor(s), collaboration(s), and/or work (and/or the offer thereof); and/or:
    • Individuals and/or entities who help me promote, monetize, sell, and/or otherwise offer for commercial advantage my content, writing/editing/writing consulting services, and/or other creative endeavors; and/or:
    • The public, through the publication, performance, broadcast, exhibition, other dissemination, and/or public discussion of my content and/or other creative endeavors, content I write and/or edit for others, and/or content and/or other creative endeavors on which I consult and/or otherwise collaborate (and/or public discussion of the process of researching, creating, and/or editing such content and/or creative endeavors); my sharing, discussing, and/or otherwise disseminating information that otherwise is or was already publicly available (e.g., in news reports, published works, and/or public records); my disposal of my personal property (e.g., lending, donating, or selling my copies of books, magazines, and/or other published works); and/or, as applicable, my publication of your comments, any images and/or other media you submit to me for publication and/or for use in or with work(s) intended for publication and/or other public dissemination, and/or your other communications with me.

    As indicated in the “Disclosure of Personally Identifying Information” section above, I may also share, release, and/or otherwise disclose personal information:

    • If that information otherwise is or was already publicly available (which is also noted in the list above, but bears repeating for emphasis — I strenuously reject and regard as unconstitutional any attempt to use the CCPA, its associated regulations, and/or similar privacy laws to restrict or limit my right to share, discuss, and/or otherwise disseminate publicly available information, whether or not that information is offered through official government sources); and/or:
    • If the information is contained in and/or otherwise incorporated into artwork, a copy of a published work, a useful article, or some other object (including, without limitation, information inscribed or imprinted upon and/or affixed or otherwise attached to such work, copy, article, or object, particularly where that information cannot reasonably be removed without damage and/or defacement); and/or:
    • To appropriately credit someone for the use of their images, other media, fonts, themes/plugins, and/or other content or intellectual property, particularly where such credit is required by the applicable license terms; and/or:
    • As I deem reasonable and appropriate (and to the extent permitted by applicable law/regulations) to enable me to make informed hiring, employment, and/or other business decisions regarding current and/or prospective employees, independent contractors, interns, business partners, business proposals, and/or business ventures; and/or:
    • If I am required by law to do so (which would typically be pursuant to a subpoena, search warrant, or other court order or administrative order; in connection with tax returns or other legally required filings, reports, registrations, or disclosures; and/or in connection with an audit, civil or criminal trial, or other official investigation or proceeding, but could also be in other circumstances that I cannot reasonably anticipate; I may also disclose certain information if I deem it reasonably necessary to ensure my compliance with applicable law or regulation, even if the specific disclosure is not expressly required, such as (without limitation) if I need to contact a tax agency to determine the correct sales/use tax rate for a particular address); and/or:
    • If I am contractually obligated to do so pursuant to my agreement(s) with my business partner(s), client(s), licensor(s), licensee(s), vendor(s), and/or service provider(s) (as applicable), such as (without limitation) in connection with a dispute, an investigation, an audit, and/or arbitration; and/or:
    • If I believe in good faith that such disclosure is reasonably necessary to protect property, rights, security, and/or safety, and/or to forward copyright or other intellectual property rights claims pertaining to material provided to me by a third party to that third party (since such claims may implicate their rights); and/or:
    • If the person(s) to whom the information pertains (and/or, where applicable, their respective heirs, successors, and/or assigns) have asked or authorized me to do so, either directly or through their respective agent(s) or other authorized representative(s); and/or:
    • If the information is de-identified, anonymized, redacted, and/or aggregated such that it could not reasonably be used to identify specific person(s) (other than me, if I am somehow included in that information and elect not to de-identify, anonymize, redact, and/or aggregate my own information); and/or:
    • As part of a business transfer (e.g., if I sell or transfer control of this website; enter bankruptcy; or pass my assets to my heirs, successors, and/or assigns through my death or incapacity).

    Additionally, as also noted in the “Disclosure of Personally Identifying Information” section above, if I have roommates, houseguests, other cohabitants, and/or visitors, they may, from time to time, become incidentally aware of certain personal information pertaining to this website and/or my business operations, in ways that are hard to avoid with any activity conducted at home.

    For what I hope are obvious reasons, it is not feasible for me to enumerate every possible entity or even category of entities to whom I might disclose personal information in the above contexts, but any such disclosures could also involve any or all of the categories of personal information I collect through and/or in connection with this website and/or in the course of my business.

    Much if not all of the personal information I collect or access may be processed by one or more third parties. For example (but without limitation):

    • For obvious reasons, it is impossible for me to call, text, email, or mail any individual or household without disclosing a certain amount of the recipient’s personal information to third parties. For example, making a phone call or sending a text message requires communicating the recipient’s telephone number to the applicable telephone companies and/or mobile carriers.
    • My web host, DreamHost®, owns the web servers on which this website runs as well as the mail servers for my associated email addresses. Therefore, DreamHost has full administrative access to most files, messages, and data processed by or stored on those servers. This is in addition to any information I deliberately share with DreamHost for purposes such as troubleshooting or security. (DreamHost is a registered trademark of DreamHost, LLC.)
    • If in the course of my business I access any website or online resource that is not encrypted, any data I access on that site or resource is visible to my Internet service provider and potentially also other third parties. Even if a website or online resource IS encrypted, my Internet service provider and other third parties (such as my DNS (domain name system) resolver service and/or the website or resource’s certificate authority and embedded content providers) can generally see that I have connected to that site or resource, as can that site/resource’s certificate authority and embedded content providers, if any. If I use a proxy server or VPN, the VPN or proxy server can also see my connections and any unencrypted data I access.
    • Most files and data on my systems and devices are routinely scanned by one or more malware detection and/or other security tools, some of which may incorporate cloud-based scanning or analysis features, as explained in the “Security Scans” section of this Privacy Policy. (As noted in that section, some security-related data may be processed and/or stored by GoDaddy Media Temple, Inc. d/b/a Sucuri, a subsidiary of GoDaddy Operating Company, LLC (Sucuri) through my use of certain features of the Sucuri Security plugin. Sucuri, Sucuri Security, Sucuri Security Inc., and Sucuri Inc. are trademarks of Sucuri Inc. and may be registered in certain jurisdictions. GoDaddy is a registered trademark of GoDaddy Operating Company, LLC.)
    • Most payments I receive are processed by my bank(s) and/or other financial institution(s) and the applicable payment processor(s), if any. Those payments and related tax documents must also be disclosed to several different tax agencies, and may be discussed with my tax preparer(s) and/or other financial and/or legal professionals for administrative and/or compliance purposes.
    • Some information about my activities and/or data accessed on my systems and devices may be captured by the telemetry and/or other surveillance features of the software, apps, services, and devices I use, as explained in the “Information Captured by Service/Software/App/Device Telemetry” section of this Privacy Policy.

    Any or all of the above would likely be considered sharing information for business purposes by the CCPA definitions.

    Actions like the following could also be deemed sharing information “for business purposes” if I do so in some business-related context:

    • Looking up someone’s name in a search engine, library catalog, or other database.
    • Entering someone’s address into a mapping or navigation service to look up driving directions, or meeting with someone face-to-face while my phone’s geolocation services are turned on.
    • Using an automated translation service to translate text containing any names and/or other types of personal information.
    • Printing a document containing names and/or other types of personal information using a commercial print service or a printer controlled by a third party (e.g., printing a copy of a news article I read at the public library).
    • Performing a WHOIS lookup on an IP address, or allowing my firewalls and/or other security applications, software, and/or services to perform such lookups.
    • Storing or transmitting any electronic file containing personal information using any cloud storage service or other online storage system.

    (These are just a few examples, not an exhaustive list.)

    As noted in the “Disclosure of Personally Identifying Information” section above, the CCPA apparently does NOT regard transfers of personal information as part of the sale or transfer of a business (that is, where the information is among the assets of the business being sold or transferred) to be “sales” for purposes of the law. However, it remains unclear how the CCPA and/or its associated regulations will regard sales and/or other commercial distribution or disposal of artwork, copies of published works (e.g., books, magazines, newspapers, CDs, DVDs), useful article(s), and/or other object(s) that contain and/or otherwise incorporate personal information (as most published works do!). I regard as both absurd and terrifying the idea that the CCPA could effectively prohibit me from selling, lending, donating, or otherwise disposing of personal property such as my copies of published books, magazines, newspapers, CDs, and/or DVDs (which I may do from time to time). My assumption is that California’s attorney general and courts will choose not to interpret the law in such a broad and ridiculous way — which would have far-reaching, frightening implications for free speech — but to my knowledge, there has not yet been any official guidance on this point.

    Furthermore, because I am a professional writer/editor and writing consultant and much (though not all) of the information I collect in connection with that work is intended for publication (and/or public performance, exhibition, and/or broadcast, as applicable), a variety of activities I routinely undertake in connection with my work could potentially be deemed “commercial” as defined by the CCPA, even if my actual content is deemed “noncommercial speech.” (For writers, photographers, and other creative professionals, the distinction between “commercial” activity and engaging in “noncommercial speech” as an integral part of one’s business is a complicated, muddy legal question mark.) Some representative examples could include:

    • Licensing, selling, and/or otherwise offering my content or writing/editing/writing consulting services for money or other valuable consideration (potentially including publishing content on this website, which may be supported by advertising, and which I may use to advertise and/or otherwise promote my work and/or professional services) if that content or those services incorporate or involve any names and/or other types of personal information about individuals or households.
    • Advertising, promoting, and/or marketing my content, or published works incorporating my content, if that content contains any names and/or other types of personal information, and/or if such information is referenced in the promotion or marketing.
    • Proposing or pitching any article, book, and/or other content containing names and/or other types of personal information to editors, literary agents, and/or publishers.
    • Presenting and/or discussing examples of my content and/or my past or current writing/editing/writing consulting services in the course of proposing, pitching, and/or otherwise offering in a professional capacity and/or for commercial advantage my content and/or professional services (e.g., submitting some of my content as writing samples and/or describing some of my previous work as part of my application or pitch for a job or freelance assignment), if such examples incorporate or involve any personal information.
    • Sharing, exchanging, or discussing with clients, coauthors, and/or collaborators any personal information pertaining to articles, books, and/or other content I am creating and/or editing (and/or on which I am consulting) in a professional capacity.
    • Arranging for people featured and/or quoted in my content to receive complimentary copies of my published work or be notified of its publication or commercial availability.

    Even if disclosures like these are NOT deemed to be “for commercial purposes” (or “sales”) by the CCPA definitions, they are certainly for business purposes, whether the CCPA would define them as such or not. (In certain cases, such disclosures might reasonably be regarded as part of my acting as a business service provider for someone else, particularly where the personal information involved is supplied mainly by the client rather than by me (e.g., in a manuscript I’ve been hired to edit). However, under the CCPA, being a “service provider” requires a written agreement that directs the service provider to collect and/or process personal information on the client or customer’s behalf for certain specific business purposes while restricting the service provider’s further use of that information; it’s possible to provide professional services, even to other businesses, without necessarily being considered a “service provider” as the CCPA and its associated regulations define that term.)

    From time to time, I may also facilitate other types of commercial transactions, whether directly or indirectly, such as:

    • By putting into contact (with their mutual consent) parties who have expressed interest in some transaction with one another. For example, if a visitor asks about licensing a photo or other content I have used that is owned by someone else, I might ask the applicable rights holder if they’re comfortable with my putting them in touch with the interested party.
    • By recommending that a professional contact or acquaintance be hired for a job, assignment, or commission, or chosen as a vendor or service provider.
    • By endorsing (explicitly or by implication) some author, artist, service provider, or vendor, and/or their products and/or services.

    By the CCPA definitions, disclosing any personal information in such circumstances might be deemed sharing information “for commercial purposes” whether or not any transaction is actually completed, whether or not I am a party to that transaction, and whether or not I receive any compensation or other valuable consideration in connection with it.

    As noted in “Advertising” above, I do not allow my advertisers (if any) to use scripts, cookies, web beacons, or other such technologies to collect information about you through the publicly visible/publicly accessible portions of this website. (Advertisements that appear on portions of the site’s administrative dashboard, which is not normally accessible to visitors other than site administrators, may sometimes include embedded content and/or other information-gathering mechanisms.) However, if you click on advertising links or otherwise patronize my advertisers’ businesses, they may gather and use information about you — potentially for various commercial purposes — as described in their respective privacy policies, cookie policies, and/or terms of service/terms of use, which is outside of my control. Such advertisers may also be able to tell that you clicked on an ad on this website. This could conceivably be deemed to constitute sharing information “for commercial purposes” as the CCPA defines it, even if I do not directly provide any information about you to those advertisers (and even though I obviously can’t control whether or not you click on an ad link).

    Additionally, some of my embedded content providers (described in the “Embedded Content” section above) and/or other vendors and/or service providers might use information collected about my visitors (and/or otherwise obtained from me) for commercial purposes. For example (but without limitation), if you watched a video I shared via an embedded YouTube video player, the embedded video player probably collected information about you that the CCPA would consider personal information (e.g., your IP address, device identifiers and/or other identifiers, information collected through cookies and/or similar technologies, commercial information (e.g., what web browser you use), information about your Internet activity, and/or geolocation data) and may have used that information for what the CCPA would probably regard as commercial purposes (e.g., showing you personalized advertising). Although I typically have no control over such use (other than completely discontinuing the use of embedded content or third-party services), and, unless otherwise expressly indicated, I receive no compensation or other valuable consideration for using and/or sharing such content and/or services (other than being able to use and/or access the applicable content and/or the applicable service(s)), this too could be deemed sharing information “for commercial purposes” as defined by the CCPA. (YouTube is owned by Google LLC. Google, YouTube, and other related marks and logos are trademarks of Google LLC.)

    Put simply, by the law’s extremely broad definitions, any or all of the categories of personal information I collect through and/or in connection with this website and/or in the course of my business could be deemed to be shared for business and/or commercial purposes, whether or not I “sell” personal information in the way most people understand that term.

    You can learn more about the circumstances under which I may share, release, and/or otherwise disclose personal information I collect through and/or in connection with this website in the “Disclosure of Personally Identifying Information” section above.

    If you have general questions about my data-sharing practices (i.e., questions about my typical practices rather than about the personal information of any specific individual or household), feel free to contact me via any of the methods described in “Controller/Responsible Party, Questions, and How to Reach Me” below. If you are a California resident and would like to exercise your rights under the CCPA, such as the Right to Know (a.k.a. the right to access), the Right to Delete your personal information, and/or the Right to Opt-Out of the sale of your personal information, you (or your authorized agent) should visit the Do Not Sell My Personal Information page.

    CCPA Request Metrics (Record-Keeping Disclosures)

    Under Section 999.317(g) of the CCPA regulations, businesses that buy, receive for the business’s commercial purposes, sell, or share for commercial purposes the personal information of 10,000,000 or more consumers in a calendar year must timely disclose in their privacy policy the following metrics for the previous calendar year:

    • The number of requests to know that the business received, complied with in whole or in part, and denied;
    • The number of requests to delete that the business received, complied with in whole or in part, and denied;
    • The number of requests to opt-out that the business received, complied with in whole or in part, and denied; and
    • The median or mean number of days within which the business substantively responded to requests to know, requests to delete, and requests to opt-out.

    Although the total number of consumers whose personal information I collect (much less purchase and/or “sell” as the CCPA defines those terms) in a calendar year doesn’t even APPROACH 10,000,000 by any remotely reasonable interpretation of the CCPA definitions, I make the following voluntary disclosures, which, for the avoidance of doubt, include all requests I received, whether through this website, through my Ate Up With Motor website, through my 6200 Productions professional writing website, or by any other means. (Ate Up With Motor is a trademark of Aaron Severson dba Ate Up With Motor. 6200 Productions is a trademark of Aaron Severson dba 6200 Productions.)

    Section 999.317(h) of the regulations draws (and requires businesses to draw in making these disclosures) a distinction between requests received from consumers (which I presume means California consumers as defined by the CCPA) and requests received from all individuals. For the avoidance of doubt, the following disclosures present the total number of requests I received from all individuals during each specified period. (These disclosures DO NOT include request forms I submitted for internal testing and/or troubleshooting purposes that were not actual requests!)

    CCPA Request Metrics for the 2020 Calendar Year
    Type Requests Received Complied With (In Whole or in Part) Denied Mean Response Time Median Response Time
    Requests to know 1 (one) 1 (one) 0 (zero) 17.0 days 17.0 days
    Requests to delete 8 (eight)* 6 (six) 2 (two) 8.5 days 3.5 days
    Requests to opt-out 8 (eight)* 8 (eight) 0 (zero) 1.0 days 1.0 days

    * Totals include several duplicate deletion requests and opt-out requests.

    Record-Keeping Disclosure Methodology

    The CCPA regulations leave some ambiguity about what should be considered the date of “substantive response” to requests that require identity verification, a process which may take some time to complete and may require additional action on the part of the requestor. For purposes of these disclosures, my calculations reflect the date I either complied with (in whole or in part) or denied a given request.

    For 2020, if I initially denied a request because I was unable to verify the requestor’s identity to the degree of certainty the regulations require, but subsequently verified the requestor’s identity to a degree of certainty sufficient to enable me to comply with the request (whether I did so or not), the disclosures reflect the final decision — and the final decision date — rather than the initial denial. I may revise this methodology for subsequent years depending on my subsequent experience.

    Under California law, an opt-out request must remain in force until the consumer opts-in, so I respond to duplicate or repeated opt-out requests from a requestor who has already opted-out by affirming that the requestor’s original opt-out remains in effect. I treated all such duplicated or repeated opt-out requests as “complied with” for purposes of these disclosures.

    Where I substantively responded to a request on the same day it was received, I treated the response time as 1.0 days for purposes of calculating the mean and median response times.

    If you have any questions about these disclosures, feel free to contact me via any of the methods described in “Controller/Responsible Party, Questions, and How to Reach Me” below.

    Controller/Responsible Party, Questions, and How to Reach Me

    The controller (or “responsible party,” for jurisdictions that use that term) for processing personal information related to this website is Aaron Severson, 11100 National Bl. #3, Los Angeles, CA 90064. If you have questions about this policy or my use of personal information, or if you would like to contact me regarding any of the rights described in “Your Rights (GDPR and Other National or State Privacy Laws)” or “Nevada Consumer Opt-Out Rights” above (and/or any other privacy rights you may have under applicable national and/or state law), you can reach me via postal mail at that address or by sending an email to admin (at) aaronseverson (dot) com.

    If you are a California resident and would like to exercise your rights under the California Consumer Privacy Act of 2018 (CCPA), such as the Right to Know (a.k.a. the right to access), the Right to Delete your personal information, and/or the Right to Opt-Out of the sale of your personal information, you (or your authorized agent) can submit a request via any of the methods specified on the Do Not Sell My Personal Information page.

    Privacy Policy Changes

    I may change this Privacy Policy from time to time, at my sole discretion. Your continued use of this website after any changes to this Privacy Policy will constitute your acceptance of such changes, the effective date of which is shown near the top of this page. If the policy has changed since your last visit to this website, the website may prompt you to review and accept the changes.

    Recent Revisions

    Here is a list of recent changes to this Privacy Policy, in reverse order by date:

    • September 16, 2021: In Disclosure of Personally Identifying Information, updated the reference to The Khronos Group to clarify that their software, software development kits, and/or software components may be installed in conjunction with and/or incorporated into various software and/or devices (not just display drivers, although that appears to be the most common application). Also made some minor adjustments to the stylization of the name and adjusted the anchor text for the privacy link accordingly.
    • September 14, 2021: In Definitions, updated the definition of “Embedded content” for greater clarity and internal consistency (e.g., changing “resides on” to “is hosted on”). In Embedded Content, updated the first paragraph to change “web host” to “web host and/or its subprocessors” [this was initially “its affiliates,” but “its subprocessors” better expresses the intent] and change “If you access a portion of this website that contains embedded content, the embedded content provider can collect information about you” to “If you access a portion of this website that contains embedded content, your browser requests that content from the respective content provider(s), which enables those embedded content provider(s) to collect information about you.” Updated the second paragraph (about information embedded content providers typically gather) to emphasize that embedded content providers can almost always determine which specific embedded content you requested and/or accessed. Made various clarifications and corrections throughout the listed bullet points. Added a bullet point regarding Creative Commons images and/or other content (e.g., the logos, buttons, and/or icons associated with Creative Commons licenses and/or public domain dedications). Tinkered further with these changes after initial publication. In Disclosure of Personally Identifying Information, updated the reference to The Document Foundation to adjust the trademark information. Made a minor correction to the September 13, 2021 entry in this recent revisions list.
    • September 13, 2021: In Other Information I Receive from Third-Party Sources, updated the Creative Commons trademark notice. In Disclosure of Personally Identifying Information, added a trademark notice for WebAIM. Updated the trademark information for the GNU mark and for the Wikimedia Foundation projects mentioned in that section. (I tinkered further with these changes after initial publication.)
    • September 12, 2021: In Disclosure of Personally Identifying Information, further adjusted the trademark information for Avast, Piriform (CCleaner), Spybot, and The Spamhaus Project. Also adjusted the attributes of the Avast privacy policy link. Added trademark notices for Crashlytics and GNU. Added “video stores and/or video rental services” to the examples under “Providers of other search engines and/or other research and/or reference tools, services, facilities, and/or resources”.
    • September 11, 2021: Adjusted the anchor text for certain privacy policy links throughout this page, for greater clarity and in an attempt to instill some stylistic consistency. In Security Scans, changed “A representative sampling of the providers of these tools and security measures is included among the examples of third-party service providers listed under “Disclosure of Personally Identifying Information” below” to “A representative sampling of providers of such tools and security measures is included among the examples of third-party vendors and/or service providers that appear in the “Disclosure of Personally Identifying Information” section below” and changed “this is not an exhaustive list” to “those examples should not be regarded as an exhaustive list.” In Embedded Content, changed “such as ad blockers” to “(e.g., ad blocker extensions)” for clarity. In Information I Receive from Third Parties for Security Purposes, removed the list of specific examples of information sources (in the interests of space and limiting repetition), replacing it with a reference to the examples of third-party vendors and/or service providers in Disclosure of Personally Identifying Information. In Disclosure of Personally Identifying Information, added a trademark notice for phpMyAdmin. Updated the Google bullet point to add Widevine technology to the listed examples of Google products and/or services. Updated the Akamai Technologies trademark notice. Revised the reference to Spybot software to update the trademark information (since the entity that owns the trademarks is different in the U.S. than in the EU). Removed the privacy policy link for Toshiba Corporation (each of their corporate affiliates has its own and there doesn’t seem to be a central hub to find which one applies in a given situation), instead adding a link to their central corporate site. Updated the references to my Internet service provider and mobile carrier(s) to add the parenthetical phrase “(in addition to any information I may share with them for security, support, and/or troubleshooting purposes)” to the end of each. Also updated the T-Mobile disclaimer language. Revised the reference to The Spamhaus Group to note that the Spamhaus trademark is registered in the EU (it doesn’t currently appear to be in the U.S.). Amended the reference to Simple DNSCrypt to fix the stylization of DNSCrypt-Proxy and add a trademark notice. Revised the reference to Epic Privacy Browser to update the trademark notice. Added Cisco Systems (whose OpenH264 Video Codec many web browsers use for encoding and decoding certain types of audiovisual content) to the listed examples. Updated the reference to Opena11y Toolkit and tota11y to add information about the “A11Y” trademark (which is owned by the Bureau of Internet Accessibility, Inc.). Amended the reference to the Adblock Plus extension to update the trademark information and make a minor wording clarification. Added a trademark notice for Mp3tag. Added “online publishing services and/or platforms” to the examples under “Providers of other search engines and/or other research and/or reference tools, services, facilities, and/or resources” and changed “other services or platforms for sharing images and/or other media” to “other services and/or platforms for sharing images and/or other media”. Also fixed a technical error (misspelled link attribute) in an external link in that section. Tinkered with some of these changes after initial publication. Updated the Cookie Notice to change “same Definitions” to “same definitions” and adjust the anchor text for certain external links for clarity and stylistic consistency.
    • September 10, 2021: Further adjusted various Google trademark notices to fix some inconsistencies and editorial errors. In Security Scans, Information I Receive from Third Parties for Security Purposes, and Disclosure of Personally Identifying Information, amended the references to iThemes Security, mostly to update the trademark notices, add a privacy policy link to the reference in Information I Receive from Third Parties for Security Purposes, and adjust the privacy policy link anchor text in the other two sections. In Disclosure of Personally Identifying Information, updated the Facebook trademark notice and the trademark notice for Lulu.com. Made some minor amendments to the September 9, 2021 entry on this recent revisions list to clarify the changes made on that date.
    • September 9, 2021: As a global change, updated all of the various Google trademark notices throughout this page, the Your California Privacy Rights page, and the Cookie Notice. In Certificate Authority Checks, moved the certificate authority trademark notices to after the second paragraph rather than after the first paragraph. In Embedded Content, further updated the bullet point on the FeedBurner services to note that the feeds record your activity (e.g., what feeds you’ve viewed) and may contain targeted advertising, the presence of which is controlled by the respective publishers of the blogs accessed through such feeds; added a link to the Google “Advertising” page; and made some minor wording adjustments for clarity and consistency. Also updated certain other trademark notices. In Contact Forms, revised the first paragraph to read “This section applies to messages you send me through any contact or feedback forms I may offer on the aaronseverson.com website, including, but not limited to, California Privacy Request Forms submitted through the Do Not Sell My Personal Information page.” Also adjusted the anchor text for the link to the Do Not Sell My Personal Information page for internal consistency. In Information I Receive from Third Parties for Security Purposes, changed “the Google Play Protect feature of …” to “the Google Play Protect security services of the Google Play Store and the Android platform …” and added a link to an information page about those services. In Disclosure of Personally Identifying Information, updated the references to Cloudflare services to make some adjustments to the trademark information. Removed some extra spaces on this page and throughout the Cookie Notice.
    • September 8, 2021: In Website Server, Error, and Security Logs and Security Scans, added language indicating that logs and/or security scans may sometimes collect device identifiers. Also in Website Server, Error, and Security Logs, changed “the login credentials for certain …” to “the login credentials for …” Also in Security Scans, removed the examples of device security providers and replaced them with a reference to the examples of third-party vendors and/or service providers in Disclosure of Personally Identifying Information. In Embedded Content, made many clarifications and wording adjustments throughout (most of them relatively minor), with some further tinkering after initial publication. In Other Inquiries, Messages, and Support Requests, updated the paragraph about third-party services to make some wording clarifications and add references to the Google Terms of Service as well as their privacy policy. In the Customer Service Information subsection of the Financial Transactions Policy, added additional links to Google policies pertaining to the Google Voice service. In Information I Receive from Third Parties for Security Purposes, added “various public officials and/or public agencies” just before “and/or other sources not specified above.” In Additional Information About Data Retention, added a bullet point about other activity history on third-party sites and/or services. In Disclosure of Personally Identifying Information, clarified that Flickr is now owned and operated by Flickr, Inc., which is in turn owned by SmugMug, Inc., and adjusted the trademark notice.
    • September 7, 2021: In Definitions, updated the “User agent information” definition to remove the reference to a third-party organization. In Website Server, Error, and Security Logs; Security Scans; Disclosure of Personally Identifying Information; and the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice (on this page and the Your California Privacy Rights page), adjusted the anchor text for the links to the homepage of the Sucuri website. In Security Scans, Information I Receive from Third Parties for Security Purposes, and Disclosure of Personally Identifying Information, simplified most of the various trademark notices for BlackBerry Limited to limit the disclaimer of affiliation to the primary reference to that company that appears in the examples of third-party vendors and/or service providers in the latter section. (It seemed excessive to repeat the disclaimer over and over.) In Security Scans; Other Inquiries, Messages, and Support Requests; and Information I Receive from Third Parties for Security Purposes, condensed the references to the Google Voice service in the interests of space and linked the name to the Google “How Google Voice works” page. In Other Inquiries, Messages, and Support Requests, also added the phrase “in addition to this Privacy Policy” after the Google policy links. Also added the “How Google Voice works” link to the reference in Disclosure of Personally Identifying Information. In Embedded Content, updated the Cloudflare bullet point to make some minor editorial adjustments. Updated the Font Awesome bullet point to change “the service” to “this service”; change “accesses or downloads” to “accesses and/or downloads”; and add information about the Cloudflare CDN, which Font Awesome may use to provide its CDN service. In Comments and Contact Forms, changed “such as the trade names of …” to “such as the names of …” In Financial Transactions Policy, renamed the “Checks and Money Orders” subsection to “Acceptable Payment Types” and added language about types of transactions for which I do and do not accept payment via PayPal services. Moved that section so that it precedes rather than follows the “Currency” subsection. In the Customer Service subsection of the Financial Transactions Policy, made some wording and punctuation adjustments to the language about Google Voice, condensing some of it (in part by linking the first instance of the name to the “How Google Voice works” page), and adding a disclaimer of affiliation to the trademark notice. In Information I Receive from Third Parties for Security Purposes, updated the EFF trademark notice to reorder the listed marks so that the full name of the organization comes first. In Disclosure of Personally Identifying Information, updated the Google and Microsoft bullet points and the reference to Adobe to add disclaimers of affiliation after the respective trademark notices. (Since those references mention “software, apps, tools, and services I may use and/or offer,” additional disclaimers seemed appropriate.) Adjusted the anchor text for the links to the respective downloads pages of The GIMP Website and the FileZilla Project for stylistic consistency. Updated the references to the DuckDuckGo and Startpage.com search engines to also mention their associated browser extensions. Much tinkering with all of the above after initial publication.
    • September 6, 2021: In Embedded Content, updated the Yoast SEO bullet point to add links to the Algolia and Semrush cookie policies, adjust the anchor text for some of the links, and update certain trademark notices. Also changed “To learn more about what user information such third-party websites or services collect …” to “To learn more about what personal information such third-party websites or services may collect …” In Data Related to Recruitment/Hiring/Employment or Business Partnerships, changed “may come directly from the applicable individual(s) or entity and/or from third-party sources …” to “may come directly from the applicable individual(s) or entity — with whom I may of course communicate via email, phone, and/or various other means as I deem appropriate in the particular circumstances — and/or from third-party sources …” In the Information Sharing subsection of the Financial Transactions Policy, updated the paragraph beginning “By making a payment or contribution, you also grant …” to change “to contact you via email and/or postal mail to acknowledge, complete, and/or address questions or issues related to your transaction(s) with me, and, if you call or text me regarding your transaction, to respond to your calls and/or texts via the same means …” to “to communicate with you regarding your transaction via email and/or postal mail (e.g., to acknowledge, complete, and/or address questions and/or issues related to your transaction), and/or, if you call or text me regarding your transaction and/or ask me to call or text you, to communicate with you regarding your transaction by phone and/or via text message …” Also cleaned up some redundant formatting in that paragraph. In Additional Information About Data Retention, changed “but some of my current devices and apps no longer provide that functionality, at least not in the same global manner” to “but not all the devices and apps I currently use provide that functionality, at least not in the same global manner”. In Disclosure of Personally Identifying Information, updated some attribution and trademark notices in the examples of third-party vendors and/or service providers; updated the Microsoft bullet point to make some minor wording adjustments and add a reference to BitLocker encryption and data protection features; updated the reference to Gpg4win to make some minor clarifications and rearrange the trademark notices in a more logical order; updated the reference to Tracker Software Products to adjust the privacy policy link and add references to the ABBYY FineReader Engine that powers the PDF software’s optical character recognition plugin; added “press and/or public relations representatives” to the examples of third-party vendors and/or service providers under the “Providers of other search engines and/or other research and/or reference tools, services, facilities, and/or resources” bullet point; and changed “photo-sharing services, other services or platforms for sharing images and/or other media …” to “photo-sharing services, stock photo services, other services or platforms for sharing images and/or other media …” for completeness. Updated the bullet point beginning “If the person(s) to whom the information pertains …” to change “respective assigns, heirs, and/or successors” to “respective heirs, successors, and/or assigns” for wording consistency. Made the same change in the equivalent bullet point in the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added a bullet point to the examples of “Professional or employment-related information”: “Work schedule(s), location(s), and/or assignment(s)”. Tinkered a bit with these additions after initial publication.
    • September 4, 2021: Updated the September 3, 2021 entry in this recent revisions list to make a number of clarifications and corrections about the changes made on that date. Also made some minor changes to this page’s metadata. In Definitions, updated the “Administrative dashboard/backend” definition to change “authorized administrators” to “authorized administrative users” for internal consistency. In Disclosure of Personally Identifying Information, changed “other informational and/or instructional resources related to web development and/or web security, including (without limitation) tutorials, guides, recommendations, warnings, suggestions, examples, and/or discussion …” to “other sources of informational and/or instructional resources related to web development, online security, and/or the various aspects of operating and/or maintaining online systems, including (without limitation) providers of tutorials, guides, wikis, help files, online documentation, knowledge bases, technical consulting services, articles, and/or white papers offering recommendations, warnings, suggestions, examples, and/or discussion …” for completeness and change “and/or related software …” to “and/or other software …” Changed “online forums, message boards, discussion groups, chat rooms, mailing lists, wikis, and/or similar venues for investigating, troubleshooting, resolving, and/or preventing technical problems and/or suspicious and/or malicious activity, and/or otherwise discussing and/or researching …” to “online forums, message boards, discussion groups, chat rooms, mailing lists, technical consulting services, wikis, help files, online documentation, knowledge bases, and/or other online venues and/or resources for investigating, troubleshooting, resolving, and/or preventing technical problems and/or suspicious and/or malicious activity, and/or otherwise discussing and/or researching …” Changed “websites, wikis, blogs, …” to “websites, wikis, help files, online documentation, knowledge bases, blogs, …”
    • September 3, 2021: As a global change throughout this page, updated the links to the DreamHost Privacy Policy to remove the “title” attribute. Also adjusted the anchor text for certain of those links. In Cookies and Similar Technologies, changed “The use of cookies and/or similar technologies by third-party sites and/or services is subject to the applicable site or service’s privacy policy and/or cookie policy …” to “The use of cookies and/or similar technologies by third-party sites and/or services is subject to those sites and/or services’ respective privacy policies, cookie policies, and/or terms of service/terms of use …” Made the same change to the similar sentence that appears in the second paragraph of the Cookie Notice. In Certificate Authority Checks, updated the link to the Let’s Encrypt “How It Works” page to adjust the anchor text and put the title in quotation marks. In Security Scans, updated the paragraph on the Sucuri Security plugin to add links to the Sucuri Cookie Policy, the Cloudflare Data Processing Addendum, the Cloudflare Cookie Policy, and the WordPress.org Cookie Policy. Also added the latter link to the subsequent paragraph on the iThemes Security plugin. Updated the paragraph about other device security measures to change “whose products and services” to “whose products and/or services”; add a link to the Google “Technologies” pages, which provide additional information about how Google uses cookies and/or other technologies that may collect and/or process personal information; and change “similar features” to “comparable security measures”. In Embedded Content, updated the bullet points pertaining to Google services to change the phrase “processing of data” to “processing of personal data” and add a link to the Google “Technologies” pages, which provide additional information about how Google uses cookies and/or other technologies that may collect and/or process personal information. Updated the bullet point about BootstrapCDN to note that the jsDelivr service currently says it does not use cookies, but does use various third-party service providers, who may have access to data the service collects and/or processes. Updated the bullet point about the jQuery CDN and jQuery API services to note that those services’ cookie policy links appear to point to the cookie policy of a different organization and it’s not clear whether or not this is intentional. Also added a link to the StackPath Data Processing Amendment; fixed the links to the StackPath GDPR page and California Privacy Rights page, which were incorrectly configured; and adjusted the anchor text for those links. Updated the bullet point about the Cloudflare CDN to revise the anchor text for the the link to the Cloudflare GDPR page and add links to the Cloudflare Data Processing Addendum and the Cloudflare Cookie Policy. Updated the bullet point about the Font Awesome CDNs to note that they don’t appear to have a cookie policy. Updated the bullet point about PayPal buttons to clarify that the Statement on Cookies and Tracking Technologies is linked from within the applicable PayPal Privacy Statement (it doesn’t appear to be listed in the main legal hub) and put “Legal Agreements for PayPal Services” in quotation marks. Made the same changes to the applicable section of the Cookie Notice. Also updated that section to add a link to the Akamai “Privacy and Policies” page in addition to the existing Privacy Trust Center link, also changing “processes personal data” to “may collect, process, and/or use personal data”. Updated the bullet point on embedded YouTube video players to note that embedded video players may collect device identifiers, clarify some wording, replace the link to the Google cookies page with a link to their “Technologies” pages (which include the cookie page as well as other potentially relevant information), and add links to the Google “Advertising” pages. Also updated the trademark notice. Made most of the same changes to the “YouTube Videos” section of the Cookie Notice and made a number of other minor clarifications to that section. Updated the bullet point about Vimeo videos to change the word “Visit …” to “See …”; add information about the Vimeo Cookie Policy; and note that the “Vimeo Videos” section of the Cookie Notice includes additional information about certain Vimeo analytics and/or advertising providers (although that shouldn’t be regarded as an exhaustive list). Also revised the “Vimeo Videos” section of the Cookie Notice to add some additional privacy links pertaining to Vimeo service providers, mention that the Vimeo Cookie Policy provides information on how people with Vimeo accounts can control the use of third-party advertising and/or analytics services in connection with embedded video players, and make some wording adjustments. Updated the bullet point about the Gravatar API to add a link to the Automattic Cookie Policy. Updated the bullet point about the Sucuri Security plugin to add links to the Sucuri Cookie Policy, the Cloudflare Data Processing Addendum, and the Cloudflare Cookie Policy. Updated the bullet point about the WordPress.org websites to change “for more information on …” to “for more information about …” change “please review …” to “see …”; and add a link to their Cookie Policy. Removed some extra spaces throughout that section. In Other Inquiries, Messages, and Support Requests and the Customer Service Information subsection of the Financial Transactions Policy, added a link to the “How Google Voice Works” page. In the Transaction-Related Information Gathering subsection of the Financial Transactions Policy, updated the paragraph beginning “Transactions made via PayPal® services …” to change the word “made” to “conducted”; change “policies and/or requirements” to “policies, terms, and/or conditions”; and replace the existing policy links to the PayPal legal agreements hub (as there may be different agreements and policies depending on the parties’ respective locations), again noting that the Statement on Cookies and Tracking Technologies is linked from within the applicable PayPal Privacy Statement. In Information I Receive from Third Parties for Security Purposes and Disclosure of Personally Identifying Information, updated the references to Spybot – Search & Destroy software to change “the Spybot – Search & Destroy® suite and/or its associated software and/or services” to “Spybot – Search & Destroy® security software and/or its associated apps, tools, and/or services”. In Disclosure of Personally Identifying Information, updated the Google bullet point to add a clearer link to the Google Privacy Policy and a link to their “Technologies” pages. Updated the reference to Adobe Inc. to change the privacy policy to a link to the Adobe Privacy Center (which includes the Adobe Privacy Policy and other related policies, e.g., their “Cookies” page). Updated the reference to the Sucuri Security plugin to add a link to the Sucuri Cookie Policy. Updated the reference to Cloudflare Resolver for Firefox to change the anchor text to the privacy link (it’s not exactly a privacy policy so much as a discussion of the unique privacy practices that apply to that service). In Your Rights (GDPR and Other National or State Privacy Laws), changed “for a list of European data protection authorities, see the European Data Protection Board Members page” to “for a current list of European national data protection authorities, see the “Our Members” page of the European Data Protection Board website,” adjusting the anchor text of the hyperlink accordingly. Did the usual tinkering with these changes after initial publication.
    • September 2, 2021: In the preamble, changed “the respective privacy policies and terms of use/terms of service, if any, of those sites or services” to “those sites or services’ respective privacy policies, cookie policies, and/or terms of service/terms of use”. In Embedded Content, changed “is collected and processed by the applicable embedded content provider, not by me, and is subject to the provider’s terms of service/terms of use and privacy policy, which are …” to “is collected and processed by the applicable embedded content providers, not by me, and is subject to such providers’ respective privacy policies, cookie policies, and/or terms of service/terms of use, which in most cases are …”; changed “please visit the applicable site and review their privacy policy and associated terms and conditions” to “you should review those sites or services’ respective privacy policies, cookie policies, and/or terms of service/terms”; and changed “See the applicable website or service’s privacy policy for more information” to “See those websites or services’ respective privacy policies, cookie policies, and/or terms of service/terms of use for more information.” In Ads, changed “their respective privacy policies” to “their respective privacy policies, cookie policies, and/or terms of service/terms of use”. Also changed “our advertisers’ individual privacy policies” to “our advertisers’ respective privacy policies” for consistency. In Other Inquiries, Messages, and Support Requests, changed “messages exchanged via a third-party site or service are subject to the terms of service/terms of use and privacy policy of the applicable service” to “messages exchanged via third-party sites or services are subject to those sites or services’ respective privacy policies, cookie policies, and/or terms of service/terms of use” and changed “any third-party websites or services you use to contact me …” to “any third-party websites or services you may use to contact me …” In Data Related to Recruitment/Hiring/Employment or Business Partnerships, changed “may be subject to the individual policies of the applicable third parties, which in many cases is …” to “is subject to the respective policies of such third parties, and in many cases is …” In the Data Retention subsection of the Financial Transactions Policy; Transaction-Related Information I Receive from Third Parties; Other Information I Receive from Third-Party Sources; and Additional Information About Data Retention, changed “is subject to the individual policies of the applicable third parties, and in most cases is outside …” to “is subject to the respective policies of such third parties, and in many cases is outside …” In Disclosure of Personally Identifying Information, fixed a stray use of “we” rather than “I” and changed “in their respective privacy policies” to “in their respective privacy policies, cookie policies, and/or terms of service/terms of use”. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “The collection, use, and/or retention of personal information by third-party services are subject to the applicable service’s privacy policy and terms of use/terms of service, and are outside” to “The collection, use, and/or retention of personal information by third-party services is subject to such services’ respective privacy policies, cookie policies, and/or terms of service/terms of use …” In the Information Shared for Business or Commercial Purposes subsection, changed “in their respective privacy policies” to “in their respective privacy policies, cookie policies, and/or terms of service/terms of use” for consistency. Fixed the August 20, 2021 entry in this recent revisions list to correct a stray use of “us” rather than “me.”
    • September 1, 2021: In Credits and License for This Policy and the similar license information on the Cookie Notice and the Older Privacy Policy Revisions page, made some minor wording adjustments to the references to the Automattic Privacy Policy and the trademark notice. Updated references to Automattic in Embedded Content and Disclosure of Personally Identifying Information to make similar adjustments. Updated the trademark notices for WordPress throughout this page and the Cookie Notice (to specify that “WordPress is a registered trademark of the WordPress Foundation in the United States and other countries). In Embedded Content, revised the bullet point on the jQuery CDN and jQuery API to correct some company name and trademark information. Revised the bullet point on the Yoast SEO plugin to clarify a number of points, fix some stylization, and update the trademark information. Revised the Twitter bullet point to clarify some wording and add additional links with information about what data the Twitter services may collect through Twitter content integrated into other websites. In Disclosure of Personally Identifying Information, added following the reference to developers of WordPress plugins, themes, and/or add-ons “other informational and/or instructional resources related to web development and/or web security, including (without limitation) tutorials, guides, recommendations, warnings, suggestions, examples, and/or discussion of how to use, manage, maintain, develop, customize, troubleshoot, and/or secure the WordPress content management system; its various plugins, themes, and/or add-ons; and/or related software, apps, tools, services, and/or code (WordPress is a registered trademark of the WordPress Foundation in the United States and other countries)” and updated the subsequent reference to PayPal services to change “may process certain payments I make or receive” to “may process certain payments I make or receive in connection with this website”. Updated the reference to the GNU Image Manipulation Program to change “the open source …” to “The GIMP Team, which maintains the open source …”; change “which doesn’t …” to “aka GIMP, which doesn’t … change “from their downloads page” to “from the downloads page of The GIMP Website”; and change “and plugins for it, such as …” to “The GIMP Help Team, which maintains the GIMP documentation; and/or the developers and/or maintainers of the software’s various associated plugins, scripts, brushes, filters, and/or other add-ons, such as …” (set off with a semicolon). Made a minor wording adjustment to the reference to Realtek Semiconductor Corp. Changed “other retailers, vendors, marketplaces, auction services, distributors, and/or providers” to “other retailers, vendors, merchants, resellers, marketplaces, auction services, distributors, and/or providers”. Changed “wholesalers/resellers” to “wholesalers; resellers”. Changed “marketplaces, auction services, resellers, consignment sellers …” to “marketplaces, auction services, merchants, resellers, consignment sellers …” Updated the about convention centers, conference centers, and other such venues to change “for purposes of attending …” to “for purposes of and/or in the course of attending …” for completeness. Did the usual tinkering with these changes after initial publication.
    • August 31, 2021: In Security Scans, changed “Microsoft® software, apps, tools, and/or services to “software, apps, tools, and/or services offered by Microsoft”. In Comments, updated the paragraph about gathering additional information about commenters to change “additional personal information about you” to “additional information about you” and add a sentence: “In many cases, such additional information comes from publicly available sources, but I may sometimes also seek additional nonpublic information about you, which may from a variety of sources, depending on the specific context and circumstances.” Made the same changes to the similar paragraphs in Comment Forms and Other Inquiries, Messages, and Support Requests. In Data in Submitted Images, updated the paragraph beginning “I typically also gather additional information …” to change “Such information may come from a variety of sources depending …” to “Such information may come from a variety of publicly available and/or nonpublic sources depending …” In the Transaction-Related Information Gathering subsection of the Financial Transactions Policy, updated the paragraph beginning “In some cases, I may seek additional information …” to add a final sentence: “Such additional information may come from a variety of publicly available and/or nonpublic sources depending on the specific context and circumstances.” In Information I Receive from Third Parties for Security Purposes, changed “the Microsoft® Windows® operating system and/or its associated software and/or services” to “the Microsoft® Windows® operating system and/or other software, apps, tools, and/or services offered by Microsoft”. In Other Information I Receive from Third-Party Sources, changed “may vary considerably depending on the context and circumstances” to “may vary considerably depending on the specific context and circumstances.” In Disclosure of Personally Identifying Information, updated the bullet point regarding Microsoft to adjust some trademark information and change “and/or other Microsoft products and/or services mentioned and/or described elsewhere in this Privacy Policy” to “and/or the other software, apps, tools, and/or services offered by Microsoft that are mentioned and/or described elsewhere in this Privacy Policy”.
    • August 30, 2021: In Security Scans, updated the paragraph on the Sucuri Security plugin to add “a blocklist-checking feature that warns if this website has been flagged for malicious activity by search engines and/or Internet security services (an obvious sign that a site may have been hacked and/or infected with malware)” to the list of the plugin’s features and added the sentence “Communications with any other third-party services are subject to the respective privacy policies of those services.” In Embedded Content, updated the Vimeo trademark notice. Made the same change to the Vimeo Videos section of the Cookie Notice, also updating the reference to and trademark notice for the Optimizely platform mentioned there, adding a link to additional information about the functions of the cookies and/or similar technologies that platform may use, and making a minor clarification to the reference to the Vimeo Cookie Policy. In Disclosure of Personally Identifying Information, updated the examples of third-party vendors and/or service providers to change “LibreOffice® office productivity suite” to “LibreOffice® office productivity suite and/or its associated repository of extensions, themes, and other add-ons”; add “speakers and/or sound systems” to the examples in the “Manufacturers of other electronic devices” bullet point; rearrange the order of some of those examples; change “refrigerator, air conditioner, dehumidifier” to “refrigerator, air conditioner, dehumidifier, vacuum cleaner(s)”; change “proprietary software, if any” to “proprietary software and/or apps, if any”; and remove the references to Sansui Electric. (I do still have an elderly Sansui analog television, but the company that manufactured it went out of business in 2014, and the present owners of that brand and trademark have no substantive connection with my ancient, non-Internet-capable TV.)
    • August 29, 2021: In the preamble, updated the second paragraph to change “of those sites or services” to “of those sites or services, which may apply in addition to or instead of this policy and/or the Terms of Use of this website.” Linked the phrase “Terms of Use” to that page. In Security Scans, further updated the reference to the Google Voice service to more clearly present the link to the Google Telephony Services Privacy Disclosure. In Other Inquiries, Messages, and Support Requests, updated the paragraph beginning “Keep in mind that messages exchanged via a third-party site or service …” to add the phrase “and which may apply in addition to or, in some cases, instead of this Privacy Policy and the Terms of Use of this website” to the end of the first sentence and add a new second sentence: “For example, if you send me a commercial inquiry related to this website via a third-party messaging service, this Privacy Policy will govern how I use and/or retain that inquiry and the information it contains, but the applicable messaging service’s policies will govern how that service uses and/or retains information from and/or related to that communication.” In Disclosure of Personally Identifying Information, further updated the reference to the Google Voice service to change “whose use may be subject to the Google Telephony Services Privacy Disclosure as well as the Google Privacy Policy linked above” to “which is subject to the Google Privacy Policy and, where applicable, the Google Telephony Services Privacy Disclosure” for wording consistency.
    • August 28, 2021: In Legal Bases for Collecting and Using Information and Your Rights (GDPR and Other National or State Privacy Laws), changed “(aka the “GDPR” or “EU GDPR”)” to “(GDPR, now sometimes called the EU GDPR to distinguish it from the similarly named regulations of other regions)” for clarity and stylistic consistency. In Security Scans; Other Inquiries, Messages, and Support Requests; the Customer Service Information subsection of the Financial Transactions Policy; Information I Receive from Third Parties for Security Purposes; Additional Information About Data Retention; and Disclosure of Personally Identifying Information, further updated the references to the Google Voice service, mostly to fix the links to the current Google Telephony Services Privacy Disclosure, which hadn’t been set up correctly, and further adjust the trademark notices. In the Customer Service Information subsection of the Financial Transactions Policy, also changed “may be forwarded to me via email” to “may be transmitted via email.” Added Google Workspace productivity and collaboration tools to the examples of Google services in Disclosure of Personally Identifying Information (since those tools are referenced in the aforementioned privacy disclosure). Also in Disclosure of Personally Identifying Information, amended the reference to the Artifex SmartOffice app to adjust the anchor text for one of the hyperlinks. In Additional California Privacy Rights (CCPA), made a further minor wording adjustments to the list of CCPA rights: Changed “the right to request deletion of personal information about you that I have collected or maintain in the course of my business …” to “the right to request deletion of personal information about you that I have collected in the course of my business …” (for greater internal consistency with this policy and my related documents — obviously, these nitpicking wording changes don’t alter anyone’s legal rights!) Updated the section of the Cookie Notice on PayPal cookies to fix some text that had inadvertently become garbled in a recent revision and make minor wording adjustments to the reference to the Akamai Privacy Trust Center.
    • August 27, 2021: Throughout this page and the Cookie Notice, updated (and in some cases relocated) various trademark notices pertaining to Google services, also making some minor wording adjustments to the adjacent references to those services. In Embedded Content, updated the YouTube bullet point to change “is now owned by Google” to “is owned by Google LLC” and remove a redundant link to their privacy policy. Also updated the YouTube Videos section of the Cookie Notice to change “is owned by Google” to “is owned by Google LLC” for consistency. In Security Scans; Other Inquiries, Messages, and Support Requests; the Customer Service Information subsection of the Financial Transactions Policy; Information I Receive from Third Parties for Security Purposes; Additional Information About Data Retention; and Disclosure of Personally Identifying Information, revised the references to the Google Voice service (and, in Other Inquiries, Messages, and Support Requests, also to the Gmail email service) to fix some stylization, clarify some wording, and update the link to the additional privacy disclosure for the Google Voice service (as that disclosure has been renamed). Also in Disclosure of Personally Identifying Information, made some further wording adjustments and clarifications to the references to the Blogger, LiveJournal, and Twitter services. Added a trademark notice for the LiveJournal service and clarified that the service doesn’t appear to have a privacy policy. Later in the list of examples of third-party vendors and/or service providers, updated the reference to Audacity audio editing and recording software to make some clarifications and correct the name of the privacy notice (which has recently changed). In Additional California Privacy Rights (CCPA), made several minor wording adjustments to the list of CCPA rights: Changed “The categories of business and/or commercial purposes for which I collected and used the information …” to “The categories of business and/or commercial purposes for collecting and using that information …” and changed “the right to request the deletion of personal information I have collected about you in the course of my business …” to “the right to request deletion of personal information about you that I have collected or maintain in the course of my business …”
    • August 26, 2021: In Certificate Authority Checks and Disclosure of Personally Identifying Information, made a minor adjustment to the trademark notices for this website’s certificate authority. Also in Certificate Authority Checks, changed “These encryption certificates …” to “These certificates …” (which is more technically correct); adjusted some punctuation; and changed “The Let’s Encrypt CA service may log and use such data for operational, troubleshooting, and security purposes and/or in compiling de-indentified, aggregated statistics, as described …” to “The Let’s Encrypt CA service may log and use such data as described …” In the Information Sharing subsection of the Financial Transactions Policy and Disclosure of Personally Identifying Information, changed various instances of the phrase “perform services” to “provide services” for internal consistency. In Data Related to Recruitment/Hiring/Employment or Business Partnerships, changed “perform specific tasks or functions” to “perform specific tasks and/or functions” and changed “performs background checks” to “conducts background checks”. In Other Information I Receive from Third-Party Sources, changed “the services they perform …” to “the services they provide …” In Disclosure of Personally Identifying Information, changed “and/or the open source VeraCrypt disk encryption tool …” to “the open source VeraCrypt disk encryption tool …” and added to the end of that bullet point “and/or online forums, message boards, discussion groups, chat rooms, mailing lists, wikis, and/or similar venues for investigating, troubleshooting, resolving, and/or preventing technical problems and/or suspicious and/or malicious activity, and/or otherwise discussing matters pertaining to the operation, function, and/or security of my system(s), device(s), and/or data.” Updated the reference to tota11y to change “developed by Khan Academy®” to “created by Khan Academy® developers” and change “in a website” to “in online content”. Updated the list of examples of third-party vendors and/or service providers to add “organizations, services, and/or resources (public and/or private) that publish, catalog, offer, and/or otherwise make available public records and/or public information of whatever type(s)” to the bullet point on “Providers of other search engines and/or other research and/or reference tools, services, facilities, and/or resources …” and add “wikis” to the list of examples in that section beginning with “other online information and/or reference services …” Also changed “repair, maintenance, installation, and/or technical service providers” to “repair, maintenance, installation, and/or technical service providers and/or resources”. Completed the relocation of the reference to the Microsoft Bing search engine(s) begun on August 25, 2021 (as noted below). Removed an extra space.
    • August 25, 2021: Added Ate Up With Motor and 6200 Productions trademark notices to the preamble; Online Tracking; Embedded Content; the Financial Transactions Policy; Other Information I Receive from Third-Party Sources; Disclosure of Personally Identifying Information; the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice; the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice; and the CCPA Request Metrics (Record-Keeping Disclosures) subsection of the CCPA Information Collection and Sharing Notice, also making some punctuation adjustments to the adjacent text. Added “email header information*” to the “Categories of information gathered” bullet points of Website Server, Error, and Security Logs; Security Scans; Consents and Agreements; Data in Submitted Images; Information I Receive from Third Parties for Security Purposes; and Other Information I Receive from Third-Party Sources. In Definitions, updated the definition “Administrative dashboard/backend” to change “The content management system WordPress …” to “The WordPress content management system …” In Security Scans, changed several instances of “associated with WordPress.org” to “associated with the WordPress.org websites” and changed “the WordPress Privacy Policy” to “the WordPress.org Privacy Policy”. In Embedded Content, changed “The Gravatar service — like WordPress.com, with which it’s now apparently being integrated — is a venture of Automattic Inc. and is subject to their Privacy Policy and the same Terms of Service as WordPress.com” to “The Gravatar service — like the WordPress.com services, with which it’s now apparently being integrated — is a venture of Automattic Inc. and is subject to the Automattic Privacy Policy and the WordPress.com Terms of Service.” Also changed various instances in that section of “WordPress.org” to “the WordPress.org websites” (changing the verb tenses and/or articles of the surrounding text accordingly); changed “WordPress-related information” to “information related to the WordPress content management system”; and changed “the WordPress Privacy Policy” to “the WordPress.org Privacy Policy” for clarity. In Contact Forms, changed “(e.g., the WordPress support forums)” to “(e.g., the WordPress.org support forums)”. In Information I Receive from Third Parties for Security Purposes, changed “the support forums on WordPress.org” to “the WordPress.org support forums”. In Disclosure of Personally Identifying Information, updated the bullet point on employees, independent contractors, interns, agents, and/or business partners to set off the phrase “if any” with commas rather than putting it in parentheses, mostly for stylistic consistency. Also made various minor updates to the examples of social media services to clarify some wording, tidy up the punctuation, and update certain privacy policy links. Later in that section, changed the words “WordPress.org” and “the WordPress.org website” to “the WordPress.org websites” for consistency (also changing “its” to “their” for grammatical reasons); updated the title attribute of the link to the WordPress.org Privacy Policy; changed “aforementioned WordPress forums” to “aforementioned WordPress.org forums”; and updated the reference to the Notepad++ editor to make some minor wording changes, correct the name of one of the included plugins, and add trademark information for that plugin. Updated the references to the Epic Privacy Browser search functions to condense and clarify the wording, fix the stylization of the search engines mentioned, and rearrange and update the applicable trademark notices. Also updated the references to search engines in the “Providers of other search engines …” bullet point to make some wording adjustments (mostly for greater consistency), present the respective privacy policy links in a more coherent way, add the Yandex Search search engine(s) to the listed examples, and move the reference to the Microsoft Bing search engine(s) to the earlier bullet point on Microsoft services. Also changed “cleaning and/or janitorial services” to “cleaning, janitorial, and/or laundry services”. In the Collection Sources subsection of the CCPA Information Collection and Sharing Notice, changed “employees, independent contractors, interns, agents, and/or business partners (as applicable)” to “employees, independent contractors, interns, agents, and/or business partners, if any (and as applicable)” for consistency. In the Information Shared for Business or Commercial Purposes subsection, changed “… to editors, agents, and/or publishers” to “… to editors, literary agents, and/or publishers” for clarity. [Inevitably tinkered with these additions after initial publication.] Corrected the August 23, 2021 entry in this recent revisions list to change “which we are not” to “which I am not” (which is what the applicable now-deleted text had actually said).
    • August 23, 2021: In Embedded Content, updated the Font Awesome bullet point to change “Font Awesome may use the data their services collect for service optimization, troubleshooting, and security purposes; to compile usage statistics; to calculate fees for users of their paid accounts (which I am not); and/or as otherwise described in their …” to “To learn more about how data the Font Awesome content delivery networks collect may be used, see the Font Awesome …” In Disclosure of Personally Identifying Information, changed several instances of the phrase “as described in their …” to “as described in the …” and adding the applicable entity’s name. Updated the reference to Rosewill, Inc. to change “and/or its subsidiaries and/or affiliates” to “and/or its parent company, affiliates, and/or subsidiaries”. Updated the reference to the Artifex SmartOffice Privacy Policy to change “Artifex Software, Inc.” to “Artifex Software Inc.” (as the company appears to no longer use the comma); change “as described in their App Privacy Policy” to “as described in the SmartOffice Privacy Policy” (the policy carries both titles, but the latter seems most appropriately descriptive in this context); and add “and/or the Artifex.com Privacy Policy, as applicable” (also adding a link to the latter policy).
    • August 21, 2021: As a global change, changed the category “special: device identifiers for mobile devices*” to “special: device identifiers*”. In Website Server, Error, and Security Logs, added “special: device identifiers*” to the “Categories of information gathered” bullet point. In Security Scans, added “special: device identifiers*” to the “Categories of information gathered” bullet point and reordered several of the items for internal consistency. In Embedded Content, removed “special: the presence of other cookies*” and “special: login status for certain other websites/services (determined based on cookies)*” from the “Categories of information gathered” bullet point (since these are probably reasonably encompassed by “special: information collected via cookies and/or similar technologies*” and are explained in the text of that section) and added “domain names” and “errors and suspicious activity*” to the categories. In Consents and Agreements, added “domain names*” and “special: other identifiers*” to the “Categories of information gathered” bullet point. Changed “are usually maintained” to “are usually retained” (which is what that was supposed to say). Added a paragraph about the duration of consents stored in cookies. In Comments, added “domain names*”; “special: device identifiers*”; “special: other identifiers*” to the “Categories of information gathered” bullet point. In Contact Forms, added “domain names*”; “special: device identifiers*”; “special: information collected via cookies and/or similar technologies*”; and “special: other identifiers*” to the “Categories of information gathered” bullet point. In Other Inquiries, Messages, and Support Requests, added “domain names*”; “special: device identifiers*”; “special: usernames, user ID numbers, and/or other identifiers associated with administrative users*”; and “special: other identifiers*” to the “Categories of information gathered” bullet point and changed “special: identifiers and/or other information provided by and/or specific to third-party services (as applicable)*” to “special: identifiers and/or other information specific to third-party services (as applicable)*”. In Data in Submitted Images, added “IP addresses*”; domain names*”; user agent information*”; “special: device identifiers*”; “metadata”; and “special: other identifiers*” to the “Categories of information gathered” bullet point; changed “special: identifiers and/or other information provided by and/or specific to third-party services (as applicable)*” to “special: identifiers and/or other information specific to third-party services (as applicable)*”; and changed “special: other visible and/or audible identifiers and/or potentially personally identifying information (such as (without limitation) a pictured car’s license plate and/or vehicle identification numbers)*” to “special: other visible and/or audible information that may be personally identifying and/or potentially personally identifying (e.g., a pictured car’s license plate and/or vehicle identification numbers)*”. In Data Related to Recruitment/Hiring/Employment or Business Partnerships, added “domain names*”; “special: device identifiers*”; “special: usernames, user ID numbers, and/or other identifiers associated with administrative users*”; and “special: other identifiers*” to the “Categories of information gathered” bullet point and changed “special: identifiers and/or other information provided by and/or specific to third-party services (as applicable)*” to “special: identifiers and/or other information specific to third-party services (as applicable)*”. In Financial Transactions Policy, added “domain names*”; “special: mobile phone types/models (determined from user agent information)*”; “special: device identifiers*”; “special: information collected via cookies and/or similar technologies*”; and “special: other identifiers*” to the “Categories of information gathered” bullet point and changed “special: identifiers and/or other information provided by and/or specific to third-party services (as applicable)*” to “special: identifiers and/or other information specific to third-party services (as applicable)*”. In the Transaction-Related Information Gathering subsection, changed “If payment for a transaction is completed via PayPal services …” to “If a transaction is completed via PayPal services …” In Transaction-Related Information I Receive from Third Parties, added “IP addresses*”; “domain names*”; “user agent information*”; “special: mobile phone types/models (determined from user agent information)*”; “special: device identifiers*”; “special: information collected via cookies and/or similar technologies*”; and “special: other identifiers*” to the “Categories of information gathered” bullet point and changed “special: identifiers and/or other information provided by and/or specific to third-party services (as applicable)*” to “special: identifiers and/or other information specific to third-party services (as applicable)*”. In Information I Receive from Third Parties for Security Purposes, added “special: mobile phone types/models (determined from user agent information)*”; “special: device identifiers*”; “special: information collected via cookies and/or similar technologies*”; “special: usernames, user ID numbers, and/or other identifiers associated with administrative users*”; “special: other identifiers*”; and “special: identifiers and/or other information specific to third-party services (as applicable)*” to the “Categories of information gathered” bullet point. In Other Information I Receive from Third-Party Sources, added “IP addresses*”; “domain names*”; “user agent information*”; “special: mobile phone types/models (determined from user agent information)*”; “special: device identifiers*”; “metadata*”; “special: information collected via cookies and/or similar technologies*”; “special: usernames, user ID numbers, and/or other identifiers associated with administrative users*”; and “special: other identifiers*” to the “Categories of information gathered” bullet point; changed “other contact information*” to “other contact information (e.g., phone numbers, postal mailing addresses, and/or other street addresses)*”; and changed “special: identifiers and/or other information provided by and/or specific to third-party services (as applicable)*” to “special: identifiers and/or other information specific to third-party services (as applicable)*”. In Disclosure of Personally Identifying Information, updated the references to and trademark notices for the manufacturers of my wireless routers. Updated the reference to services of Cloudflare, Inc. to make some minor wording and punctuation changes. Updated the reference to Mozilla browsers to adjust the trademark information. Made minor wording adjustments to the references to the hCaptcha service and the Abine Blur browser extension.
    • August 20, 2021: In Embedded Content, added “special: device identifiers for mobile devices*” and “special: other identifiers*” to the “Categories of information gathered” bullet point. Updated the second paragraph of the section (beginning “At a minimum …” to also mention those additions. Updated the paragraph beginning “Embedded content providers may use various third-party service providers …” to change “to end users like me” to “to me” (since some embedded content providers define “end users” to mean visitors to a website that uses their services, rather than the operators of that site) and change “is entirely outside …” to “in most cases is entirely outside …” Fixed a typographical error in the anchor text to links to the “How Google Uses Information from Sites or Apps That Use Our Services” page. Updated the bullet points on Google APIs and YouTube embedded video players to change “the “How Google Uses Information from Sites or Apps That Use Our Services” section of the Google Privacy Policy” to “the “How Google Uses Information from Sites or Apps That Use Our Services” page and the Google Privacy Policy” (since these are now separate documents). In the former bullet point, changed “The API may also store …” to “The Google Fonts API may also store …” revised the reference to the Google Fonts FAQ to change “For more information, visit …” to “To learn more about how it works (including how long stored information may remain in your browser), see …” and updated the link. Changed “The Google Hosted Libraries API may use cookies and/or similar technologies to track and/or identify you and/or store potentially personally identifying information on your device in addition to logging certain information such as (without limitation) your IP address and user agent information” to “The Google Hosted Libraries API may use cookies and/or similar technologies and/or store potentially personally identifying information on your device in addition to collecting information such as (without limitation) your IP address and user agent information. Google asserts that the Google Hosted Libraries servers remove referring site information from the request logs (so the logs indicate what resources your browser requested, but not the websites or online services you visited).” Also added language to that bullet point about the Google Controller-Controller Data Protection Terms and related addenda, which apply to the processing of data by Google API services from areas subject to certain region-specific privacy and/or data protection laws. In the YouTube bullet point, also changed “Their “Businesses and Data pages …” to “The “Google Business Data Responsibility” pages …” and added a link to the page about data shared with YouTube content creators. In Information I Receive from Third Parties for Security Purposes, changed “security features, firmware, software, and/or services” to “security features, software, and/or services” for internal consistency (since firmware is obviously a type of software). In Disclosure of Personally Identifying Information, changed various instances of the word “about” (as in the phrase “about the use” or similar phrases) and “related to” to “about and/or related to” to be more broadly applicable. Updated the trademark notice for Blacklight and The Markup. Changed “the WordPress website” to “the WordPress.org website” for clarity. Updated the bullet point on Microsoft to change “Microsoft®, which provides …” to “Microsoft, which provides (directly and/or through its various subsidiaries and/or affiliates) …” Made a variety of minor wording changes to the examples listed in the “providers whose services enable me to operate and/or secure our system(s), device(s), and/or data” bullet point for greater internal consistency and to fix some typos. Changed “TCL Communication Ltd. (a.k.a. TCT), the manufacturer of …” to “TCL Communication Ltd. (a.k.a. TCT) and/or its subsidiaries and/or affiliates, which manufactured …” Added Renesas Electronics Corporation and Toshiba Corporation to the examples listed in that bullet point. In the “Other providers of software, apps, tools, and/or services” bullet point, updated the reference to Cannaverbe Limited to change “in connection with …” to “through and/or in connection with …” and updated the reference the Handbrake video transcoder to rearrange the text slightly and fix a typographical error in the link attributes for the privacy policy link. In the bullet point about “Manufacturers of other electronic devices I may use,” changed “these devices’ proprietary software (if any)” to “these devices’ proprietary software, if any (obviously excepting firmware necessary for a device to function)”. In the “Other types of vendors and/or service providers” bullet point, fixed a typo; changed “Discord” to “the Discord services”; and changed “Signal (a service of Signal Messenger LLC whose …” to “the Signal services (which are offered by Signal Messenger LLC, and whose …” Throughout the list of examples of third-party vendors and/or service providers, similarly added the phrase “and/or its affiliates” or “and/or its subsidiaries and/or affiliates” after the names of certain of the companies listed throughout that section, also making some minor wording changes to certain company names and adjusting some punctuation. Also updated some trademark notices. [I tinkered a lot with these updates after initial publication.] In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point beginning “Information about an individual or household’s involvement in and/or connection with an accident …” (under “Other types of personal information”) to change “an accident, natural disaster(s), and/or other catastrophic event(s)” to “accident(s), natural disaster(s), and/or other catastrophic event(s) or hardship(s)”. In the Collection Sources subsection, updated the bullet point on “Published and/or publicly available sources” to add “news reports” to the parenthetical examples, making it first in that list. Amended the Cookie Notice to update the links to Google privacy information in the YouTube Videos section.
    • August 19, 2021: In Certificate Authority Checks, added a final paragraph noting that the setup, maintenance, and renewal of the site’s DV certificates is administered by my web host, although so far as I’m aware, they don’t have access to the certificate authority’s public repository server logs. In Website Server, Error, and Security Logs, changed “Otherwise, I only disclose website log data as described …” to “I may also share, release, and/or otherwise disclose website log data as otherwise described …” In Security Scans, changed “need technical assistance, consider such disclosure appropriate …” to “need technical assistance and/or consider such disclosure appropriate …” and changed … , and/or as otherwise described …” to “I may also share, release, and/or otherwise disclose information from security scans and/or other security measures as otherwise described …” In Consents and Agreements, changed “disclose saved consent and/or agreement data …” to “share, release, and/or otherwise disclose saved consent and/or agreement data …” and added a parenthetical sentence to the final paragraph: “(Naturally, the ways I use, share, release, and/or otherwise disclose such data may depend on the nature and purpose(s) of the specific consent(s) and/or agreement(s) in question.)” In Comments, changed “Except as otherwise indicated above, I may disclose personal information I receive through and/or in connection with user comments as described …” to “I may also share, release, and/or otherwise disclose personal information I receive through and/or in connection with user comments as otherwise described …” In Contact Forms and Other Inquiries, Messages, and Support Requests, changed “may disclose personal information” to “may share, release, and/or otherwise disclose personal information”. In Other Information You Provide to Me, changed “only disclose such information” to “only share, release, and/or otherwise disclose such information”. In Data Related to Recruitment/Hiring/Employment or Business Partnerships, changed “share or disclose such information” to “share, release, and/or otherwise disclose such information”. In the Information Sharing subsection of the Financial Transactions Policy, changed “and/or as part of and/or in connection with reviews …” to “and/or share, release, and/or otherwise disclose relevant information as part of and/or in connection with reviews …” In Transaction-Related Information I Receive from Third Parties, changed “and/or as part of and/or in connection with reviews …” to “and/or share, release, and/or otherwise disclose relevant information as part of and/or in connection with reviews …” for consistency and changed “may disclose such information as described …” to “may share, release, and/or otherwise disclose such information as indicated above and/or as otherwise described … In Information I Receive from Third Parties for Security Purposes, changed “share or otherwise disclose such information …” and “disclose such information” to “share, release, and/or otherwise disclose such information …” In Other Information I Receive from Third-Party Sources, changed “articles or other content” to “articles and/or other content”. In Reports and Aggregated Statistics, changed “of the website” to “of this website” and added a new final sentence to the first paragraph: “The data contained in such reports and/or statistics will be de-identified, anonymized, redacted, and/or aggregated such that it could not reasonably be used to identify specific person(s) and/or household(s) (other than me, if I am somehow included in that information and elect not to de-identify, anonymize, redact, and/or aggregate my own information).” In the second paragraph, changed “de-identified information and/or statistics” to “aggregated, de-identified information and/or statistics”. Changed the third paragraph to “I may publish such reports and/or aggregated statistics and/or otherwise share them with third parties such as (as applicable, but without limitation) my current and/or prospective advertisers, clients, employers, and/or commercial partners (e.g., with prospective buyers in connection with the possible sale of this website); my employees, independent contractors, interns, agents, and/or business partners, if any; and/or my vendors and/or service providers.” In Disclosure of Personally Identifying Information, updated the bullet point on sales or transfers of control to add “As part of a business transfer” to the beginning (making that boldface and removing the boldface from the existing text) and reworded the rest of the text to make it less cumbersome and more consistent with the equivalent bullet point in the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice. In Nevada Consumer Opt-Out Rights, changed “disclose to service providers …” to “share with service providers …” In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point beginning “As part of a business transfer” to align it with the wording changes to the equivalent bullet point in Disclosure of Personally Identifying Information and separate the parenthetical examples with semicolons rather than commas.
    • August 16, 2021: In Browser Tests, updated the paragraph beginning “The results of such tests …” to add “(again without limitation)” after the phrase “such as” and change “with some site features” to “with certain site features.” In Embedded Content, changed various instances of the words “record,” “records,” and “recording” (in the sense of recording information) to “collect,” “collects,” or “collecting” for internal consistency. Also updated the bullet point on Google Hosted Libraries to change the phrase “which may gather and/or place information in certain comparable ways” to “which may collect information about and/or store potentially personally identifying information on your device in certain comparable ways” for greater clarity and revised references to the Google Privacy Policy in that bullet point and the FeedBurner bullet point to change “what information Google collects and how they use it” to “what information Google services collect and how that information may be used”. Updated the bullet point on BootstrapCDN to adjust the anchor text for the link to the jsDeliver Privacy Policy. Updated the bullet point on the Cloudflare CDN to change “their GDPR page” to “the Cloudflare GDPR page” (adjusting the anchor text of the link accordingly) for clarity and changed “to learn more about how they use the information they collect” to “to learn more about how information collected by Cloudflare services may be used”. Updated the bullet point on Font Awesome to change “the data they collect” to “the data their services collect,” change “and in some cases to calculate …” to “to calculate …” and change “as described in …” to “and/or as otherwise described in …” (set off with a semicolon rather than a comma). Updated the YouTube bullet point to change “what information Google collects and how they use it” to “what information the YouTube platform and other Google services collect and how that information may be used” and change “what data Google may share with YouTube content creators/publishers” to “what data the YouTube platform may share with YouTube content creators/publishers”. Updated the Vimeo bullet point to change “what information Vimeo collects and how they use it” to “what information the Vimeo platform collects and how that information may be used” for consistency. Updated the Twitter bullet point to change “from Twitter” to “from the Twitter social media platform” and change “what information Twitter may collect and how they use it” to “what information Twitter services collect and how that information may be used.” Updated the bullet point on Yoast to change “the Yoast-served content” to “content served by Yoast”; change “any information they collect” to “information they collect”; and change “by Algolia” to “by the Algolia search platform”. In the paragraph following the bullet-pointed list, changed “To learn more about what user information such third-party websites or services may collect and how they use it …” to “To learn more about what user information such third-party websites or services collect and how that information may be used …” for consistency. In Disclosure of Personally Identifying Information, the reference to TCT to change “of that device” to “of that smartphone” and change “the device’s Privacy Policy, which is no longer available online” to “the Privacy Policy presented in the legal information on the smartphone itself, and the latter version is apparently no longer available on the TCT website”; updated the reference to BlackBerry Limited to change several instances of the word “devices” to “smartphones” for consistency; and changed “the older of those smartphones” to “the older of those smartphones (and many of its associated accessories)”. Further revised the Cookie Notice: Updated the YouTube videos category to change “Some cookies Google sets in connection with your Google account and/or advertising served through the YouTube platform …” to “Some of the cookies that may be set in connection with your Google account and/or advertisements served through the YouTube platform …”; change “See the Google …” to “See their …”; change “the functions of their various cookies” to “the functions of the various cookies that may be set by Google services (including, though not limited to, the YouTube platform)”; and changed “how Google uses the information they collect” to “what information the YouTube platform and other Google services collect and how that information may be used”. Updated the Vimeo Videos category to change “For more information about how Vimeo uses the information they collect …” to “To learn more about what information the Vimeo platform collects and how that information may be used …” Also updated the Browser Tests section to change “may be stored in your browser’s local storage” to “may be stored in your browser’s web storage”; add “(again without limitation)” after the phrase “such as”; and change “with some site features” to “with certain site features.”
    • August 15, 2021: In Definitions, made a minor punctuation edit to the definition of “User agent” and updated the definition of “Images and/or other media” to change “audio, visual, or multimedia content” to “audio, visual, audiovisual, and/or multimedia content” for completeness. In Embedded Content, updated the bullet point regarding PayPal to change “For more information on what data PayPal collects and what they do with it, visit their …” to “For more information about what data PayPal services collect and how that data may be used, visit the …” In Financial Transactions Policy, updated the “Categories of information gathered” bullet point to change “Please note that the applicable payment processor(s), bank(s), and/or other financial institution(s) …” to “Please note that payment processor(s), bank(s), other financial institution(s), and/or other applicable third-party service(s) …” Updated the paragraph beginning “Please note that this policy applies only &helllip;” to delete the word “marketplaces”. Also updated the paragraph beginning “If your transaction is pursuant to …” to add language about transactions involving third-party services whose policies may take precedence over the Financial Transactions Policy. In the Transaction-Related Information Gathering subsection, changed “If your transaction is via a third-party payment processing service such as PayPal® …” to “If your transaction is via a third-party payment processing service …” Later in that paragraph, added the parenthetical phrase “(but without limitation)” after “For example …” In the following paragraph, changed “via PayPal®” to “via PayPal® services”; changed “depending on where you are” to “depending on your location” for clarity; changed “PayPal may also …” to “The PayPal services may also …”; and changed various subsequent instances of “PayPal” to “PayPal services” (adjusting surrounding language for grammatical correctness where appropriate). Also changed “If you make a payment to me via PayPal …” to “If payment for a transaction is completed via PayPal services …”; changed “Is receive …” to “I may receive …”; changed “your payment(s)” to “the payment(s)”; changed “any notes or additional instructions you provided” to “any notes or additional instructions that may have been specified”; changed “your payment was” to “the payment(s) were”; changed “your bank account …” to “bank account …”; and changed “do not have access to the credit card or bank information” to “do not have access to any credit card, bank account, or other financial institution account information”. Later in that section, changed “via a third-party service” to “via and/or otherwise involving a third-party service” for consistency. In the Currency subsection, changed “including PayPal” to “including many PayPal services”; changed “via PayPal” to “via PayPal services”; and changed “unless PayPal warns …” to “unless the applicable PayPal service warns …” In the Refunds and Returns subsection, changed various instances of “and/or other financial institution(s)” to “other financial institution(s), and/or other applicable third-party service(s)” for consistency with the new language noted above. In the final paragraph of that subsection, replaced the reference to PayPal services with a generic example. In the Information Sharing subsection, changed “(whether by check or money order, via PayPal, or by any other means)” to “(by whatever means)” and changed “PayPal transaction reports (if applicable)” to “payment processor transaction reports (if applicable). In Transaction-Related Information I Receive from Third Parties, updated the paragraph beginning “If I offer goods, products, services, and/or content through some third-party vendor or service …” to add an additional parenthetical example. In the subsequent sentence beginning “Similarly, such vendors or services …” changed “vendors or services” to vendors and/or services”; added “bidding on an item offered at auction” to the listed examples, set off with a semicolon; and changed “the specific vendor or service involved …” to “the specific vendor(s) and/or service(s) involved …” In the following paragraph, changed “the applicable vendor or service” to “the applicable vendor(s) and/or service(s)” for consistency. In Disclosure of Personally Identifying Information, changed “and/or streaming services or platforms” to “and/or streaming services and/or platforms” for completeness. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point on “Records of financial transactions” (under “Additional categories of personal information”) to change “bank account information” to “bank account and/or other financial institution account information” and change “do NOT collect any bank account or credit card information in connection with PayPal® transactions” to “do NOT receive any credit card, bank account, or other financial institution account information in connection with PayPal® transactions” for internal consistency. In the Information Shared for Business or Commercial Purposes subsection, updated the bullet point beginning “Most payments I receive are processed …” to remove references to PayPal. Updated the references to PayPal services in the Cookie Notice to better reflect the updated language in Embedded Content and the Financial Transaction Policy on this page.
    • August 14, 2021: In Certificate Authority Checks, made some minor wording adjustments to the references to the Let’s Encrypt CA service and added a suggestion that questions about the service’s use and/or retention of log data be directed to the certificate authority via the contact information listed in the Let’s Encrypt Privacy Policy. In Disclosure of Personally Identifying Information, updated the reference to the Let’s Encrypt service accordingly and updated the reference to the Certificate Authority Checks section for stylistic consistency. Also updated the reference to the Guardian Project apps to put that text in a more logical order; change “their Orbot app and Tor Browser apps” to “the Orbot app and/or the Tor Browser for Android app”; adjust the anchor text for the links; and update the trademark notice. Updated the reference to Startpage to also mention their new Private Currency Converter feature, Private Language Translator feature, Private Shopping Feature, and/or other associated features and change the abbreviation “B.V.” to “BV” (both are probably correct stylistic variations, but the company seems to favor the latter).
    • August 13, 2021: Updated the Cookie Notice to make some minor wording changes to the section pertaining to Vimeo videos and fix a couple of typos. In Embedded Content, updated the descriptions of Google Fonts, Google Hosted Libraries, and FeedBurner services and rearranged the trademark notices in the latter bullet point. Also made some minor wording adjustments to the description of the Gravatar service in that section. In Subscribing via Web Feed (Atom and RSS), made a few minor wording changes. (The most substantive was to add the parenthetical phrase “(There are services that provide such information about subscribers, but I don’t currently use any of them in connection with this website.)” at the end of the paragraph beginning “If you “subscribe” in this manner …”) Made a number of minor wording changes to the references to Google services in Other Inquiries, Messages, and Support Requests. In Information I Receive from Third Parties for Security Purposes, made some minor wording adjustments to the references to Google services (including removing a redundant reference to Bitdefender). In Additional Information About Data Retention, made minor wording adjustments to the references to the Google Voice service. In Disclosure of Personally Identifying Information, updated the reference to Blogger service to change “I don’t currently have a Blogspot blog, nor do I actively use the Blogger service, although I could theoretically do so …” to “I don’t currently have a Blogspot blog, although in the past, I had a little-used Ate Up With Motor Blogspot blog, and I could theoretically create another blog …” for greater accuracy; updated the reference to Bitdefender to change several instances of “and” to “and/or”; and updated the references to other Google services to make some wording changes, add some updated information, rearrange the text for more logical progression, and adjust the trademark notices. In the references in that section to Google and Microsoft software, apps, tools, and/or services, changed “too numerous to list here” to “too numerous to fully enumerate here”. In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, updated the YouTube trademark notice for internal consistency. Fixed a minor error in the June 12, 2020 entry in this recent revisions list.
    • August 12, 2021: In Embedded Content, amended the reference to the Google Maps service to change “in similar ways” to “in certain comparable ways”. In Additional Information About Data Retention, revised the recently added language in the first bullet point to add the parenthetical phrase “(again without limitation)” after “generally also retain” for the avoidance of doubt. In Disclosure of Personally Identifying Information, updated the bullet point on Google services to change “described elsewhere in this Privacy Policy” to “mentioned and/or described elsewhere in this Privacy Policy”. Updated the bullet point on Microsoft products and/or services to change “… use and the Microsoft Office suite of software and services” to “use; the Microsoft Office suite of productivity software and services; and/or other Microsoft products and/or services mentioned and/or described elsewhere in this Privacy Policy” for completeness. Updated the reference to Mozilla Corporation to change “web browsers (whether for desktop, mobile, or both) as described in …” to “web browsers (whether for desktop, mobile, or both) and/or browser extensions, themes, and/or other add-ons as described in …” Updated the reference to Opera web browser to change “the Opera web browser and/or its integral VPN/proxy service (for desktop, mobile, or both) …” to “the Opera web browser (for desktop, mobile, or both), its integral VPN/proxy service, and/or associated browser extensions and/or themes …” Also changed “the providers and/or developers of browser add-ons” to “the providers and/or developers of browser extensions, themes, and/or other add-ons”; added aka_StephanAS and damagnat to the listed examples of add-on developers; updated the reference to the Nodetics Cookiebro extension to eliminate the possessive (add the definite article instead); and added Jefferson Scherr’s userChrome.org to the end of that list. Removed some extra spaces.
    • August 11, 2021: In Embedded Content, updated the reference to Akamai Technologies, Inc. to change “and” to “and/or” and update the trademark notice. Updated the Cookie Notice to further adjust the Akamai trademark notice, change “is owned by Akamai” to “is owned by Akamai Technologies,” and change “probably to facilitate …” to “possibly to facilitate …” (I’ve actually never gotten a definitive explanation of the purpose(s) of the 01A1 cookie set by the abmr.net domain.) In Financial Transactions Policy, changed “Please note that the applicable payment processor(s) and/or bank(s)/financial institution(s) …” to “Please note that the applicable payment processor(s), bank(s), and/or other financial institution(s) …” In the Transaction-Related Information Gathering subsection, changed “relevant bank(s) …” to “applicable bank(s) …”; changed “payment processor(s) and/or bank(s)/financial institution(s)” to “payment processor(s), bank(s), and/or other financial institution(s)”; and changed several instances of “bank(s)/financial institution(s)” to “bank(s) and/or other financial institution(s)”. In the Returned Check Fees subsection, changed “my financial institution(s)” to “my bank(s) and/or other financial institution(s)” and changed “bank(s)/financial institution(s)” to “bank(s) and/or other financial institution(s)”. In the Refunds and Returns subsection, changed several instances of the phrase “applicable payment processor(s) and/or bank(s)/financial institution(s)” to “applicable payment processor(s), bank(s), and/or other financial institution(s)”. In the Information Sharing subsection, changed “applicable payment processor(s) and/or bank(s)/financial institution(s)” to “applicable payment processor(s), bank(s), and/or other financial institution(s)” and changed “such payment processor(s) and/or bank(s)/financial institution(s)” to “such payment processor(s), bank(s), and/or other financial institution(s)”. In the Data Retention subsection, changed “bank(s)/financial institution(s)” to “bank(s) and/or other financial institution(s)”. In Transaction-Related Information I Receive from Third Parties, changed “my bank or other financial institution” to “applicable bank(s) and/or other financial institution(s)”. In Information I Receive from Third Parties for Security Purposes, changed “bank(s)/financial institution(s)” to “bank(s) and/or other financial institution(s)”. In Additional Information About Data Retention, added a note to the first bullet point about calendar and/or journal entries and related notes. Also updated the subsequent bullet point to change “and/or bank(s)/financial institution(s)” to “bank(s), and/or other financial institution(s)”. In Disclosure of Personally Identifying Information, updated the reference to HP Inc. to change “printers, scanners, copiers, and/or other devices and/or their associated drivers, software, and/or services” to “printers, scanners, copiers, and/or other devices; their associated ink, toner, and/or other consumable supplies; and/or their associated drivers, software, and/or services”; changed (in the “Other types of vendors and/or service providers” bullet point) “bank(s), financial institution(s), …” to “bank(s), other financial institution(s), …”; and updated the reference to museums, libraries, archives, and/or databases to change “use of their collections, holdings, catalogs, databases, computers, and/or other systems and/or services — some of which may be provided by, powered by, and/or otherwise supported by third parties, some of which may have their own privacy policies — and/or my communications with their librarians, archivists, docents, guides, other staff, workers, and/or volunteers …” to “use of their collections, holdings, exhibits, galleries, catalogs, databases, computers, equipment, and/or other systems and/or services (some of which may be provided by, powered by, and/or otherwise supported by third parties, which may have their own privacy policies); through my attendance at and/or participation in their tours, presentations, classes, programs, and/or events; and/or through my communications with their librarians, archivists, docents, guides, other staff, employees, workers, and/or volunteers …” for completeness. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “full and/or partial card information” (under “Additional categories of personal information …” to “full and/or partial credit card information” for clarity. In the Information Shared for Business or Commercial Purposes subsection, changed “are processed by my bank(s) (or other applicable financial institution(s))” to “are processed by my bank(s) and/or other financial institution(s)” for consistency. Removed a couple of extra spaces throughout.
    • August 10, 2021: In Embedded Content, Financial Transactions Policy, and Disclosure of Personally Identifying Information, updated certain of the PayPal trademark notices. Also updated the PayPal and Akamai trademark notices that appear in the Cookie Notice. In Disclosure of Personally Identifying Information, also updated the bullet point on photos, images, and/or other media to tinker with the new language added to that bullet August 9, 2021, changing “with others and/or otherwise seek to learn more …” to “with others and/or take other steps to find out more …” In the list of examples of third-party vendors and/or service providers, made some minor wording adjustments to the references to the Blogger service (including moving the trademark notice to the end of that reference) and updated the bullet point regarding Google services to revise the reference to Android SDK Platform-Tools to be more consistent with the official description and delete the reference to the Android Debug Bridge (adb) (which is just one of tools included in the SDK Platform-Tools package, albeit the one I’ve used most frequently to date) In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point beginning “Any individual or entity …” to change “communicate, consult, and/or collaborate …” to “communicate and/or consult …” and change “who communicates, consults, and or collaborates …” to “who communicates and/or consults …” In the subsequent bullet point beginning “Editors, publishers, clients, …” changed “with whom I may collaborate and/or offer to collaborate in performing my services and/or work” to “with whom I may collaborate and/or offer to collaborate in performing and/or offering my services and/or in researching, creating, editing, performing, and/or offering my content, other creative work, and/or other creative endeavors” to better align with the equivalent bullet point in Disclosure of Personally Identifying Information. In the bullet point beginning “The public, through …” added the parenthetical phrase “(and/or public discussion of the process of researching, creating, and/or editing such content and/or creative endeavors)” after “…” consult and/or otherwise collaborate” and before the first semicolon.
    • August 9, 2021: In Information I Receive from Third Parties for Security Purposes, changed “help us understand …” to “help me understand …” In Other Information I Receive from Third-Party Sources, changed two instances of the phrase “(and/or on which I consult)” to “(and/or on which I consult and/or otherwise collaborate)”. Also changed “or in connection with my business, and/or to my other creative endeavors (professional or otherwise)” to “or in connection with my business and/or my other creative endeavors (professional or otherwise)” and changed “relevant to that content and/or such creative endeavors” to “relevant to such content and/or creative endeavors”. In the paragraph beginning “Much, though not necessarily all, of the content I create …” also changed “in the course of my business …” to “for this website and/or in the course of my business … In Disclosure of Personally Identifying Information, updated the bullet point beginning “As part of and/or in connection with my content …” to change “my content and/or other creative endeavors — and/or content I write and/or edit (and/or on which I consult) for others” to “my content and/or other creative endeavors; content I write and/or edit for others; and/or content and/or other creative endeavors on which I consult and/or otherwise collaborate” and change “the process of researching, creating, and/or editing such content and/or creative endeavors (and/or consulting on others’ content and/or creative endeavors)” to “the process of researching, creating, and/or editing (and/or consulting and/or otherwise collaborating on) such content and/or creative endeavors”. Updated the bullet point regarding photos, images, and/or other media to add language regarding sharing photos and/or other media and/or information about them with others and/or otherwise seeking to identify and/or learn more about the subjects, settings, and/or circumstances (e.g., to try to identify a visible individual and/or determine who owns a pictured car). In the last sentence of that bullet point (which follows this new insertion), changed “recognized yourself (or your information) …” to “recognized yourself (and/or your information) …” and changed “have published …” to “have published and/or shared …” Updated the bullet point beginning “To editors, publishers …” to change “otherwise work and/or provide services” to “otherwise work, provide services, and/or offer to work and/or provide services”; add “with whom I may collaborate and/or offer to collaborate in performing and/or offering my services and/or in researching, creating, editing, performing, and/or offering my content, other creative work, and/or other creative endeavors” (set off with semicolons); change “elect or be requested or directed …” to “elect and/or be requested or directed …”; change “such services, content, and/or work (and/or the offer thereof)” to “such services, content, creative endeavor(s), collaboration(s), and/or work (and/or the offer thereof)”; and change “such services, content, creative endeavor(s), collaboration(s), and/or work (and/or the offer thereof)” to “otherwise pertains to such services, content, work, creative endeavor(s), and/or collaboration(s) (and/or the offer thereof)”. Updated the reference to Flickr to change “on which I have shared some site-related images related to our content” to “on which I have shared some images related to this website and/or my content” (fixing an obvious typographical mess); updated the reference to Staples to change two instances of “our” to “my”. In the paragraph later in that section beginning “Third, …” changed both instances of “(and/or on which I consult)” to “(and/or on which I consult and/or otherwise collaborate)” for consistency; changed “are a public figure or were involved in some newsworthy event” to “are a public figure and/or were involved in some newsworthy event”; and changed “some other format or medium” to “some other format(s) and/or medium(s)”. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “(and/or on which I consult)” to “(and/or on which I consult and/or otherwise collaborate)” for internal consistency. In the Information Shared for Business or Commercial Purposes subsection, updated the bullet point beginning “Any individual or entity with whom …” to change “researching and developing” to “researching, creating, and/or editing” and change “and/or who communicates and/or consults with me regarding their content, work, and/or creative endeavors” to “and/or who communicates, consults, and or collaborates with me in the course of researching, creating, and/or editing their content, work, and/or creative endeavors”. In the bullet point beginning “Editors, publishers …” changed “otherwise work and/or provide services” to “otherwise work, provide services, and/or offer to work and/or provide services”; added “with whom I may collaborate and/or offer to collaborate in performing my services and/or work” (set off with semicolons); changed “elect or be requested or directed …” to “elect and/or be requested or directed …”; and changed “such services, content, and/or work (and/or the offer thereof)” to “such services, content, creative endeavor(s), collaboration(s), and/or work (and/or the offer thereof)”. In the subsequent bullet point beginning “The public, …” changed “my content and/or other creative endeavors (and/or content I write and/or edit (and/or on which I consult) for others)” to “our content and/or other creative endeavors, content I write and/or edit for others, and/or content and/or other creative endeavors on which I consult and/or otherwise collaborate” for internal consistency. Also updated a reference to Sucuri to change “our use” to “my use”. In the CCPA Request Metrics (Record-Keeping Disclosures) subsection, fixed an inadvertent use of the editorial “we.” (I went through all these changes after initial publication and fixed several such errors.)
    • August 8, 2021: In Website Server, Error, and Security logs, added “Providing services” to the Purpose(s) bullet point. In Security Scans, added “Functionality” and “providing services” to the Purpose(s) bullet point (also updating the capitalization of the existing items accordingly). (Neither of these additions represents any substantive change in how or why I collect and use personal information; upon reviewing the contents of those sections, I decided their purposes would more accurately described if I also listed those categories.) Also in Security Scans, deleted the sentence beginning “Furthermore, tampering with the normal operation of such services or tools …” and replaced it with a new paragraph beginning “Special Note:” to better explain the rationale for listing “fulfilling a contractual obligation” among the possible purposes for that section. In Consents and Agreements, updated the Purpose(s) bullet point to remove one instance of “advertising and other commercial purposes” (which had been inadvertently duplicated; it’s still listed, it just wasn’t supposed to be listed twice!). In Data Related to Recruitment/Hiring/Employment or Business Partnerships, added “advertising and other commercial purposes” to the Purpose(s) bullet point (since some of the business relationships that section is intended to encompass — e.g., joint ventures — might be regarded as commercial endeavors). In Financial Transactions Policy and Transaction-Related Information I Receive from Third Parties, added “Functionality” to the Purpose(s) bullet point (since these sections can pertain to specific site functions) and updated the capitalization of the remaining items in that bullet point. In Information I Receive from Third Parties for Security Purposes, added “Functionality; providing services” to the Purpose(s) bullet point for the same reason I added those purposes to Security Scans above. Also updated the reference to Safer-Networking Ltd. to change “their Spybot® security and privacy software/tools” to “their Spybot® security and privacy software and/or tools, such as (though not necessarily limited to) the Spybot – Search & Destroy® suite and/or its associated software and/or services” for clarity and changed “firewalls and/or other security applications/software/services” to “firewalls and/or other security applications, software, and/or services”. In Disclosure of Personally Identifying Information, updated the reference to Safer-Networking Ltd. to change “whose Spybot® security and privacy software/tools I may use on some or all of my systems and devices” to “whose Spybot® security and privacy software and/or tools (such as, though not necessarily limited to, the Spybot – Search & Destroy® suite and/or its associated software and/or services) I may use on some or all of my systems and devices” and changed “developers of Internet firewall applications/software/services” to “developers of Internet firewall applications, software, and/or services” for consistency; updated the reference to the Guardian Project to revise the punctuation and change “which is subject …” to “which are subject …” for better grammar; updated the reference to Hidden Reflex to add the phrase “(for desktop, mobile, or both)” after “Epic Privacy Browser” and change “and/or other extensions and/or themes, which I may use on some or all of my systems and devices” to “and/or other browser extensions and/or themes”; updated the reference to the Opera web browser to add the phrase “(for desktop, mobile, or both)” after “the Opera web browser and/or its integral VPN/proxy service”; and updated “providers of other web browsers I may use” to add the parenthetical phrase “(whether for desktop, mobile, or both)” for internal consistency. In Embedded Content; Age Verification; Comments; Contact Forms; and Other Inquiries, Messages, and Support Requests; Data in Submitted Images; and Other Information I Receive from Third-Party Sources, updated the Purpose(s) bullet points to fix the capitalization of “providing services” for stylistic consistency. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, revised the first bullet point under “Identifiers” to change “First and/or last names …” to “Real names …” Also updated the bullet point beginning “Unique personal identifiers …” to change “device, identifiers” to “device identifiers” (the comma was a typographical error). In the Information Shared for Business or Commercial Purposes subsection, changed “firewall or other security software” to “firewalls and/or other security applications, software, and/or services” for internal consistency.
    • August 6, 2021: In Categories of Information and Purposes for Collection, updated the “Providing services” bullet point to separate the items with semicolons rather than commas; add “respond to comments, inquiries, and/or other messages” after “perform some action you have asked me to perform”; and change “and/or conduct …” to “and/or otherwise conduct …” (The first addition is mainly for the avoidance of doubt — it would be reasonably encompassed by the existing text, but it seemed clearer to spell it out — and the latter is a wording adjustment.) In the bullet point on “Advertising and other commercial purposes,” changed “promote and/or advertise …” to “promote, pitch, and/or advertise …” for completeness. (None of these wording changes represents any substantive change in how or why I collect and use personal information, just my ongoing effort to appropriately describe it.) In Disclosure of Personally Identifying Information, in the bullet point regarding Google, changed “the Android platform and related Google services, applications, APIs, and infrastructure (such as, though not limited to, the Google Location Service infrastructure)” to “the Android platform and related apps, services, APIs, and infrastructure (e.g., the Google Location Service infrastructure)”. Also updated the reference to Simple DNSCrypt to change “when I browse the web from my …” to “on my …” and updated the reference to the KDE Community (to reposition the registered trademark symbol). In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “Unique personal identifiers, online identifiers, and/or other similar identifiers” to “Unique personal identifiers, device, identifiers, online identifiers, and/or other similar identifiers” for completeness. In the Information Shared for Business or Commercial Purposes subsection, changed both instances of the phrase “compensation or consideration” to “compensation or other valuable consideration” for consistency. Also in that section, changed “and/or other service providers” to “and/or other vendors and/or service providers” for internal consistency; changed “(e.g., your IP address, your geographical location (estimated from your IP address), information about your Internet activity, device identifiers and/or online identifiers, and information related to cookies and/or similar technologies)” to “(e.g., your IP address, device identifiers and/or other identifiers, information collected through cookies and/or similar technologies, commercial information (e.g., what web browser you use), information about your Internet activity, and/or geolocation data)”; and changed “for using and/or sharing such content and/or services” to “for using and/or sharing such content and/or services (other than being able to use and/or access the applicable content and/or the applicable service(s))” to better illustrate the intended point.
    • August 5, 2021: In Embedded Content, updated the bullet point on PayPal to change “It may also use …” to “That content may also use …” for clarity and made some minor wording adjustments to the bullet points on YouTube and Vimeo. Also updated the Cookie Notice to make similar wording changes to the sections on the YouTube and Vimeo services, remove some potentially confusing outdated information, and remove an extra space. In Disclosure of Personally Identifying Information, adjusted the list of examples of third-party vendors and/or service providers to change “the Firebase platform” (in the bullet point regarding Google services) to “the Firebase platform mentioned elsewhere in this policy”; update the reference to Seagate to change “hard drive(s)” to “hard drive(s) and/or other memory storage device(s)”; and update the reference to Western Digital to change “hard drives and memory storage devices” to “hard drive(s) and/or other memory storage device(s)” for consistency and update the trademark notice. Also in Disclosure of Personally Identifying Information, changed “no control over how YouTube uses information they collect &helllip;” to “no control over how video hosting platforms use the information they may collect …” and changed “how companies such as search engines or social media services use data they gather through the use of their services” to “how companies such as search engines or social media services use data they may gather through their services.” In Advertising, changed “… as described in their respective privacy policies (and may be able to tell that you came from this website), which is outside of my control” to “… as described in their respective privacy policies, which is outside of my control. Such advertisers may also be able to tell that you clicked on an ad on this website.” Made the same change in Disclosure of Personally Identifying Information, also adding a phrase to the following sentence in that paragraph “(and even though I obviously can’t control whether or not you click on an ad link).” Made those same changes to the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice. In the following paragraph of the latter subsection, changed “if you accessed a YouTube video I shared, particularly if you were logged into a Google Account at the time, YouTube may have shown you advertisements and likely added your viewing history to the repository of data Google (which owns YouTube) has compiled about you, much of which is used for commercial purposes” to “if you watched a video I shared via an embedded YouTube video player, the embedded video player probably collected information about you that the CCPA would consider personal information (e.g., your IP address, your geographical location (estimated from your IP address), information about your Internet activity, device identifiers and/or online identifiers, and information related to cookies and/or similar technologies) and may have used that information for what the CCPA would probably regard as commercial purposes (e.g., showing you personalized advertising).” In the following sentence, inserted the phrase “and, unless otherwise expressly indicated, I receive no compensation or consideration for using and/or sharing such content and/or services,” before “this too could be deemed …” and adjusted the punctuation of the adjacent trademark notice. Tinkered with the wording of these changes after initial publication.
    • August 4, 2021: In Definitions, updated the “Websites/URLs” definition to fix a typo (“the URL such as …” was supposed to be “a URL such as …”) and added a sentence after that one: “(Those are just two obvious examples; there various possible scenarios in which a URL might contain and/or constitute personal information.)” In Security Scans, Information I Receive from Third Parties for Security Purposes, Information Captured by Service/Software/App/Device Telemetry, and Disclosure of Personally Identifying Information, amended references to Microsoft and/or Microsoft products and/or services to update the trademark notices and made some minor punctuation adjustments to adjacent text for clarity. In Security Scans, also changed “security features of products and/or services provided by Microsoft®” to “various Microsoft® software, apps, tools, and/or services” for consistency with the wording in Disclosure of Personally Identifying Information. In Other Inquiries, Messages, and Support Requests, removed references to Yahoo! services (since the existing ones are no longer relevant) and made assorted minor revisions to the remaining text to make it clearer and remove outdated information and extraneous trademark references. In Disclosure of Personally Identifying Information, updated the references to Flickr to remove outdated information and adjust the trademark notice; updated the reference to IntenseDebate to add a trademark notice; updated the bullet point regarding Google services to revise the order of several of the mentioned services and make some minor wording changes; added the Khronos Group to the examples of third-party vendors and/or service providers (under the bullet point on “Other providers whose services enable me to operate and/or secure my system(s), device(s), and/or data”); revised the references to Yahoo! services to remove some outdated information, update the privacy policy links, and try to clarify the trademark notices (which are probably about to change again in any event); updated the reference to the Guardian Project to change “through my use of …” to “through and/or in connection with my use of …” updated the reference to Mozilla Corporation to change “about my use of …” to “through and/or in connection with my use of …” for consistency; added a trademark notice for calibre; updated and simplified the reference to the Microsoft Bing search engine(s); and made a minor wording adjustment to the reference to Wikimedia Foundation projects as well as further adjusting its trademark notice.
    • August 3, 2021: In Definitions, rewrote the definition of metadata to be clearer and more broadly applicable, and further revised the trademark disclaimer. [I went through several iterations of this.] In Information I Receive from Third Parties for Security Purposes, changed “developed by Hidden Reflex Inc. for …” to “developed by Hidden Reflex for the …” and updated the trademark notice. In Disclosure of Personally Identifying Information, changed “Hidden Reflex Inc.” to just “Hidden Reflex”; changed “use of their …” to “use of the …”; and updated the trademark notice. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “Information about real property, residence(s), and/or lodgings an individual or household owns, rents, leases, and/or otherwise uses (and/or is considering purchasing, renting, leasing, and/or otherwise using), and/or information about who owns, manages, administers, sells, rents, leases, and/or otherwise offers for commercial advantage particular lodgings; a particular residence; and/or a particular building, lot, or other real property” (under “Commercial information”) to “Information about lodgings, residence(s), office space(s), and/or other real property an individual or household owns, rents, leases, and/or otherwise uses (and/or is considering purchasing, renting, leasing, and/or otherwise using), and/or information about who owns, manages, administers, sells, rents, leases, and/or otherwise offers for commercial advantage particular lodgings; a particular residence; and/or a particular building, lot, office space, industrial facility, or other real property” for completeness. Also under “Commercial information,” changed “Information about stocks and/or securities ownership and/or purchases/transfers … to “Information about stock and/or securities ownership, purchases, sales, and/or transfers …” Under “Professional or employment-related information, reworded one of the bullet points to change “Business ownership/registration information (e.g., whether an individual has some ownership interest in and/or is an officer of a corporation or other business entity)” to “Business or organization ownership, officership, and/or registration information (e.g., whether an individual has some ownership interest in and/or is an officer of a corporation, some other business entity, or a nonprofit organization)” (for completeness, since a corporation may be a nonprofit organization, but by definition a nonprofit is not a business).
    • August 2, 2021: In Definitions, added a parenthetical note to the definition of metadata regarding the “Metadata” trademark. (Tinkered with this a bit after initial publication.) In Security Scans, made some further clarifications to the paragraph on the Sucuri Security plugin: changed “which includes …” to “whose available features (not all of which are necessarily used on this website) include, but are not necessarily limited to, …”; added “a security logging feature that allows certain security audit log data to be stored remotely to deter tampering” and “a remote firewall service intended to block certain forms of suspicious and/or malicious activity” to the listed features; changed “A complete list of the features of the plugin …” to “A list of the features of the plugin …” and added the phrase “(not all of which I necessarily use on this website)” after that phrase; changed “data gathered through this plugin and/or the scanning service” to “data collected and/or processed by this plugin, the remote scanning feature, and/or other associated features and/or tools”; and changed “and is subject to …” to “any data processed and/or stored by Sucuri is subject to …” set off with a semicolon. In Disclosure of Personally Identifying Information, added another example (Chris Antaki’s Disable WebRTC extension) to the list of examples of third-party browser extensions.
    • August 1, 2021: In Embedded Content, amended the first sentence to change “embedded content is content hosted on …” to “this policy defines embedded content as content hosted on …” Fixed a typo in the paragraph beginning “Embedded content providers may use various third-party service providers …” (“third-part” was supposed to be “third-party”). Updated the bullet point for Google Fonts and Google Hosted Libraries to change “and other Google services” to “and/or other Google services”); change “such as embedded maps” to “e.g., embedded maps”; relocate the trademark notice to the end of the bullet point. Also updated the bullet point for Vimeo videos to update its trademark notice. Revised the bullet point on the Yoast SEO plugin to update references to Algolia search features (the existing language referred to an earlier Algolia integration that has been removed; newer versions of the Yoast SEO plugin offer a more elaborate site search integration as a premium feature, which I don’t use); added a link to the Algolia Privacy Policy; and added a trademark notice for Algolia. Also in that bullet point, changed the phrase “finally disabled the applicable component entirely” to “finally found a means to disable the applicable component entirely” and revised the anchor text for the hyperlink accordingly. (The linked solution wasn’t mine, but rather one I found online that resolved my concern.) Tinkered a bit with the wording after initial publication. Revised the Cookie Notice to update the trademark notice for Vimeo. (I’m unsure if the latter has recently changed its corporate name, which is now listed differently on different portions of their website.)
    • July 31: Revised the references to Sucuri Inc. throughout this page to update the trademark notices. In Website Server, Error, and Security Logs, revised the reference to Sucuri Security to change “Security audit log data stored by …” to “Some security audit log data recorded by …”; add the statement about their ownership from Security Scans; and note that certain data may be stored remotely as well as locally. (This was already explained in Security Scans.) Also amended the paragraph about retaining log data for longer periods to add a final sentence: “Certain security-related log data, such as (again without limitation) records my website security features compile of administrative logins and/or failed attempts to log in as an administrative user, may be retained indefinitely unless manually deleted.” [I tinkered with the wording a bit after initial publication.] In Security Scans, updated the paragraph about Sucuri Security to remove references to the Privacy Shield Framework; restructured the reference to the Cloudflare CDN (adding a link to the Cloudflare Privacy Policy for ease of reference); changed “Data gathered through this plugin and/or the scanning service …” to “Some data gathered through this plugin and/or the scanning service …”; changed “Communications with API servers and/or other repositories or content delivery networks …” to “Communications with API servers, repositories, and/or content delivery networks …” for less painful grammar; and updated the reference to Sucuri Security log retention to change “log data stored by Sucuri” to “security audit log data stored by Sucuri via the Sucuri Security plugin” and add a comma after “about 90 days”. (The Sucuri Security plugin offers a number of different logging functions, but only the audit logs are stored remotely, and only if that option is activated.) In Embedded Content, updated the bullet point on Sucuri Security to remove references to the Privacy Shield Framework and restructured the reference in that bullet point to the Cloudflare CDN (adding another link to their Privacy Policy). In Disclosure of Personally Identifying Information, updated the trademark notice for the GNOME name; updated the trademark notice for the reference to Wikimedia projects and changed “other Wikimedia projects and services” to “other projects of the Wikimedia Foundation”; and removed the references to the Privacy Shield Frameworks. (European court rulings in 2020 effectively invalidated these frameworks as means of GDPR compliance, although a successor framework is apparently being negotiated.) In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, updated the reference to Sucuri to change “some website security log data is also stored by Sucuri” to “some website security audit log data may be processed and/or stored by GoDaddy Media Temple, Inc. d/b/a Sucuri, a subsidiary of GoDaddy Operating Company, LLC (Sucuri) through my use of certain features of the Sucuri Security plugin” for greater clarity.
    • July 29, 2021: In Definitions, updated the definition of “Personal information/personally identifying information” to rename it “Personal information/personally identifying information/personal data” and note that this policy treats all three terms synonymously. In Security Scans, amended the paragraph about iThemes Security to update the privacy policy link, ownership information, and trademark notices. In Information I Receive from Third Parties for Security Purposes, updated the outgoing link (to point to the plugin homepage) and trademark notice for iThemes Security and fixed a typographical error (an unnecessary repetition of the word “plugin”). In Additional Information About Data Retention, changed “personal data” to “personal information” for internal consistency. In Disclosure of Personally Identifying Information, updated the first sentence to change “share, release, or otherwise disclose …” to “share, release, and/or otherwise disclose …” and updated the reference to iThemes with current ownership information, links, and trademark notices, and to note that I may also use other of their plugins. (I don’t currently, but I conceivably might at some future point.) Also updated the trademark notice for Avast Software and Piriform (CCleaner); updated the references to The Document Foundation and LibreOffice to change “LibreOffice suite of open source office software” to “open source LibreOffice office productivity suite” (which is closer to how the developers officially describe the software), add a link to The Document Foundation homepage, and add registered trademark symbols; and changed “food and/or grocery delivery services” to “other food delivery and/or grocery delivery services” for clarity. In Your Rights (GDPR and Other National or State Privacy Laws), changed “with respect to your personal data” to “with respect to your personal information (which some jurisdictions call “personal data”)” for consistency and updated the paragraph beginning “If you have questions or would like …” to clarify that the data tools on the Privacy Tools page are intended for residents of countries outside the U.S. (The vagaries of state law make those tools troublesome for use by U.S. residents; under California law, for instance, access, export, or deletion requests submitted using those tools would still be subject to CCPA identity verification and record-keeping requirements.) Also condensed the language about the technical limitations of those tools (which are explained on the Privacy Tools page itself) and added a sentence stressing that those tools aren’t intended for U.S. residents. [Tinkered with the revised wording after initial publication.] In the following paragraph, changed “applicable law/regulation” to “applicable law/regulations” for internal consistency. Renamed California Privacy and Data Protection Rights to “Additional California Privacy Rights (CCPA)” and updated other internal references accordingly. In that section, changed “California’s data protection laws” to “California privacy laws,” and changed “personal data” to “personal information.” In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “personal data” to “personal information” for consistency. Removed an extra space in this entry in the recent revisions list. Also changed the phrase “almost any disclosure or transmission” to “almost any disclosure” for clarity. In the subsequent paragraph, changed “disclose personal information …” to “share, release, and/or otherwise disclose personal information …”; changed both instances of “necessarily disclose …” in that same paragraph to “necessarily share, release, or disclose …”; and changed “of a given type” to “within a given category.” Later in that subsection, changed “may also share personal information …” to “may also share, release, and/or otherwise disclose personal information …” and changed “might disclose information in the above contexts …” to “might disclose information in the above contexts …” In the second-to-last paragraph in that subsection, changed “may share or otherwise disclose …” to “may share, release, and/or otherwise disclose” for wording consistency. (These wording changes are to better align this notice with the wording in Disclosure of Personally Identifying Information.)
    • July 28, 2021: In Certificate Authority Checks, changed “(via HTTPS rather than HTTP)” to “(that is, via encrypted connections)” (which is more broadly correct). In Embedded Content, changed “secure (HTTPS) connections” to “secure (encrypted) connections” for the same reason. In Contact Forms, changed “determine how to address or repair the problem you identified” to “troubleshoot and/or resolve the problem you identified” (for wording consistency). In Disclosure of Personally Identifying Information, updated the bullet point on employees, independent contractors, interns, agent, and/or business partners to change “repair/maintenance/service” to “repair/maintenance/installation/technical service” (for consistency with the wording in the subsequent bullet point on third-party vendors and/or service providers, which refers to “repair, maintenance, installation, and/or technical service providers”). Also in Disclosure of Personally Identifying Information, updated the reference to Microsoft to change “as are the names of many other Microsoft products and services” to “as are the names of many other Microsoft products and/or services” for wording consistency and changed “improve the accessibility of this website and its contents” to “improve the accessibility of this website and/or my content”. At the very end of the Disclosure of Personally Identifying Information section, changed “encrypted (HTTPS) connections” to just “encrypted connections” (which again is more correct). In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “for certain specified purposes, including:” to “for certain specified purposes, which the law divides into the following categories:” for greater clarity. Later in that section, changed “applicable telephone companies or mobile carriers” to “applicable telephone companies and/or mobile carriers”; deleted the phrase “(i.e., via an HTTP rather than HTTPS connection)” (since those aren’t the only types of encrypted or unencrypted connections); changed “DNS (domain name system) server and …” to “DNS (domain name system) resolver service and/or …”; removed several of the examples in the bullet-pointed list following the sentence beginning “Actions like the following could also be deemed …” (as they probably didn’t actually belong there under the law’s definitions); changed “face to face” to “face-to-face” for grammatical reasons; changed “lookup on an IP address from the website’s security or error logs” to just “lookup on an IP address”; and changed “Even if disclosures like these are NOT deemed to be “for commercial purposes” (or “sales”) by the CCPA definitions, they are certainly for business purposes” to “Even if disclosures like these are NOT deemed to be “for commercial purposes” (or “sales”) by the CCPA definitions, they are certainly for business purposes, whether the CCPA would define them as such or not.” Made a correction to the July 25, 2021 entry in this recent revisions list (“further adapt our version” was supposed to be “further adapt my version”).
    • July 26, 2021: In Information I Receive from Third Parties for Security Purposes and Disclosure of Personally Identifying Information, revised the wording of the references to IPinfo and updated the trademark notices.
    • July 25, 2021: In Credits and License for This Policy, changed “If you elect to use or further adapt my version …” to “If you elect to use or further adapt this policy …” Also made some clarifications to the information about revision histories and added a link to this Recent Revisions list for easier reference.In Definitions, further updated the definition of Cookies and similar technologies to change “how you can manage or delete them on different browsers …” to “how you can manage or delete them in different browsers …”; change “data stored in web storage (such as so-called local shared objects) isn’t a cookie …” to “data stored in your browser in such ways (such as so-called local shared objects) aren’t cookies …”; and add a comma before the phrase “while cookies set by other services or domains …” Made the same changes in the Cookie Policy, also fixing a typographical error later in the same paragraph of that policy. Also in the Cookie Policy, renamed the heading “Cookies and Other Technologies” to “Cookies and Similar Technologies” and renamed the heading “How This Website Uses Cookies and Other Technologies” to “How This Website Uses Cookies and Similar Technologies” for internal consistency, and revised the credits and licensing statement beginning “Note: Because …” to clarify that certain portions of the Cookie Notice were also adapted from the Automattic Privacy Policy (since some of the same language about cookies and similar technologies from this page, portions of which were borrowed and/or adapted from the Automattic language, also appears in the Cookie Notice). Also added a sentence (“(If you elect to use or further adapt this notice, please credit Automattic Inc. as well as me (Aaron Severson).)”); removed the trademark notice for the WordPress Foundation (since it’s not applicable there); and made some minor punctuation adjustments to that paragraph. In Certificate Authority Checks, changed “enable your browser to confirm …” to “enable a web browser or other user agent to confirm …” and changed “the correct website” to “the correct domain” (which is more technically correct). In Data Related to Recruitment/Hiring/Employment or Business Partnerships, changed “temporary or permanent employees, interns, and/or independent contractors” to “temporary or permanent employees, independent contractors, and/or interns” (to establish a more consistent order); changed two instances of “prospective employees, contractors …” to “prospective employees, independent contractors, interns …”; and changed “… business partners, and/or other proposals or business ventures” to “… business partners, business proposals, and/or business ventures” for greater clarity. In the Information Sharing subsection of the Financial Transactions Policy, changed “independent contractors, employees, agents …” to “employees, independent contractors, interns, agents …” for consistency. Made the same change to the applicable bullet point in Disclosure of Personally Identifying Information to match (also changing “these contractors, employees, agents, and/or partners …” to “such employees, independent contractors, interns, agents, and/or business partners …” in that same bullet point). In Other Information I Receive from Third-Party Sources, changed “employees, independent contractors, agents …” to “employees, independent contractors, interns, agents …” and changed “their collaboration …” to “their collaboration(s) …” In a subsequent paragraph in that section, changed “their employees, independent contractors, agents …” to “their employees, independent contractors, interns, agents …” (mostly for wording consistency). In Disclosure of Personally Identifying Information, also changed “regarding current and/or prospective employees, independent contractors, interns, and/or business partners” to “regarding current and/or prospective employees, independent contractors, interns, business partners, business proposals, and/or business ventures” for consistency; updated the reference to vDos to change “DOS emulator” to “MS-DOS emulator” and add a trademark notice; and changed “videodisc and/or phonorecord production” to “the production of optical discs and/or phonorecords of whatever type”. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “Information about an individual or household’s employees, agents, representatives, and/or service providers” to “Information about an individual or household’s employees, independent contractors, interns, agents or other authorized representatives, and/or service providers” (mainly for greater consistency with the updated language elsewhere in this policy, here omitting vendors and business partners because for purposes of this section, those fall under the “Commercial information” and “Professional or employment-related information” categories respectively). In the Collection Sources subsection, changed both instances of “independent contractors, employees, agents …” to “employees, independent contractors, interns, agents …” Made the same change in the Information Shared for Business or Commercial Purposes subsection. In the latter subsection, changed also changed “regarding current and/or prospective employees, independent contractors, interns, and/or business partners” to “regarding current and/or prospective employees, independent contractors, interns, business partners, business proposals, and/or business ventures” for internal consistency. Tinkered with the wording of some of these revisions after initial publication.
    • July 24, 2021: In Definitions, updated the Cookies and similar technologies definition to change “not affiliated in any way with that website, which is run by the law firm Pinset Masons LLP, and offer …” to “not affiliated in any way with that website or with the law firm that runs it, Pinset Masons LLP, and offer …” for clarity. Made the same change in the Cookie Notice for consistency. Also in the Definitions for Cookies and similar technologies, changed “such as storing certain information in your browser’s local storage and/or plugins; local storage information and so-called “local storage objects” aren’t cookies in the usual sense, but they may perform …” to “such as storing certain information in your browser’s web storage (sometimes called local storage, which is technically just one type of web storage) and/or plugins; data stored in web storage (such as so-called local shared objects) isn’t a cookie in the usual sense, but may perform …” (which is more technically correct). Made a similar change to the language in the Cookie Notice, changing “such as storing certain information in your browser’s local storage and/or plugins; local storage information and so-called “local storage objects” aren’t cookies in the usual sense, but they may perform …” to “such as storing certain information in your browser’s web storage and/or plugins; data stored in web storage (such as so-called local shared objects) isn’t a cookie in the usual sense, but may perform …” In Cookies and Similar Technologies, changed “(e.g., local storage objects)” to “(e.g., storing local shared objects and/or other data in your browser’s web storage)” for consistency. In Browser Tests and Embedded Content, changed “local storage” to “web storage” throughout, again for consistency. (This is an effort to more precisely describe a technical subject of which my understanding is not robust.) Updated the references to Cloudflare in Security Scans, Embedded Content, and Disclosure of Personally Identifying Information to make some minor wording adjustments, update the trademark notices, and update certain privacy policy links. Also in Embedded Content, updated the bullet point on BootstrapCDN to reflect their current ownership, update the privacy policy information, and remove outdated company references. Also revised the jQuery CDN bullet point to update the StackPath trademark notice. In Information Captured by Service/Software/App/Device Telemetry, changed “reCAPTCHA security service” to “reCAPTCHA human verification service” (which is arguably a more accurate description). Made the same change in the reference to reCAPTCHA in Disclosure of Personally Identifying Information, and also changed the phrase “which is found on various websites and/or online services I use in the course of my business and which can gather information about my online activity in those contexts, as noted …” to “which may be used by various websites and/or online services I access and/or use in the course of my online activity, and which can gather information about my online activity in those contexts, as described …” (to better express that service’s ubiquity). Also in Disclosure of Personally Identifying Information, amended the reference to hCaptcha to present it as an example of CAPTCHA and/or comparable human verification services (of which there are now quite a few) and updated the trademark notice. Moved that and the subsequent reference to link shorteners and hyperlink redirection services and/or tools to a slightly earlier spot in the same bullet point. Also updated the references to the plugins for Notepad++ to fix a typographical error that had broken one of the hyperlinks.
    • July 23, 2021: In the Transaction-Related Information Gathering subsection of the Financial Transactions Policy, changed “to verify your ZIP Code or other postal code” to simply “to verify your postal code”. In Additional Information About Data Retention, made a minor amendment to the bullet point on “Copies of published works”: changed “collection of such works” to “collection(s) of such works.” In Disclosure of Personally Identifying Information, made some minor adjustments to the trademark notices in the reference to Apple and Signal (the latter mostly to align the Amazon Web Services trademark notice with the others in this document); changed “Los Angeles Public Library and L.A. County Library” to “Los Angeles Public Library and/or L.A. County Library” (mostly for grammatical consistency); and changed “other retailers, vendors, marketplaces, distributors, and/or providers” to “other retailers, vendors, marketplaces, auction services, distributors, and/or providers” for completeness. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “and/or other government-issued identification information” (under “Identifiers”) to “and/or other government-issued identification numbers”. In “Biometric information,” changed “information about your sleep and/or exercise habits” to “information about your health, sleep, and/or exercise habits”.
    • July 22, 2021: Fixed a typo in Website Server, Error, and Security Logs. In Consents and Agreements, changed “requests removal of their data” to “requests deletion of their data”. In Other Information I Receive from Third-Party Sources, changed “looking up names and other relevant personal details in sources such as (as applicable, but without limitation) books; magazines; newspapers; films and/or other videos; audio recordings; broadcasts of whatever type; and/or online or offline electronic resources such as search engines, library catalogs, websites, and/or databases” to “looking up names and/or other relevant personal details in sources such as (as applicable, but without limitation) books; magazines and/or journals; reports, white papers, and/or other such documents; newspapers and/or other news reports; films and/or other videos; audio recordings; broadcasts of whatever type; public records; and/or online or offline electronic resources such as (again without limitation) websites, search engines, library catalogs, repositories, and/or databases.” In the Collection Sources subsection of the the CCPA Information Collection and Sharing Notice, added “reports and/or white papers” and “websites” to the examples of “Published and/or publicly available sources” and changed “online databases” to “online databases and/or repositories” (mostly for consistency). In the Record-Keeping Disclosure Methodology subsection, changed “By law, an opt-out request …” to “Under California law, an opt-out request …” for greater clarity. Inevitably tinkered with these changes after initial publication.
    • July 21, 2021: Added a new “Nevada Consumer Opt-Out Rights” section after Your Rights (GDPR and Other National or State Privacy Laws). [I inevitably tinkered with the wording of this new section after initial publication.] Fixed a formatting error in the Table of Contents. In Website Server, Error, and Security Logs, changed “Like most websites, the aaronseverson.com website and my web host maintain various logs …” to “Like most websites, the aaronseverson.com website has various logs (some of which I administer directly and some of which are administered by my web host) …” for greater clarity and less awkward grammar. Also split that paragraph at the sentence beginning “The information these logs record …” In Security Scans, changed “initiate manual scans or request …” to “initiate manual scans and/or request …”; added a paragraph regarding email alerts, similar (though not identical) to one in Website Server, Error, and Security Logs; and added a comment about such email alerts to the paragraph about data retention toward the end of that section. In Subscribing via Web Feed (Atom and RSS), updated the first two sentences to fix some factual and punctuation errors about web feeds and add hyperlinks to the specifications for the protocols mentioned. In Data Related to Recruitment/Hiring/Employment or Business Partnerships, changed “news stories” to “news reports”. Amended the references in Information I Receive from Third Parties for Security Purposes and Disclosure of Personally Identifying Information to Have I Been Pwned to update the links, note that it is a project of Troy Hunt (adding a link to his website), and add a trademark notice. In Other Information I Receive from Third-Party Sources, changed “read a news or historical article” to “read a news report or historical article”. In Disclosure of Personally Identifying Information, amended the bullet point beginning “If that information otherwise is or was already publicly available …” to change “that appears in published interviews or in books, articles, or other works about the person(s) to whom the information pertains” to “that appears in published interviews with and/or books, news reports, articles, and/or other published works about the person(s) to whom the information pertains” for greater clarity. Also updated the reference to Blogger and Blogspot to delete the word “both” from the trademark notice; updated the reference to Logitech to change “peripheral devices” to “devices, peripheral devices, and/or other components”; updated the reference to Qualcomm to change “such hardware” to “such components”; added Staples to the listed examples; amended the reference to Audacity to update some listed information (some of which has changed since last the last update); updated the reference to HashCheck Shell Extension to correct the developer credits; and moved the latter reference to maintain the (more or less) alphabetical order. In the paragraph following the big bullet-pointed list in that section, beginning “In general …” changed “Some local privacy laws …” to “Some jurisdictions’ privacy laws …” and changed “… for more information on this issue” to “… for more information on this issue as it relates to California law.” In Your Rights (GDPR and Other National or State Privacy Laws), updated the first sentence to also reference the new Nevada section, including a link to it; changed “the rights provided by the GDPR include …” to “the rights provided by the EU GDPR and UK GDPR include …” for greater clarity; and changed “If you have questions or would like to exercise these rights …” to “If you have questions or would like to exercise your privacy rights under applicable national and/or state law …” In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point beginning “The public, through …” (in the second bullet-pointed list) to change “news articles” to “news reports” for internal consistency. In the fifth bullet-pointed list in that subsection, changed “links to a news article” to “links to a news report” (again for consistency). In the CCPA Request Metrics (Record-Keeping Disclosures) subsection (on this page and the Your California Privacy Rights page), amended the final paragraph beginning “Section 999.317(h) of the regulations …” to make some clarifications regarding the distinction between requests from consumers and requests from all individuals. In the Record-Keeping Disclosure Methodology subsection of the CCPA Information Collection and Sharing Notice, fixed a typographical error in the link to “Controller/Responsible Party, Questions, and How to Reach Me”. Updated Controller/Responsible Party, Questions, and How to Reach Me to also mention the new Nevada opt-out section, and changed “… above, you can reach …” to “above (and/or any other privacy rights you may have under applicable national and/or state law), you can reach …” for consistency. Updated the July 7, 2021 entry in this recent revisions list to correct a reference to the Controller/Responsible Party, Questions, and How to Reach Me section. As a global change, changed all instances on this page of the phrase “via one of the methods” to “via any of the methods” for internal consistency. Inevitably tinkered with many of these changes after initial publication.
    • July 19, 2021: In Information I Receive from Third Parties for Security Purposes, updated the first reference to HackRepair.com to add a trademark notice [which I revised after initial publication], also removing the second reference later in that section (a parenthetical aside in the paragraph beginning “In many cases, such data …”), and updated the reference to Perishable Press to link to their Privacy Policy (rather than the page for one of their security plugins). Made the same changes to the references to those entities in Disclosure of Personally Identifying Information for consistency. Also in Disclosure of Personally Identifying Information, updated the reference to Tracker Software Products to change “the suite of PDF creation and editing software” to “the suite of PDF creation and editing software and tools” for completeness, and updated the company and trademark information. In Your Rights (GDPR and Other National or State Privacy Laws), changed “If you have questions or would like to exercise these rights …” to “If you have questions or would like to exercise these or any other privacy rights you may have under applicable national and/or state law …” In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed the bullet point reading “Information about an individual or household’s scores, achievements, winnings, and/or prizes in games of chance or skill” (under “Commercial information”) to “Information about an individual or household’s participation, scores, achievements, winnings, losses, and/or prizes in sweepstakes, lotteries, raffles, contests, wagers, other forms of gambling, and/or other games of chance or skill” for completeness and to clarify the intended scope of that bullet point. Fixed a couple of minor errors in this entry in the recent revisions list (changing “Information We Receive …” to “Information I Receive …” and removing an erroneous reference to a “Your California Privacy Rights” page this website doesn’t have).
    • July 18, 2021: In Definitions, updated the definition of “errors and suspicious activity” to change “any action or activity …” to “any visitor activity that generates an error message …” for greater clarity. Updated the “categories of information gathered” in various sections of this policy: In Consents and Agreements; Comments; Contact Forms; Other Inquiries, Messages, and Support Requests; Data Related to Recruitment/Hiring/Employment or Business Partnerships; Financial Transactions Policy; and Transaction-Related Information I Receive from Third Parties, added “errors and suspicious activity*”; in Information I Receive from Third Parties for Security Purposes, added “visitor activity*; errors and suspicious activity*; names*”; in Age Verification, Data in Submitted Images, and Other Information I Receive from Third-Party Sources, added “Visitor activity*; errors and suspicious activity*”. (For the most part, these additions aren’t really new, but represent my belated realization that there were certain things that were SO obvious I didn’t think to include them initially, like the fact that security information might include “errors and suspicious activity”!) Adjusted the capitalization of the existing text as appropriate with these additions, to maintain a consistent order and format. Removed an extra space in this recent revisions list. In Embedded Content, updated the trademark notice for Twitter.
    • July 17, 2021: In Categories of Information and Purposes for Collection, changed “the categorical purpose or purposes for which …” to “the categories of purposes” (which is much less awkward). In the Collection Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “one or more of the following purposes” to “one or more of the following categories of purposes” for consistency and clarity and changed “These purposes are defined …” to “These categories of purposes are defined …” As a global change, changed all instances of “Providing a service” to “Providing services” (which I had intended to do in February 2020, but wasn’t implemented). (I also updated the Feb. 25, 2020 entry on this recent revisions list to remove the reference to this change, which obviously didn’t happen at that time!) In the list of categories of purposes, amended the bullet point on “Providing services” to change “running this website and its associated business operations” to “running this website and/or its associated business operations”; amended the bullet point on “Fulfilling a contractual obligation” to change “some contract or legal agreement, whether with you or a third party” to “a contract or legal agreement, whether with you or with a third party”; amended the bullet point on “Legal compliance or audit” to change “with applicable laws or regulations” to “with applicable laws and/or regulations”; amended the bullet point on “Security, troubleshooting, quality control, and service improvement” to change “and/or other threats (and/or possible threats) to …” to “safeguard …” set off with a semicolon, and changed “quality and functionality” to “quality and/or functionality”. (Obviously, these are minor wording adjustments that do not represent any substantive change in my purposes for collecting personal information.) At the end of the Categories of Information and Purposes for Collection section, added a new final paragraph explaining that the “Categories of information gathered” listed in the subsequent sections, which are based on my definitions (described in “Definitions”), may differ from the categories defined by law in jurisdictions such as California, referring visitors to the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice to learn more about how the personal information I collect could be categorized under California law. Added internal links in that new paragraph to the applicable sections. Inevitably tinkered with the wording after initial publication. In Embedded Content, deleted the link to Google third-party subprocessors, as the linked page only lists subprocessors Google uses in connection with its advertising and analytics services, not the services mentioned in Embedded Content, and thus isn’t relevant to that section. In Other Information I Receive from Third-Party Sources, amended the paragraph about receiving personal information about someone through their employees, independent contractors, agents or other authorized representatives, business partners, vendors, and/or service providers to change “Vendors and/or service providers …” to “Someone’s vendors and/or service providers …” In the following sentence, added an additional example of that, and split that sentence at “further more, in some jurisdictions …” for better readability.
    • July 16, 2021: In Disclosure of Personally Identifying Information, amended the reference to HP to change “HP®” to “HP Inc.” (as the company reportedly prefers in such contexts); change “HP printer, scanner, and/or copier devices” to “HP printers, scanners, copiers, and/or other devices”; and restore the trademark notice, which was briefly and inadvertently deleted; also amended the reference to SanDisk to change “audio player(s)” to “portable audio player(s)” for clarity. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, amended the bullet point beginning “Information about food …” (under “Commercial information”) to change “food, groceries, meals, recipes, and/or cuisine(s)” to “food, beverages, groceries, meals, recipes, drinks, and/or cuisine(s)” for completeness.
    • July 15, 2021: In Definitions, updated the definition of “Malicious activity” to change “consider spam to be …” to “consider spamming to be …” for greater clarity. In Comments and Contact Forms, changed “spam/abuse” to “spam and/or abuse”; changed “used to spam this website” to “used in spamming this website”; and changed “discourage spam” to “discourage spamming”. In Information I Receive from Third Parties for Security Purposes, changed “spam and/or attempts to transmit …” to “spamming and/or attempts to transmit … and changed “email addresses associated with spam or telephone numbers …” to “email addresses associated with spamming, and/or telephone numbers …” Also in that section, added Epic AdBlocker to the list of examples of sources of security-related information. In Disclosure of Personally Identifying Information, updated the references to Epic Privacy Browser to also mention the Epic AdBlocker extension (which has just been added as of this writing); change “encrypted proxy/VPN service browser extension” to “associated proxy/VPN browser extension”; and rearrange the anchor text for the link to their privacy policy. Also in Disclosure of Personally Identifying Information, further amended the reference to BlackBerry Limited to correct the capitalization of Research In Motion Limited and change “the older of those devices” to “the older of those smartphones” for clarity; amended the reference to Dell to change “their U.S. Privacy Statement” to “the “Dell U.S. Privacy Statement” (also adjusting the anchor text of the link to that privacy statement accordingly); amended the reference to Intel to change “hardware” to “components” and change “of that hardware and its associated drivers and/or software” to “of those devices and/or components and/or their associated drivers and/or software”; amended the reference to Nuance Communications, Inc., to change “the voice dialing system installed on …” to “the voice recognition software used by …” for clarity and update the trademark notice; amended the reference to Qualcomm to change “smartphone and …” to “smartphone and/or …”; amended the reference to Mozilla browsers to change the phrase “of their” to “of the”; and updated the reference to DataViz to further adjust the trademark notice and fix a minor punctuation issue. Updated the July 14, 2021 entry in this recent revisions list to change “hair-splitting” to “hairsplitting.” Inevitably tinkered a bit with these changes after initial publication.
    • July 14, 2021: In Security Scans, Information I Receive from Third Parties for Security Purposes, and Disclosure of Personally Identifying Information, made some further adjustments to the trademark notices for BlackBerry Limited and changed the phrase “BlackBerry® devices” to “BlackBerry® smartphones”. In the latter section, updated the reference to CompanionLink Software, Inc., to adjust the punctuation so the parentheses are nested in a more logical way, delete “and their associated service processors,” and change “applies to data their services process …” to “applies to data their services (and/or their associated subprocessors) process …” for greater clarity. Also adjusted the wording of the references in that section to DataViz, Inc., principally to update the trademark notices, and made further wording adjustments to the references TCL Communication (whose corporate structure I don’t fully grasp, making it hard to know which entity to refer to). Amended the July 13, 2021 entry in this recent revisions list to change the phrase “references to BlackBerry®” to “references to “BlackBerry Limited”. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, amended the bullet point on “Audio, electronic, visual, thermal, olfactory, or similar information” to rename it “Sensory data (audio, electronic, visual, thermal, olfactory, or similar information)”; amended the bullet point on “Geolocation information” to rename it “Geolocation data” and change the phrase “geographical location and/or movements” to “physical location and/or movements”; amended the “Education information” bullet point to rename it “Nonpublic education information” and revised the wording of the enumerated examples to be more consistent with the statutory definitions; and amended the bullet point after that to change “Inferences I make based on other data …” to “Inferences I draw from other personal information …” (These wording adjustments are mostly just hairsplitting to better align the listed categories with the way they’re described in the applicable statutes and associated regulations.) Added major(s), graduation date(s), and information about student loans and/or financial to the listed examples of education information (and removed “theses” and “readings,” which were redundant). Under “Professional or employment-related information,” changed “Professional certifications and/or licensure” to “Professional certification(s) and/or license(s)” (the latter word being more correct than “licensure” in this context); changed “Job title(s) and/or position(s)” to “Job title(s), position(s), role(s), duties, and/or responsibilities”; and added a bullet point: “Training, professional development, career goals, and/or professional aspirations.” In the Collection Sources subsection of the CCPA Information Collection and Sharing Notice, made some changes to the first bullet-pointed list: In the bullet point beginning “Nonpublic documents …” changed “school transcripts” to “school transcripts and/or other school records”; in the bullet point beginning “Subject matter experts …” added the phrase “(whether yours, ours, and/or someone else’s)” after “personal and/or professional acquaintances” for clarity and added “current and/or past employers and/or supervisors” to the listed examples of such personal and/or professional acquaintances. Tinkered a bit with the revised wording after initial publication.
    • July 13, 2021: Made some minor adjustments to the various references to BlackBerry in Security Scans, Information I Receive From Third Parties for Security Purposes, and Disclosure of Personally Identifying Information, principally to reflect that the former BlackBerry Privacy Policy has been renamed “BlackBerry Privacy Notice”; update the links to that notice (although the old ones still redirect); and update the trademark notices. In Disclosure of Personally Identifying Information, adjusted the references to TCL Communication to update the trademark notice and clarify that the privacy policy available online does not match the one on the device in question (which is no longer manufactured) and added a trademark notice for Nuance Communications. In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, amended the first sentence to change the phrase “for any of the following purposes:” to “for certain specified purposes, including:” Also amended the paragraph beginning “Even if disclosures like these are NOT deemed …” (following the sixth bullet-pointed list in that section), removing the quotation marks around “for business purposes” and adding two final sentences: “(In certain cases, such disclosures might reasonably be regarded as part of my acting as a business service provider for someone else, particularly where the personal information involved is supplied mainly by the client rather than by me (e.g., in a manuscript I’ve been hired to edit). However, under the CCPA, being a “service provider” requires a written agreement that directs the service provider to collect and/or process personal information on the client or customer’s behalf for certain specific business purposes while restricting the service provider’s further use of that information; it’s possible to provide professional services, even to other businesses, without necessarily being considered a “service provider” as the CCPA and its associated regulations define that term.)”
    • July 12, 2021: In Categories of Information and Purposes for Collection, amended the bullet point on “Advertising and other commercial purposes” to separate the items with semicolons rather than commas; change “to promote or advertise my content or services” to “help me promote and/or advertise my content, services, and/or other creative endeavors”; and change “monetize the site and/or my content” to “otherwise monetize the site, my content, my other writing/editing/writing consulting work, and/or my other creative endeavors” for wording consistency with the “Research and publishing” bullet point in that list. (These changes don’t reflect any substantive change in how or why I collect and use information; the goal is to wrestle some kind of consistency out of the increasingly labyrinthine language herein.) In Other Information I Receive from Third-Party Sources, added a comma after the phrase “who are the subjects of and/or otherwise relevant to that work” for readability and changed “the applicable vendor(s) or service provider(s) could also be said …” to “the applicable vendor(s) and/or service provider(s) could also be said …” for internal consistency. In Disclosure of Personally Identifying Information, further updated the list of examples of third-party vendors and/or service providers: Added a comma after the phrase “via telemetry features incorporated into those plugins, themes, and/or add-ons and/or through …” for readability; changed the phrase “are typically but not always via …” to “are frequently, though not necessarily exclusively, via …” updated the reference to PayPal® to change the phrase “processes certain payments …” to “may process certain payments …” Further updated the references to and trademark notices for my home Internet service provider and mobile carrier. Renamed the bullet point on services and/or service providers that help me promote and/or sell my content and/or services from “Services and/or service providers that help me promote and/or sell (and/or otherwise offer for commercial advantage) …” to “Vendors, services, and/or service providers that help me promote, monetize, sell, and/or otherwise offer for commercial advantage …” [wording I adjusted after initial publication]; revised the text of that bullet point to separate the items with semicolons rather than commas; added to the listed examples other types of platforms and/or services for publishing and/or distributing written content and/or images; added the phrase “and/or other media” after “audiovisual content”; and added to the listed examples vendors and/or service providers through which I may create and/or offer merchandise related to my services, content, and/or creative endeavors. In California Privacy and Data Protection Rights, added a paragraph regarding certain types of extremely sensitive personal information the regulations prohibit me from disclosing in response to a request to know. (This regulatory stipulation was already explained on the Do Not Sell My Personal Information page, but it seemed appropriate to mention it here as well.) In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, updated the second bullet-pointed list to change “My service providers and/or vendors” to “My vendors and/or service providers” (for wording consistency) and change the period at the end of each of the bullet points in that list except the last one to a semicolon followed by the phrase “and/or:” (for formatting consistency with the following list in that subsection). In the fourth bullet point in that list (beginning “Any individual or entity”), changed the phrase “regarding their content and/or other creative endeavors” to “regarding their content, work, and/or creative endeavors” for consistency and completeness (although the “work” aspect was already encompassed by the following bullet point on “Editors, publishers, clients, employers, and/or other third parties …”). In the sixth bullet point in that same list, changed “promote and/or sell (and/or otherwise offer for commercial advantage)” to “promote, monetize, sell, and/or otherwise offer for commercial advantage” for internal consistency with the change made in Disclosure of Personally Identifying Information. (The rationale for this change is that the “Advertising and other commercial purposes” bullet point in Categories of Information and Purposes for Collection uses the word “monetize,” which didn’t otherwise appear in the text and isn’t categorically synonymous with “offer for commercial advantage.) In the sixth bullet-pointed list in that subsection, amended the bullet point beginning “Presenting and/or discussing examples …” to change “offering for commercial advantage” to “offering in a professional capacity and/or for commercial advantage” (since these aren’t necessarily synonymous) and revised the bullet point beginning “Sharing, exchanging, or discussing with clients …” to change the phrase “for commercial advantage” to “in a professional capacity” (which better expresses the intended meaning). Updated the March 14, 2020 entry on this recent revisions list to delete the names of the automotive history and information sites I added that day (since I added some more a few days later and then removed all of them on March 22, 2020) to avoid confusion. Also updated the entry for March 22, 2020 to change the word “struck” to “deleted” for the same reason.
    • July 11, 2021: In Disclosure of Personally Information, added Disconnect (which was already listed in Information I Receive from Third Parties for Security Purposes) to the list of examples of third-party vendors and/or service providers. Elsewhere in that list, tinkered with the references to my home Internet service provider and mobile carrier(s) to fix some awkward punctuation, rearranged the position of those references’ trademark notices in the text for greater clarity, updated the trademark notice for my ISP (including removing an outdated reference to that service provider’s former trade name), and added the word “currently” before the name of my present ISP. Also added the words “I may use” after the phrase “other Internet service providers, mobile carriers, phone service providers, and/or wireless network services” for clarity.
    • July 10, 2021: In the Transaction-Related Information Gathering and Returned Check Fees subsections of the Financial Transactions Policy, changed instances of the phrases “financial institution(s)”; “financial institutions”; and “banks or other financial institutions” to “bank(s)/financial institution(s)” for consistency. In the Transaction-Related Information Gathering subsection, also updated the sentence about service agreements to change the phrase “payment processors” to “payment processor(s).” In the Refunds and Returns subsection, changed the phrase “the applicable payment processor(s) and/or financial institution(s)” and an instance of the phrase “the applicable payment processor(s)” to “the applicable payment processor(s) and/or bank(s)/financial institution(s)” for wording consistency. (Obviously, a bank is a financial institution, although not all financial institutions are banks.) In Information I Receive from Third Parties for Security Purposes, updated the sentence beginning “From time to time, I may also receive additional security-related information from …” to fix the inconsistent punctuation and change “and/or banks(s)/financial institutions(s)” to “payment processor(s); bank(s)/financial institution(s)”. In Disclosure of Personally Identifying Information, updated the trademark notices for Seagate and SanDisk and and updated the reference to talent and literary agents or agencies (in the list of examples of third-party vendors and/or service providers) to change “literary or talent agents or agencies” to “talent and/or literary agents and/or agencies” (mainly for wording consistency). In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added “Email header information” to the examples of “Internet or similar network activity information” (mostly for the avoidance of doubt, since such information would reasonably be encompassed by the “Other information about an individual or household’s use of and/or interactions with …” bullet point and/or the examples already listed in the other categories). For the same reasons, amended the “Network, shared device, and/or online service information” bullet point to add “databases” after “shared printers and/or other devices” and added “scientific and/or engineering studies” to the listed examples in the “Authorship, other credits, and/or rights holder information” bullet point (under “Professional or employment-related information”).
    • July 9, 2021: In Information I Receive from Third Parties for Security Purposes, changed “EasyList” to “the EasyList authors” and changed “adblock-nocoin-list” to “NoCoin adblock list” (which is the proper title of that list). In the list of examples of third-party vendors and/or service providers in Disclosure of Personally Identifying Information, changed the phrase “the various EasyList adblocking and other filter lists” to “the various ad-blocking and other filter lists by the EasyList authors” for consistency and updated the reference to Notepad++ to also include its various plugins. Elsewhere in that list, updated the bullet point on “Other types of service providers” to rename it “Other types of vendors and/or service providers” (which is a more accurate summation of its contents) and added language about vendors, service providers, charitable organizations, and/or other organizations and/or entities through which and/or to which I sell, offer, donate, and/or dispose (and/or advertise and/or announce the sale, offer, donation, and/or disposal) of my copies of published works, other personal property and/or goods, and/or vehicles. Fixed some accidental uses of the editorial “we”: In Other Inquiries, Messages, and Support Requests, changed “our applicable service providers” to “my applicable service providers”; in the Data Retention subsection of the Financial Transactions Policy, changed “of our business-related financial transactions” to “of my business-related financial transactions”; and in the references to Rosewill and Sabrent in Disclosure of Personally Identifying Information, changed “our peripheral devices …” to “my peripheral devices …”; and changed “our” to “my” in the May 3, 2021 and March 26, 2021 entries in this recent revisions list to avoid confusion. In California Privacy and Data Protection Rights, updated the paragraph on identity verification to add a sentence about the regulatory restrictions on the use and retention of any additional personal information I may request for identity verification purposes and split that paragraph at “Also, please note …” (changing the beginning of that sentence to “Please note …” for better flow). Also fixed an instance of incorrect capitalization of “DVDs” in the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice and the Jan. 17, 2021 entry in this recent revisions list (which was apparently when that error originally occurred).
    • July 7, 2021: In Information I Receive from Third Parties for Security Purposes, changed “the Play Protect feature of Google Play” to “the Google Play Protect feature of Google Play” and updated the Google trademark notice to note that the names of many other Google products and/or services are also trademarks of Google LLC. Updated the similar statement in Disclosure of Personally Identifying Information to make them consistent. In Disclosure of Personally Identifying Information, updated the reference to Dell to change “devices” to “devices, displays, peripheral devices, and/or other components”; updated the reference to HP to change “and their associated drivers …” to “and/or their associated drivers …”; and updated the reference to LG to change “LG Electronics” to just “LG”; change “displays and/or other peripheral devices” to “devices, displays, peripheral devices, and/or other components”; and add a trademark notice. (This is all hairsplitting, but I’m trying to maintain some semblance of wording consistency in this unwieldy list.) Also fixed some minor punctuation issues in that section. In Your Rights (GDPR and Other National or State Privacy Laws), split the first paragraph at “For example, the rights provided by the GDPR …” for greater clarity. In Data in Submitted Images, Disclosure of Personally Identifying Information, Your Rights (GDPR and Other National or State Privacy Laws), and Information-Sharing Disclosures (Shine the Light Law), changed the phrase “through one of the methods” to “via any of the methods” for wording consistency. In the Information Shared for Business or Commercial Purposes and Record-Keeping Disclosure Methodology subsections of the the CCPA Information Collection and Sharing Notice and in Controller/Responsible Party, Questions, and How to Reach Me, also changed “using any of the methods” to “via any of the methods” for wording consistency. In Controller/Responsible Party, Questions, and How to Reach Me, also changed the phrase “regarding the rights mentioned in …” to “regarding any of the rights described in …” and changed “your rights under the CCPA” to “your rights under the California Consumer Privacy Act of 2018 (CCPA)” for clarity.
    • July 6, 2021: In Information Captured by Service/Software/App/Device Telemetry, amended the last sentence to change “and my ability to perform my work and provide my services” to “and my ability to operate this website and/or provide my services.” In Disclosure of Personally Identifying Information, updated the reference to Realtek Semiconductor Corp. to change the phrase “devices and peripherals” to “peripheral devices and/or other components” for wording consistency.
    • July 5, 2021: Added two paragraphs to Embedded Content referring visitors to the Cookie Notice for information about cookies that may be set by embedded content providers and explaining that embedded content providers may use their own third-party service providers, which are not necessarily listed in that section or in the Cookie Notice (being outside of my control). In the Transaction-Related Information Gathering subsection of the Financial Transactions Policy, changed “determining what products and/or services to offer in the future” to “determining what products, services, and/or content to offer in the future”. In the Refunds and Returns subsection, changed “goods or services” to “goods and/or services”; changed “prior to the delivery by me of the applicable good(s) or the performance by me of the applicable service(s)” to “prior to the delivery by me of the applicable good(s) and/or the performance by me of the applicable service(s)” and changed “the applicable good(s) or service(s) have been delivered or performed” to “the applicable good(s) and/or service(s) have been delivered and/or performed”. In the Information Sharing subsection, changed “products and/or services” to “goods, products, services, and/or content”. In Transaction-Related Information I Receive from Third Parties, changed the various instances of “products and/or services” to “goods, products, services, and/or content” for completeness and changed “completed sales or transactions” to “completed transactions” (since obviously a sale is a transaction). In Other Information I Receive from Third-Party Sources, amended the parenthetical reference to the CCPA Information Collection and Sharing Notice to add a sentence clarifying that the definitions and categories listed in that notice are based on California law, and other jurisdictions may have different definitions and/or categories. In Disclosure of Personally Identifying Information, updated the reference to Audacity to include a link to their worrisome new privacy notice. Also updated the trademark notice. In California Privacy and Data Protection Rights, changed “in the past 12 months” to “in the preceding 12 months” for internal consistency; deleted the phrase “up to two times in a given 12-month period” (since this limit appears to no longer be included in the regulations); changed “You have the right to request the deletion of your personal information” to “You have the right to request the deletion of personal information I have collected about you in the course of my business”; and changed “The right to not be discriminated against or penalized …” to “The right to not receive discriminatory treatment …” (for consistency with the regulatory wording). Added a sentence to the paragraph beginning “In order to better safeguard your privacy …” noting that more information about the identity verification requirements can be found in the applicable section of the Do Not Sell My Personal Information page. Made some clarifications to the CCPA Information Collection and Sharing Notice: Changed the first sentence from “The California Consumer Privacy Act of 2018 (CCPA) also requires certain businesses to disclose the categories of information that the business has collected about individuals or households during the preceding 12 months; that the business disclosed for business purposes during the preceding 12 months; and that the business disclosed for commercial purposes during the preceding 12 months” to “The California Consumer Privacy Act of 2018 (CCPA) also requires certain businesses to provide California residents with additional information about the categories of personal information the business collects, the sources from which the business gets that personal information, and how and why the business uses and/or shares that personal information.” In the Categories of Personal Information Collected subsection, revised the first sentence to change “The following list summarizes the categories of personal information I have collected …” to The “following list summarizes the categories of personal information I collect and/or have collected …” In the second paragraph (beginning “Please note that …”), inserted the phrase “and/or my other creative endeavors” after “(and/or on which I consult)” and added a parenthetical sentence after “about site visitors”: “(Simply reading a single magazine article or encyclopedia entry about some public figure as part of my research can sometimes provide me with most if not all of the categories of information listed here!)” In the paragraph beginning “The statutory definitions …” changed “in the applicable statutes” to “in the applicable statutes and/or regulations.” In the paragraph beginning “The examples listed for each category …” changed “may have gathered” to “may gather and/or have gathered” and “have collected on …” to “collect and/or have collected about …” (This notice is intended to encompass both aspects, which these changes hopefully make clearer.) In the following paragraph, changed “During the past 12 months …” to “In the last 12 months …” In the Record-Keeping Methodology subsection, changed “requester” to “requestor” (which is how the regulations spell it) and changed “until the requestor opts-in” to “until the consumer opts-in” (again for consistency with the regulatory framing.
    • July 3, 2021: In the Information Sharing subsection of the Financial Transactions Policy, changed “To my independent contractors, employees, agents, and/or business partners (if any) …” to “To my independent contractors, employees, agents, business partners, vendors, and/or service providers (as applicable) …” (Technically, vendors and/or service providers were already covered there under the “As otherwise described …” bullet point, but this is hopefully clearer.) In another bullet point in that same list, changed “for a dispute or fraud investigation” to “in connection with a dispute or fraud investigation” and changed “contractual agreements with said payment processor(s) …” to “contractual agreements (if any) with such payment processor(s) …” In the paragraph following that list, changed “may also use relevant portions of that information as part of and/or in connection with reviews and/or other commentary” to “may also use and/or disclose relevant portions of that information in connection with customer service, support, warranty, and/or insurance matters, and/or as part of and/or in connection with reviews and/or other commentary” and added an additional illustrative example to the last sentence of that paragraph. Made the same changes to the equivalent language in Transaction-Related Information I Receive from Third Parties. [I further revised both sections after initial publication, as I’d initially omitted the warranty and insurance parts.] In Disclosure of Personally Identifying Information, added Rosewill and Sabrent to the list of examples of third-party vendors and/or service providers (in the “Other providers whose services enable me to operate and/or secure my system(s), device(s), and/or data” bullet point). Did some further refinement of the CCPA Request Metrics (Record-Keeping Disclosures) subsection of the of the CCPA Information Collection and Sharing Notice, changing “subsequently was able to verify the requester’s identity to sufficient certainty” to “subsequently verified the requester’s identity to a degree of certainty sufficient”. Corrected an incorrect reference to the Controller/Responsible Party, Questions, and How to Reach Me section (which used the editorial we rather than the first person singular). Updated the various references to CCPA rights on this page to change the capitalization of “Right to Access” to “right to access” in hopes of reducing confusion. (The law uses that term synonymously with “Right to Know,” which is the term used in the CCPA regulations.) Also fixed one of those references I missed in yesterday’s revisions, for internal consistency. Updated several earlier items in this recent revisions list to remove erroneous reference to the Your California Privacy Rights page (since this website doesn’t currently have a separate page for that).
    • July 2, 2021: In Disclosure of Personally Identifying Information, updated the reference to CompanionLink Software to change “products/services” to “products and/or services”; change “mobile device(s)” to just “device(s)”; and change “data the service processes” to “data their services process” (for better grammar). Also added “electronic signature and/or agreement services” to the list of examples of third-party vendors and/or service providers (in the “Other types of service providers” bullet point) and updated the bullet point on services and/or service providers that help me promote, sell, and/or offer my content, services, and/or other creative endeavors to change “booksellers and/or other retailers and/or marketplaces” to “booksellers, other retailers, marketplaces (of whatever kind)” (mainly for less awkward grammar). In California Privacy and Data Protection Rights, updated the “Right to Know” bullet point to be more consistent with the language of the applicable regulations. Also updated other references to the CCPA rights throughout this page to make clearer that “Right to Access” is an alternative term for “Right to Know” so far as the law and its regulations are concerned. Removed some duplicate text I discovered adjacent to those references. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the second bullet point under “Characteristics of classifications protected by law” to change “Race, color, ancestry, national origin, and/or citizenship status” to “Race, color, ancestry, national origin, citizenship, and/or residency”. In the Information Shared for Business or Commercial Purposes subsection, changed “Individuals or entities …” to “Individuals and/or entities …” Added a new CCPA Request Metrics (Record-Keeping Disclosures) subsection to the CCPA Information Collection and Sharing Notice disclosing the number of CCPA requests received in the previous calendar year. (It is very unlikely that I could be deemed to even approach the threshold where these disclosures would be required, but I add it so that no one yells at me about it.) Updated the Table of Contents accordingly. (I did some tinkering with these additions after initial publication.) Throughout this document, changed various instances of the phrase “or otherwise offer” to “and/or otherwise offer” for wording consistency. Corrected the June 25, 2021 entry below to fix an inadvertent use of “we” rather than “I.”
    • July 1, 2021: In Categories of Information and Purposes for Collection, amended the “Security, troubleshooting, quality control, and service improvement” bullet point to change “of others and/or the public at large” to “of others and/or of the public at large” for internal consistency. In Comments, changed “widgets” to “Widget(s)” for correct stylization and because the number may vary. In Disclosure of Personally Identifying Information, updated the “required by law” bullet point to change “or in connection with an audit …” to “and/or in connection with an audit …” Also updated the “contractually obligated” bullet point to add client(s), licensor(s), and licensee(s) (since this bullet point could also apply to disputes related to agreements for my services and/or license agreements pertaining to the use of intellectual property); changed “third-party service(s) to “service provider(s)” for internal consistency; added the parenthetical phrase “(as applicable)”; changed “a dispute, investigation, or audit” to “a dispute, an investigation, an audit, and/or arbitration” and deleted the remainder of that sentence; changed “social media websites” to just “social media”; added an additional example regarding binding arbitration; and added a final parenthetical note clarifying that these are representative examples, not an exhaustive list of possible scenarios. In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, amended the bullet point beginning “Any government agency, investigator …” to change “that requires or compels” to “that legally requires or compels” for greater clarity. In the subsequent bullet-pointed list in that section, split the “legally or contractually obligated” bullet point into two separate bullet points (“required by law” and “contractually obligated,” respectively), also updating the wording of those bullet points to better align them with the current wording of the equivalent bullet points in Disclosure of Personally Identifying Information. Removed some extra spaces. Tinkered with today’s revisions after initial publication in the interests of clarity and better grammar.
    • June 30, 2021: In Definitions, updated the definition of “Malicious activity” to add “my business” between “my system(s) and/or device(s)” and “me” for completeness and internal consistency. In Categories of Information and Purposes for Collection, amended the “Security, troubleshooting, quality control, and service improvement” bullet point to change the phrase “from malicious activity” to “from malicious activity and/or other threats (and/or possible threats) to my property, rights, security, and/or safety, and/or the property, rights, security, and/or safety of others and/or the public at large” for greater consistency with the existing language in Disclosure of Personally Identifying Information and the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice. In Financial Transactions Policy, changed “third-party vendors, retailers, or services, which are outside of my control” to “third-party vendors, retailers, marketplaces, or services that are outside of my direct control” for greater clarity and completeness. In Disclosure of Personally Identifying Information, updated the reference to VideoLAN to change “the open source VLC media player developed by VideoLAN” to “the VLC media player and/or other open source multimedia software projects of VideoLAN” and add a link to the repository for all VideoLAN open source projects (slightly adjusting the existing wording of the parenthetical aside for greater clarity with this addition). Later in that section, changed “other retailers, vendors, distributors, and/or providers” to “other retailers, vendors, marketplaces, distributors, and/or providers” and changed “booksellers or other retailers” to “booksellers and/or other retailers and/or marketplaces” for completeness and internal consistency. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “Information about retailers, vendors, and/or service providers” (under “Commercial information”) to “Information about retailers, vendors, marketplaces, and/or service providers” for internal consistency. (The addition of “marketplaces” is mainly for the avoidance of doubt; to the extent that a marketplace could be considered something other than a retailer or vendor, it would certainly qualify as a service provider!) Fixed a typo in this entry in the revisions list.
    • June 29, 2021: Updated Security Scans, Embedded Content, and Disclosure of Personally Identifying Information to reflect that Media Temple, Inc. d/b/a Sucuri is now called GoDaddy Media Temple, Inc. d/b/a Sucuri. In Disclosure of Personally Identifying Information, also updated the trademark notice for Khan Academy.
    • June 26, 2021: Made some minor updates to certain PayPal trademark notices throughout this page and the Cookie Notice. Also fixed punctuation errors in the trademark notices for Akamai and Opera in Disclosure of Personally Identifying Information. Updated the Cookie Notice to indicate that the domain abmr.net is owned by Akamai and add a link to their Privacy Trust Center. In the Transaction-Related Information Gathering subsection of the Financial Transactions Policy, made some minor clarifications to the paragraph describing the contents of PayPal transaction reports. Throughout the text, changed various instances of the phrase “for me or on my behalf” to “for me and/or on my behalf” for greater wording consistency.
    • June 25, 2021: In Comments, changed “or suspicious code; or if you posted …” to “and/or suspicious code; and/or if you posted …” and changed the phrase “certain types of HTML/PHP or other code” to “certain types of HTML and/or other code”. In Contact Forms, changed “or suspicious code” to “and/or suspicious code”; changed “flagged as spam or automatically deleted” to “flagged as spam and/or automatically deleted”; changed “contains HTML/PHP code” to “contains HTML and/or other code”; and changed “may be removed” to “may be automatically removed” for clarity. In Disclosure of Personally Identifying Information, updated the reference to phpMyAdmin to add an additional trademark notice. Under the “Manufacturers of other electronic devices I may use” bullet point in the same list of examples of third-party vendors and/or service providers in that section, changed “various USB drives, memory cards, or drive enclosures” to “various USB flash drives, memory cards, hubs, and/or drive enclosures”. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “Other group and/or organization membership and/or affiliation information” (under “Professional or employment-related information”) to “Membership in and/or affiliation with other organizations and/or groups” for greater clarity.
    • June 23, 2021: In Categories of Information and Purposes for Collection, clarified the “Research and publishing” bullet point by changing “as part of the research involved in creating and/or publishing …” to “in researching, creating, and/or publishing …” (This revision doesn’t reflect any substantive change in how or why I use information, just my ongoing efforts to properly describe it!) Also corrected a typographical error in that item (inadvertent duplication of the word “other” before “writing/editing/writing consulting work”). In the “Recruitment/hiring/employment or business partnerships” bullet point in that same list, changed both instances of the phrase “formal professional relationships” to just “professional relationships” (again, mainly for clarity and to better describe the intended scope). In Data Related to Recruitment/Hiring/Employment or Business Partnerships, amended the last sentence of the first paragraph to add the phrase “(but without limitation)” after “for example,” for greater emphasis.
    • June 21, 2021: Updated the Financial Transactions Policy to remove some redundant text from the Data Retention subsection (most of which is already stated nearly verbatim in the Transaction-Related Information Gathering subsection), moved the language about service agreements with payment processors and/or financial institutions to the earlier subsection (where it more logically belongs), and revised the remaining text of the Data Retention subsection to note that I generally must indefinitely retain records of my business-related transactions for bookkeeping and compliance purposes (as also explained in the subsequent Transaction-Related Information I Receive from Third Parties and Additional Information About Data Retention sections). In Disclosure of Personally Identifying Information, updated the reference to link shorteners to change “link shorteners and/or other hyperlink redirection services or tools” to “link shorteners and/or other hyperlink redirection services and/or tools” for completeness.
    • June 16, 2021: In Disclosure of Personally Identifying Information, updated the references to Google in the list of examples of third-party vendors and/or service providers to fix a punctuation issue and incorrectly nested parentheses.
    • June 14, 2021: In Who I Am, changed “DreamHost’s Privacy Policy” to “the DreamHost Privacy Policy” (adjusting the anchor text accordingly). In Embedded Content, Information Captured by Service/Software/App/Device Telemetry, and Disclosure of Personally Identifying Information, adjusted some references to Google to omit the possessive. Similarly adjusted references to Google in the Cookie Notice. Also similarly removed the possessive in the references to Twitter in Embedded Content and slightly adjusted the trademark notices in the bullet point on YouTube videos. Throughout the CCPA Information Collection and Sharing Notice, changed “CCPA’s” to “CCPA” (which may be more precise, given the morass of regulations the law has spawned beyond the actual text of the statutes). In the Categories of Personal Information Collected of the CCPA Information Collection and Sharing Notice, revised the bullet point beginning “Other information about an individual or household’s use of and/or interactions with …” (under “Internet or similar network activity information”) to add “messages” to the enumerated examples. In the bullet point beginning “Publishing histories/bibliographies …” (under “Professional or employment-related information”, added “translators” to the enumerated examples.
    • May 30, 2021: In the “Other types of service providers” bullet point under Disclosure of Personally Identifying Information, changed “other applicable telephony services and/or email providers” to “other applicable telephony and/or email services”. Also added HandBrake and MakeMKV to the list of examples in the “Other providers of software, apps, tools, and/or services …” bullet point in that section. (Amended shortly after initial publication to correct capitalization.)
    • May 28, 2021: In the list of examples of third-party vendors and/or service providers in Disclosure of Personally Identifying Information, changed “film and/or photo development, film and/or photo processing, video conversion, and/or other processing services for audiovisual materials” to “processing, conversion, and/or duplication services for photos, film, video, audio recordings, other audiovisual materials, and/or other such content, such as (without limitation) film and/or photo development and/or processing, photo printing, video and/or audio conversion, and/or videodisc and/or phonorecord production”.
    • May 26, 2021: In Categories of Information and Purposes for Collection (and the equivalent list in the version of the Collection Purposes subsection of the CCPA Information Collection and Sharing Notice), renamed the Security, troubleshooting, quality control, and technical improvement bullet point “Security, troubleshooting, quality control, and service improvement” and changed the phrase “troubleshoot and resolve technical problems” to “troubleshoot and/or resolve technical problems”. Made the former change to the “Purpose(s)” bullet points throughout this page for consistency. In Website Server, Error, and Security Logs, changed “troubleshooting, and/or technical improvement purposes and/or for legal reasons” to “troubleshooting, and/or service improvement purposes, and/or for legal reasons,” also for consistency. In Security Scans, changed “for ongoing security, troubleshooting, and/or technical improvement purposes and/or for legal reasons, and/or if it pertains …” to “for ongoing security, troubleshooting, and/or service improvement purposes; for legal reasons; and/or if it pertains …” for consistency and better grammar. In the Transaction-Related Information Gathering subsection of the Financial Transactions Policy, updated the last paragraph to change “for service improvement purposes” to “to troubleshoot and/or resolve technical problems, and/or for service improvement purposes” (something that was already indicated by the Purpose(s) bullet at the beginning of this section, but which I realized was inadvertently omitted from the narrative list). In Transaction-Related Information I Receive from Third Parties, changed “for service improvement and/or troubleshooting purposes” to “to troubleshoot and/or resolve technical problems, and/or for service improvement purposes” for internal consistency.
    • May 25, 2021: In Disclosure of Personally Identifying Information, updated the reference to gitg to correct the capitalization of Git and add appropriate trademark notices.
    • May 21, 2021: In Information I Receive from Third Parties for Security Purposes, updated the sentence beginning “From time to time, I may also receive additional security-related information from …” to add three clauses (set off with semicolons) to the existing list: “other web hosts and/or email services; online services and/or online accounts; other vendors and/or service providers”.
    • May 18, 2021: In the Transaction-Related Information Gathering subsection of the Financial Transactions Policy section, added a sentence to the paragraph beginning “If you make a payment …”: “The receipts, payment confirmations, and/or other transaction-related notices I receive when I make payments and/or purchases via that service may contain personal information similar to that found in the transaction reports for payments I receive via PayPal.” In the last paragraph of that subsection, changed “process and complete your transaction(s)” to “process and/or complete the applicable transaction(s)” and added a new clause to the last sentence after “a particular business or commercial decision,” set off with a comma: “and/or describing my experience with a specific transaction as part of a review of the applicable vendor(s).” Fixed a typo in Transaction-Related Information I Receive from Third Parties, changing “a fulfillment service might me us” to “a fulfillment service might warn me”.
    • May 16, 2021: In Definitions, simplified and clarified the definition of “Errors and suspicious activity.” In Security Scans, revised the paragraph beginning “In addition, my web host also hosts the email servers for many of my email addresses …” for greater clarity. In the Information Sharing subsection of the Financial Transactions Policy section, changed “and/or for my legal protection” to “for legal compliance and/or audit purposes, and/or for my legal protection” (set off with a comma) for greater clarity. (I’ve always intended the latter phrase to encompass the former, as well as other legal situations that might not be as clear cut, but this hopefully makes the intent clearer.) Later in that same section, changed “or if I have received a subpoena …” to “and/or if I have received a subpoena …”
    • May 14, 2021: In the Refunds and Returns subsection of the Financial Transactions Policy, changed “pertaining directly to aaronseverson.com” to “that pertain directly to the aaronseverson.com website” and added a paragraph after the bullet-pointed list to clarify that payments shall be eligible for refunds and/or returns to the extent required by the policies of the applicable payment processor(s) and/or financial institution(s) or as otherwise required by law. In the Collection Sources subsection of the of the CCPA Information Collection and Sharing Notice, amended the “Nonpublic documents, records, collections, and/or archives” bullet to change “unreleased scripts, outtakes, and/or other materials from film, television, radio, and/or other media projects” to “unreleased versions, outtakes, scripts, and/or other materials from film, television, radio, and/or other media projects” and change “internal business records, reports, and/or documents” to “internal business and/or organizational records, reports, memoranda, documents, and/or other materials”.
    • May 12, 2021: As a global change, changed the spelling of “non-public” to “nonpublic” throughout (except for past entries in this Recent Revisions list). In Other Information I Receive from Third-Party Sources, changed various instances of the phrase “public and/or private” to “public and/or nonpublic” for greater clarity. In Data Related to Recruitment/Hiring/Employment or Business Partnerships, changed “background check services” to “fingerprinting and/or background check services”; changed “professional references or information about previous clients and/or business ventures” to “professional references and/or information about current and/or previous clients, customers, and/or business ventures”; and changed “professional references or previous clients …” to “current and/or past colleagues and/or coworkers, current and/or past clients and/or customers, current and/or past business partners, professional references, current and/or past instructors and/or students …” In Disclosure of Personally Identifying Information, updated the list of examples of third-party vendors and/or service providers to similarly change “background check services” to “fingerprinting and/or background check services” for completeness. (For the record, I’ve heretofore never used fingerprinting services in the course of my business, but I can envision a number of scenarios in which I conceivably might, hence the addition.) In the Categories of Personal Information Collected of the CCPA Information Collection and Sharing Notice, updated the “Education information” bullet point to change “information about instructors, coursework, readings, academic projects, and/or theses” to “information about instructors, students, coursework, readings, academic projects, and/or theses”. In the Collection Sources subsection, updated the bullet point beginning “Subject matter experts …” to change “possibly including (again without limitation) other members of a given household and/or family” to “such as (again without limitation) friends, current and/or past colleagues and/or coworkers, current and/or past clients and/or customers, current and/or past business partners, professional references, current and/or past instructors and/or students, and/or other members of a given household and/or family”. Added a bullet point to that list: “Nonpublic documents, records, collections, and/or archives (e.g., unpublished correspondence, manuscripts, and/or interviews; unreleased scripts, outtakes, and/or other materials from film, television, radio, and/or other media projects; internal business records, reports, and/or documents; school transcripts)”. (Tinkered a bit with the precise wording of these changes after initial publication.)
    • May 11, 2021: In Information I Receive from Third Parties for Security Purposes, further adjusted the references to EFF to remove the duplicate policy link and again reorder the trademark notice. In Other Information I Receive from Third-Party Sources, updated the paragraph beginning “From time to time, site visitors …” to change “site visitors or personal and/or professional acquaintances” to “site visitors and/or personal and/or professional acquaintances” (since site visitors and acquaintances are obviously not mutually exclusive!). In the Collection Sources subsection of the of the CCPA Information Collection and Sharing Notice, briefly revised the bullet point beginning “Subject matter experts …” to change “(which in some cases may include (without limitation) personal and/or professional acquaintances, possibly including (again without limitation) other members of a given household and/or family)” to “(which in some cases may include (without limitation) personal and/or professional acquaintances and/or other members of a given household and/or family),” but then reconsidered and restored the original wording after initial publication. In the last bullet point in that same list, changed “publishers or other third parties” to “publishers and/or other third parties” (mostly for internal consistency).
    • May 10, 2021: In the Taxes subsection of the Financial Transactions Policy, changed “VAT, or other tax” to “VAT, GST, and/or other taxes”. In Information I Receive from Third Parties for Security Purposes, changed “Privacy Badger and/or other browser add-ons or privacy tools Electronic Frontier Foundation” to “Privacy Badger® and/or other browser add-ons or privacy tools offered by the Electronic Frontier Foundation® (EFF®)”; added a parenthetical note that those add-ons and/or tools may incorporate and/or otherwise use information and/or rules sets provided by other third parties; and updated the trademark notice to place the listed marks in a more consistent order. In the Taxes subsection of the Financial Transactions Policy, changed “VAT, or other tax” to “VAT, GST, In Disclosure of Personally Identifying Information, added some additional examples to the list of examples of third-party vendors and/or service providers: “photography, videography, and/or filming services and/or studios”; “recording, editing, and/or mixing services for audio, video, and/or audiovisual content”; “sound and/or lighting technical and/or engineering services”; and “convention centers, conference centers, meeting rooms, exhibit and/or exhibition halls, concert halls, stadiums, arenas, places of worship, and/or other such venues, and/or ticket brokers and/or other vendors who sell or otherwise provide tickets for and/or admission to such venues (for purposes of attending, obtaining tickets for and/or admission to, arranging, organizing, and/or otherwise accessing and/or utilizing conventions, conferences, meetings, exhibitions, screenings, public performances, athletic events, ceremonies, services, and/or other such events, and/or the facilities therefor); event planning, management, and/or organization services; private security services”. Also changed “photo development, photo processing” to “film and/or photo development, film and/or photo processing”; updated the references to Logitech to change “… and Website Privacy Statement” to “and/or their Website Privacy Statement”; added a registered trademark symbol to the reference to the Electronic Frontier Foundation, added “(EFF®)” parenthetically after it, and updated the trademark notice to put the listed marks in consistent order; updated the reference to Epic Privacy Browser to change “integrated proxy/VPN service” to “encrypted proxy/VPN service browser extension; and added a trademark notice for ImgBurn. Updated the Cookie Notice to clarify that there may be multiple versions of certain administrative and login and/or password-protected posts cookies. Also made a couple of minor punctuation adjustments.
    • May 9, 2021: In Information You Provide to Me, changed “financial or legal matters” to “financial and/or legal matters”. In the Information Sharing subsection of the Financial Transactions Policy section, changed “accountant/bookkeeper, tax preparer, and/or tax attorney” to “accountant/bookkeeper(s), tax preparer(s), and/or tax attorney(s)” (mostly for wording consistency with the rest of that list). In the Categories of Personal Information Collected of the CCPA Information Collection and Sharing Notice, revised the “Records of financial transactions” bullet point (under “Additional categories of personal information”) to change “including, as applicable, but without limitation, transaction ID numbers, tax-related information, and/or check/bank account information” to “including, where applicable, but without limitation, transaction ID numbers, tax-related information, billing addresses, full and/or partial card information, check information, bank account information, and/or other account details”. In the Information Shared for Business or Commercial Purposes subsection, changed “tax preparer and/or other financial or legal professionals for administrative and compliance purposes” to “tax preparer(s) and/or other financial and/or legal professionals for administrative and/or compliance purposes” for internal consistency.
    • May 8, 2021: In the Disclosure of Personally Information, updated the reference to LiveJournal in the list of examples of third-party vendors and/or service providers to also refer to the archiving tool I’ve used with that service.
    • May 5, 2021: In Disclosure of Personally Identifying Information, added “cryptographic key servers and/or other encryption key management services and/or tools” to the list of examples of third-party vendors and/or service providers.
    • May 3, 2021: In Other Inquiries, Messages, and Support Requests, added a sentence to the paragraph beginning, “As explained in the …”: “I (and/or my applicable service providers) may also perform other types of automated tests on messages I receive — for example (but without limitation), I may automatically filter, flag, and/or categorize certain types of messages to help me better organize and manage my inbox(es).” In the Categories of Personal Information Collected of the CCPA Information Collection and Sharing Notice, added a bullet point under “Other types of personal information”: “Information about social class, rank, position, title, and/or investiture, of whatever type(s) and/or source(s)”.
    • May 2, 2021: In the Financial Transactions Policy, added “research and publishing” to the Purposes bullet point; rearranged the Transaction-Related Information Gathering section to put certain text in more logical order (making some minor text edits to suit the revised structure); and added additional language regarding other uses of transaction-related data, particularly aggregated data such as total sales and/or revenue. Also added similar language to Transaction-Related Information I Receive from Third Parties and added “research and publishing” to the Purposes bullet point of that section for consistency. (These revisions don’t represent any substantive change in how or why I collect and/or use information in these contexts; the changes are intended for clarification and to spell out certain things I had previously assumed would be reasonably self-evident.)
    • April 30, 2021: In Disclosure of Personally Identifying Information, updated the list of examples of third-party vendors and/or service providers to change “other search engines and/or other research tools” to “other search engines and/or other research and/or reference tools, services, facilities, and/or resources” for completeness. Later in that list, also updated the trademark notice for Microsoft Bing Search to include Bing Maps and updated the trademark notice for the International DOI Foundation marks to add an additional registered trademark symbol. Also changed “ride-share” to “rideshare” (since the latter is now generally accepted as a word) and changed “travel via such means and/or arrange such transportation for someone” to “use and/or arrange such transportation” for clarity and conciseness. In the Categories of Personal Information Collected of the CCPA Information Collection and Sharing Notice, updated the bullet point beginning “Authorship, other credits, and/or rights holder information” (under “Professional or employment-related information”) to add “choreography” to the parenthetical examples.
    • April 26, 2021: In Disclosure of Personally Identifying Information, updated the reference to museum, libraries, archives, and/or databases in the list of examples of third-party vendors and/or service providers to change “their computers, catalogs, databases …” to “their collections, holdings, catalogs, databases, computers …” and changed “librarians, archivists, and/or other staff” to “librarians, archivists, docents, guides, other staff, workers, and/or volunteers, as applicable” for the avoidance of doubt. (Hopefully, this was all already reasonably self-evident!).
    • April 25, 2021: In the Taxes subsection of the Financial Transaction Policy, changed “such as sales or use tax” to “e.g., sales or use tax”; changed “or other tax” to “and/or other tax”; changed the word “collect” to “collect and/or withhold” throughout that subsection; and changed “are your sole responsibility” to “are your sole responsibility, as are any tax returns and/or other documents you may be required to submit to the applicable tax agency or agencies in connection with such transactions.” In the Information Sharing subsection of the Financial Transactions Policy, changed “or in connection with audits …” to “and/or in connection with audits …” In the list of examples of third-party vendors and/or service providers under Disclosure of Personally Identifying Information, changed “restaurants, meal delivery, and/or food/grocery delivery services” to “restaurants, caterers and/or other food preparation services, meal delivery services, and/or food and/or grocery delivery services” for completeness. In the Categories of Personal Information Collected of the CCPA Information Collection and Sharing Notice, added a bullet point under “Professional or employment-related information”: “Information about professional clients, clientele, customers, users, advertisers, vendors, suppliers, contractors, subcontractors, and/or service providers”. In the bullet point about other professional relationships, changed “including, but not limited to” to “such as, without limitation” and changed “and/or partnerships” to “endorsement deals, contractor and/or subcontractor relationships, colleagues, coworkers, mentor/mentee relationships, professional collaborations, joint ventures, and/or partnerships” for more thorough illustration.
    • April 24, 2021: In the Information Sharing subsection of the Financial Transactions Policy, updated the second bullet point to change “common carrier, or shipping agency” to “common carrier(s), and/or shipping agency (or agencies)” and change “in the event I must mail, ship, or deliver anything in connection with your transaction” to “for purposes of sending, receiving, and/or tracking the status of transaction-related correspondence, shipments, and/or deliveries” for greater clarity and completeness. In the subsequent bullet point, changed “the applicable third party or parties” to “the applicable person(s) or entity” and changed “made as a gift for someone” to “you make as a gift for someone else” for greater clarity. In Additional Information About Data Retention, changed “SMS/MMS text messages” to “text messages” (since not all modern text messages use the SMS or MMS protocols, and it makes little sense to try to enumerate different text message protocols in this policy). In Disclosure of Personally Identifying Information, added “data recovery services” to the examples of third-party vendors and/or service providers and changed “data and/or document destruction/shredding services” to “data and/or document destruction and/or shredding services” for greater clarity. Amended the April 8, 2021 and April 10, 2021 items in this recent revisions list to change erroneous references to the “Disclosure of Personal Information” section to “Disclosure of Personally Identifying Information” (the correct name of the applicable section).
    • April 21, 2021: In Information I Receive from Third Parties for Security Purposes, updated the paragraph beginning “In some cases, I may perform WHOIS, RDAP …” to change “on visitors’ IP addresses and/or domain names” to “on certain IP addresses and/or domain names” and change “directed at the website or at me” to “directed at and/or otherwise involving this website and/or me.” In the next sentence, changed “or” to “and/or”. In the following sentence, changed “to which my devices connect or try to connect” to “to which my devices and/or systems connect or attempt to connect (and/or that connect or attempt to connect to my devices and/or systems).” In the last sentence of that paragraph, changed “make or attempt to make” to “make and/or attempt to make”. In Disclosure of Personally Identifying Information, changed “WHOIS and/or RDAP (Registration Data Access Protocol) lookup providers” to “WHOIS, RDAP (Registration Data Access Protocol), and/or similar lookup providers” and changed “an IP address or a domain registration” to “IP addresses and/or domain registrations” for internal consistency. Elsewhere in that section, amended the bullet point beginning “If the information is contained in and/or otherwise incorporated …” to change “or a useful article” to “a useful article, or some other object”; change “to such work(s), copies, or article(s)” to “to such work, copy, article, or object”; change “without damaging the item or article in question” to “without damage and/or defacement”; and change “those items or articles” to “that work, copy, article, or object.” In the text following the bullet-pointed list in that section, changed “and/or useful article(s)” to “useful article(s), and/or other object(s)” and changed “and/or such useful article(s)” to “and/or such article(s) and/or object(s)” for consistency. In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, similarly revised the bullet point beginning “If the information is contained in and/or otherwise incorporated …” and, in the subsequent paragraph beginning “As noted in …” changed “and/or useful article(s)” to “useful article(s), and/or other object(s)” for consistency. (These are just clarifications, taking into account that some objects these provisions would reasonably encompass wouldn’t necessarily qualify as “useful articles.”)
    • April 17, 2021: In Definitions, updated the “Domain name” definition to change “of the Internet service provider or mobile carrier” to “of the Internet service provider, mobile carrier, or server” (which is more correct). In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, rearranged the order of several bullet points under “Other types of personal information” to change “Information about membership in and/or affiliation with other types of groups and/or clubs” to “Information about membership in and/or affiliation with clubs, societies, fraternal orders, and/or other types of groups” for greater clarity and illustration. (I tinkered with this revised wording after initial publication.)
    • April 14, 2021: In Definitions, revised the definition of user agent information to clarify that web browsers, email clients, and search engine crawlers are just examples of user agents, not an exclusive list, and change “access web content” to “access and/or retrieve online content” (which is more accurate). Also changed “At a minimum, a browser’s user agent information typically reveals …” to “The information that may be revealed in this way naturally varies depending on the specific user agent involved. A web browser’s user agent information typically reveals, at a minimum, …” for clarity and changed “their specific combination of browser characteristics” to “their specific combination of user agent characteristics” (which is a bit more precise). In Disclosure of Personally Identifying Information, updated the recently added bullet point regarding landlord(s) to add the parenthetical phrase “(and/or their respective employees, contractors, and/or agents)” for the avoidance of doubt.
    • April 12, 2021: In the Refunds and Returns subsection of the Financial Transactions Policy, amended the “Other Purchases” bullet point to note that for services that I have partly performed, but not yet wholly completed, I reserve the right (except as otherwise required by law or the applicable payment processor(s) and/or financial institution(s)) to calculate refunds on a pro rata basis, depending on the nature of the service and the percentage or proportion already performed or otherwise completed. (I initially said “partially performed,” but changed it to “partly performed” and made some minor punctuation changes after initial publication.) Rearranged the language of that bullet point for clarity with this addition. Also amended the final sentence of each bullet point in that subsection to clarify that I may refund purchases or transactions in whole or in part, and to add a comma before “at my sole discretion” where there wasn’t one already. In the final bullet point in that subsection, also changed “any individual transaction” or “any individual transaction or transactions” for consistency. In Disclosure of Personally Identifying Information, added “copying and/or facsimile services” to the examples of third-party vendors and/or service providers (in the “Other types of service providers” bullet point). Elsewhere in that list, changed “encyclopedias and/or dictionaries, calculators and/or unit conversion tools …” to “encyclopedias and/or dictionaries, almanacs, calculators and/or unit conversion tools …”
    • April 10, 2021: In Definitions, changed “videos” to “films and/or other videos”. In Other Information I Receive from Third-Party Sources, changed “films or other videos” to “films and/or other videos” and changed “videos, audio interviews, and/or podcasts” to “films and/or other videos, audio interviews, and/or podcasts” (mostly for the avoidance of doubt). In Disclosure of Personally Identifying Information, added “icon generators” and “font and/or typeface providers and/or repositories” to the examples of third-party vendors and/or service providers; changed “other retailers or vendors” to “other retailers, vendors, distributors, and/or providers”; and changed “search for and/or purchase materials …” to “search for, purchase, and/or otherwise obtain and/or access materials …” Also added a bullet point to that list pertaining to my landlord(s). In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point beginning “Information about art, books …” (under “Commercial information”) to change “films, videos” to “films and/or other videos”; updated the bullet point about real property (also under “Commercial information”) to change “real property and/or lodgings” to “real property, residence(s), and/or lodgings” and change “particular lodgings and/or …” to “particular lodgings; a particular residence; and/or …” (mostly for clarification — “lodgings” was always intended to encompass residential accommodations as well as short-term lodgings); updated the bullet point on “Audio, electronic, visual, thermal, olfactory, or similar information” to change “videos” to “films and/or other videos”; and updated the bullet point beginning “Authorship, other credits …” (under “Professional or employment-related information”) to change “videos” to “films and/or other videos” for consistency. In the Collection Sources subsection, updated the bullet point beginning “Published and/or publicly available sources to change “film, videos television programs” to “films and/or other videos, television programs” for consistency and to fix a punctuation error. In the Information Shared for Business or Commercial Purposes subsection, updated the list following the sentence beginning “Actions like the following …” to change “names, photographs, videos, or biographical information” to “names, images depicting recognizable individuals, and/or biographical information” for clarity.
    • April 9, 2021: In Disclosure of Personally Identifying Information, updated the list of examples of third-party vendors and/or service providers to change “search for and/or purchase materials” to “search for and/or purchase materials, equipment, software, and/or supplies” for completeness. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the last bullet point under “Internet or similar network activity information” to change “applications, devices” to “applications, software, devices” for the avoidance of doubt. Corrected the March 5, 2021 entry in this recent revisions list to remove an erroneous reference to the Your California Privacy Rights page (since this website doesn’t currently have a separate page for that).
    • April 8, 2021: In Disclosure of Personally Identifying Information, added “sanitation, waste disposal, trash disposal, waste reclamation, and/or recycling services” to the list of examples of third-party vendors and/or service providers (in the “Other types of service providers” bullet point).
    • April 7, 2021: In Categories of Information and Purposes for Collection, updated the “Research and publishing” bullet point to change “creating and publishing my content” to “creating and/or publishing (and/or performing, broadcasting, exhibiting, and/or otherwise disseminating, as applicable) my content” and change “to create and/or publish” to “to create and/or publish (and/or perform, broadcast, exhibit, and/or otherwise disseminate)” to better align with the current language elsewhere in this policy. (These changes don’t reflect any actual change in how or why I collect and use information!) In Other Inquiries, Messages, and Support Requests, changed “may be published or disclosed in that context” to “may be published and/or otherwise disclosed in that context”. In Other Information I Receive from Third-Party Sources, changed “is intended for eventual publication (and/or public performance, exhibition, and/or broadcast, as applicable)” to “is intended for eventual publication (and/or public performance, broadcast, and/or exhibition, as applicable)” and changed “may be published and/or disclosed” to “may be published and/or otherwise disclosed” for wording consistency. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the second-to-last bullet point under “Internet or similar network activity information” to change “electronic devices, files, and/or data” to “electronic devices, files, messages, communications, and/or data” for completeness.
    • April 6, 2021: In Other Inquiries, Messages, and Support Requests, updated the paragraph referencing the Security Scans section to change “messages I send or receive via text or email …” to just “messages I send or receive …” and change “forwarded to me via email or text message” to “forwarded to me via some other means.” In the Information Sharing subsection of the Financial Transactions Policy, made a similar change in the paragraph referencing the Security Scans section, changing “send or receive via email or text” to “send or receive” for consistency. In those two sections and the Website Server, Error, and Security Logs; Comments; and Contact Forms sections, also changed “scanned for spam and/or malware” to “scanned for suspected spam, malware, and/or other suspicious activity” for wording consistency. In Data in Submitted Images, changed “When the image or media file is published …” to “If the image or media file is published …”
    • April 5, 2021: In Disclosure of Personally Identifying Information, updated the trademark notice for Apple Inc. in the list of examples of third-party vendors and/or service providers. Also made a number of minor wording changes to the bullet point on photos, images, and/or other media (changing “associate the photos and/or other media in which they appear” to “associate photos, images, and/or other media in which they appear” and changing “in a photo or other media” to “in a photo, image, or other media”) for consistency. In Other Information I Receive from Third-Party Sources, further updated the examples in the list beginning “subject matter experts …” to add “publicists and/or promoters, public relations representatives and/or other press contacts” to the enumerated examples (after “other media creators”). In the Collection Sources subsection of the CCPA Information Collection and Sharing Notice, made the same addition to the bullet point beginning “Subject matter experts …” for internal consistency.
    • April 4, 2021: In Other Information I Receive from Third-Party Sources, changed “subject matter experts, other writers, historians, biographers, researchers, instructors and/or coaches, academics, scientists and/or engineers, journalists, critics, reviewers, enthusiasts, collectors, librarians and/or other library staff, archivists, photographers, videographers, filmmakers, illustrators, podcasters, other media creators, observers, eyewitnesses, and/or other knowledgeable parties …” to “subject matter experts, other writers, historians, biographers, researchers, instructors and/or coaches, academics, scientists and/or engineers, journalists, critics, reviewers, enthusiasts, collectors, librarians and/or other library staff, archivists, translators, photographers, videographers, filmmakers, illustrators, podcasters, other media creators, observers, eyewitnesses, and/or other knowledgeable parties …” In the Collection Sources subsection of the CCPA Information Collection and Sharing Notice, made the same change in the bullet point beginning “Subject matter experts …” for internal consistency.
    • April 2, 2021: Made a clarification to the April 1, 2021 entry in this recent revisions list. In Comments, changed “The email address you entered in the “Email” field will not be published, nor will your IP address, although any contact information you may have included in the “Comment” field will be, as will any images and/or other media files you include …” to “The email address you enter in the “Email” field will not be published with your comment, nor will your IP address, although any contact information you include in the “Comment” field may be, as may any images and/or other media files you include …” and revised the last sentence to change “I may disclose non-public information related to user comments …” to “Except as otherwise indicated above, I may disclose personal information I receive through and/or in connection with user comments …” In Contact Forms, similarly amended the last sentence to change “may disclose information” to “may disclose personal information” for consistency.
    • April 1, 2021: In Definitions, updated the definition of domain name to change “sometimes also record a domain name in connection with that IP address; this is typically the domain name of …” to “may also record a domain name, sometimes called a hostname, along with the IP address; this hostname is typically a domain name of …” for greater clarity. (Generally, the website’s server logs don’t collect such information (although there are exceptions, e.g., search engine bots that have a feedback email address included in their user agent information), but some administrative or security logs may — for example, in connection with administrative user logins.) In Disclosure of Personally Identifying Information, updated the examples of third-party vendors and/or service providers to change “transcription and/or translation services, automated or otherwise” to “transcription, captioning, subtitling, and/or translation services, automated or otherwise” for completeness. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the “Education information” bullet point to change “degrees and/or credentials” to “degrees, certifications, and/or credentials” and change “information about academic projects and/or theses” to “information about instructors, coursework, readings, academic projects, and/or theses” (again for completeness).
    • March 31, 2021: In Website Server, Error, and Security Logs, changed “may retain certain specific information from the website’s logs if it is still needed for ongoing security, troubleshooting, and/or technical improvement purposes” to “may retain certain specific information from the website’s logs for longer periods if it is still needed for ongoing security, troubleshooting, and/or technical improvement purposes and/or for legal reasons” for greater clarity. In Security Scans, added “names*” to the categories of information gathered and updated the paragraph on data retention to add “although I may retain certain information for longer periods if it is still needed for ongoing security, troubleshooting, and/or technical improvement purposes and/or for legal reasons, and/or if it pertains to administrative resources or controls that are normally off-limits except to authorized administrative users” (set off with a comma) after “… is typically retained for 30 days or less” for consistency and to reiterate the point. In Disclosure of Personally Identifying Information, updated the bullet point on independent contractors/employees/agents/business partners to change “confidentiality policies” to “confidentiality policies and/or confidentiality agreements” (mostly for the avoidance of doubt — obviously, a confidentiality policy may be established by agreement as well as by unilateral decision, so I’ve always regarded these terms as essentially synonymous for the purposes of this provision); added “educational and/or instructional resources and/or services, tutorials and/or other training resources and/or services” to the list of examples of third-party vendors and service providers (in the search engine and/or research tool bullet); and changed “teachers, instructors, trainers, tutors, and/or other educators” (in the other types of service providers bullet) to “teachers, instructors, trainers, tutors, coaches and/or other educators” for completeness.
    • March 30, 2021: In Other Information I Receive from Third-Party Sources, changed “instructors and/or academics …” to “instructors and/or coaches, academics …” In the Collection Sources subsection of the CCPA Information Collection and Sharing Notice, made the same change in the bullet point beginning “Subject matter experts …” for internal consistency. Made a correction in the March 29, 2021 entry in this revisions list (an inadvertent use of “We” rather than “I”).
    • March 29, 2021: In Information I Receive from Third Parties for Security Purposes, changed “other Google services” to “other Google products and/or services” (since not all their products are necessarily services). In Other Information I Receive from Third-Party Sources, changed “through their employees, independent contractors, agents, business partners, vendors, and/or service providers” to “through their employees, independent contractors, agents or other authorized representatives, business partners, vendors, and/or service providers” for greater consistency within that paragraph. In the Collection Sources subsection of the CCPA Information Collection and Sharing Notice, changed “and/or through your employees, agents, representatives, vendors, and/or service providers (as applicable)” to “and/or through your employees, independent contractors, agents or other authorized representatives, business partners, vendors, and/or service providers” to match the current language in Other Information I Receive from Third-Party Sources. In that same bullet point, also changed “through your direct interactions” to “through your interactions” and changed “through other public disclosures you’ve made” to “through public disclosures you make” for greater clarity and better grammar. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added a bullet point under “Commercial information” about “Information about food, groceries, meals, recipes, and/or cuisine(s) an individual or household purchases, otherwise receives and/or obtains, prepares, consumes, prefers, and/or disdains” and updated the “Information about specific vehicles” bullet point (under “Other types of personal information”) to change “… and/or other identifying characteristics …” to “… vehicle position(s) and/or location(s); and/or other identifying characteristics …” set off with a semicolon rather than a comma. Fixed a typographical error in the March 28, 2021 entry below (“In Collection Sources section” was supposed to be “In the Collection Sources subsection”); removed an erroneous reference to the Your California Privacy Rights page (since this website doesn’t currently have a separate page for that); removed an extra space in the February 3, 2021 entry.
    • March 28, 2021: In the Collection Sources subsection of the CCPA Information Collection and Sharing Notice, changed “and/or through your employees, agents, representatives, and/or service providers (as applicable)” to “and/or through your employees, agents, representatives, vendors, and/or service providers (as applicable)” for internal consistency. (The Other Information I Receive from Third-Party Sources section already referred to information that might be provided by vendors and/or service providers, so this is just a matter of better aligning the wording.)
    • March 27, 2021: In Disclosure of Personally Identifying Information, updated the list of examples of third-party vendors and/or service providers to change “and/or audiovisual streaming services or platforms” to “online and/or satellite radio and/or television services, and/or streaming services or platforms (of whatever type)” (mostly for greater clarity). (I initially said “radio and/or television stations,” but changed “stations” to “services” later in the day.) In that section, also corrected some minor punctuation errors in the reference to Epic Privacy Browser; changed “and associated” to “associated”; added the words “search extension” after “EpicSearch.in” for clarity; and added “and/or other extensions and/or themes” after that. In Other Information I Receive from Third-Party Sources, changed “other automotive writers or historians …” to “other writers, historians …” and added “photographers, videographers, filmmakers, illustrators, podcasters, other media creators” to the listed examples. Made the same changes in Collection Sources subsection of the CCPA Information Collection and Sharing Notice for consistency. In the latter section, also deleted the separate bullet point on “Photographers, videographers, illustrators, podcasters, and/or other media creators” (which the other changes made redundant).
    • March 26, 2021: In Transaction-Related Information I Receive from Third Parties, added a paragraph about other types of third-party service providers and/or vendors that may provide us with transaction-related information. In the paragraph beginning “Where I receive …” changed “process and complete the relevant transactions” to “process and complete the relevant transaction(s) (and/or resolve transaction-related problems)” and change “service improvement purposes” to “service improvement and/or troubleshooting purposes” (mostly for clarity). In Other Information I Receive from Third-Party Sources, revised the examples of third parties with whom I may discuss and/or share information related to my content and/or creative endeavors to change “historians, researchers and/or other academics, journalists, enthusiasts/collectors, librarians, archivists, observers, eyewitnesses …” to “historians, biographers, researchers, instructors and/or academics, scientists and/or engineers, journalists, critics, reviewers, enthusiasts, collectors, librarians and/or other library staff, archivists, observers, eyewitnesses …” In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated a bullet point under “Other types of personal information” to change “Information about an individual’s style(s), themes, influences, tendencies, development, and/or achievements in writing, art (in whatever medium(s)), music, fashion, and/or other creative endeavors (professional or otherwise)” to “Information about an individual’s style(s), themes, influences, tendencies, development, and/or achievements in writing, art (in whatever medium(s)), photography, filmmaking, music, fashion, design, architecture, and/or other creative endeavors (professional or otherwise)” (mostly to better illustrate the point). In the Collection Sources subsection, updated the bullet point beginning “Subject matter experts …” to match the revised examples listed in Other Information I Receive from Third-Party Sources, for greater internal consistency.
    • March 19, 2021: In Other Information I Receive from Third-Party Sources, added a paragraph after the one about hiring and employment, regarding information I may gather about prospective clients, employers, and/or other individuals or entities for whom I might provide services, license/sell/otherwise offer my content, and/or otherwise work. (I also made a couple of minor wording adjustments to the new paragraph after initial publication.) In Disclosure of Personally Identifying Information and the equivalent bullet point in the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point regarding editors, publishers, clients, employers, etc., to change “as I may reasonably be requested or directed to do as part of and/or in connection with such services …” to “as I may reasonably elect or be requested or directed to do as part of and/or in connection with such services …” Corrected a minor error in the March 18, 2021 entry in this recent revisions list (to change “Information We Receive” to “Information I Receive”). Also updated the reference to local library systems (in the list of examples of third-party vendors and service providers) to change “communication with their librarians …” to “communications with their librarians …” for better grammar. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated a bullet point under “Professional or employment-related information” to change “Other professional relationships (e.g., …”) to “Information about other professional relationships (including, but not limited to, …” for greater clarity and to fix an HTML error (unclosed list item tag). Added a bullet point under “Other types of personal information”: “Information about an individual’s style(s), themes, influences, tendencies, development, and/or achievements in writing, art (in whatever medium(s)), music, fashion, and/or other creative endeavors (professional or otherwise)”. (This is really just spelling out more clearly a range of information that would probably be reasonably encompassed by several of the examples already listed.)
    • March 18, 2021: In Transaction-Related Information I Receive from Third Parties, updated the paragraph beginning “In the same way …” to change “about other individual(s) or entities involved in the transaction” to “about other individual(s) or entities involved in or otherwise connected with the transaction” for completeness. In Disclosure of Personally Identifying Information and the equivalent bullet point in the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “for the use of their photos, fonts, themes/plugins, or other content or intellectual property” to “for the use of their images, other media, fonts, themes/plugins, and/or other content or intellectual property” (mainly for greater internal consistency). In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the bullet on “medical information” (under “Additional categories of personal information”) to add “healthcare providers and/or organizations visited, consulted, and/or otherwise used or seen” to the listed examples and updated the second bullet point under “Commercial information” to change “Information about art, books, other publications, films, videos, and/or other media an individual or household has considered, read, watched, and/or otherwise consumed; desires/intends to consume; and/or is considering consuming” to “Information about art, books, other publications, films, videos, music, and/or other media an individual or household has read, watched, viewed, listened to, and/or otherwise consumed; desires/intends to read, watch, view, listen to, and/or otherwise consume; and/or is considering reading, watching, viewing, listening to, and/or otherwise consuming” (mainly for consistency and the avoidance of doubt; the gist of this bullet point was hopefully already reasonably apparent). Further updated the bullet point on “Audio, electronic, visual, thermal, olfactory, or similar information” to add “live streams” to the listed examples and change “voice and/or video calls” to “voice and/or video calls or chats” for completeness. Under “Professional or employment-related information,” revised the bullet point on publishing histories/bibliographies/etc. to change “engineers, scientists, inventors” to “researchers, scientists, engineers, inventors” for completeness (and a slightly more logical order). Under “Other types of personal information,” changed “Information about other beliefs, opinions, attitudes, and/or viewpoints” to “Information about other beliefs, opinions, feelings, predispositions, attitudes, and/or viewpoints” and updated the bullet point beginning “Handwritten notes and/or documents …” to separate the principal listed examples using semicolons rather than commas (for grammatical reasons).
    • March 17, 2021: In Data in Submitted Images, changed “in a video or audio recording, broadcast, other media” to “in a video or audio recording, broadcast, or other media” for grammar. Updated the paragraph beginning, “Naturally, if you submit …” to change “contained in the image or media file and its metadata” to “contained in the image or media file and its metadata, as well as any other information you provide to me about the image or media file, its subject(s) and/or setting(s), and/or the context in which it was created.” In the paragraph beginning “If I use your images …” changed “the provenance of the media files I use” to “the provenance of the images and/or media files I use” for wording consistency. In the paragraph beginning “I typically also gather additional information …” changed “… any subjects and/or settings they depict or illustrate so that I can correctly identify and describe them” to “… any subject(s) and/or setting(s) they depict or illustrate so that I can correctly identify and describe them (and/or so I can understand and/or accurately describe the circumstances under which the images and/or other media were created — e.g., where and when a particular photograph was taken).” Also added a new final sentence to that paragraph: “Such information may come from a variety of sources depending on the nature of the images and/or media files and the context in which I obtained them.” In Information I Receive from Third Parties for Security Purposes, changed “similar information or lists” to similar information and/or lists” and changed “if I need additional technical assistance” to just “if I need technical assistance” for consistency and clarity. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice updated the “Audio, electronic, visual, thermal, olfactory, or similar information” bullet point to add “voice and/or video calls” to the listed examples (mainly for the avoidance of doubt; I would hope it would be reasonably self-evident that a voice call would involve audio information, for instance!). Under “Professional or employment-related information,” also updated the bullet point on publishing histories/bibliographies/etc. to fix a typographical error (changing “producers developers” to “producers, developers”); add “photographers” and “editors” to the examples listed in that bullet point; and change “other professionals” to “other such professionals” for clarity. Fixed a typographical error in this recent revisions list and made a number of clarifications to the present entry, including an erroneous reference to “the Your California Privacy Rights page” (which this website doesn’t have; that was an artifact accidentally imported from the privacy policies of my other websites).
    • March 16, 2021: In the preamble, amended the paragraph regarding third-party websites or services to change “is subject to the individual privacy policies …” to just “is subject to the respective privacy policies …” for greater clarity. Added the Have I Been Pwned data breach notification service and/or other data breach notification and/or identity theft protection services to the examples listed in Information I Receive from Third Parties for Security Purposes and the examples of third-party vendors and service providers listed under Disclosure of Personally Identifying Information. In the latter section, changed “secure my devices and/or data” to “secure my system(s), device(s), and/or data” for internal consistency. Elsewhere in that section, updated the bullet point on Google to change “apps, services, and/or tools” to “software, apps, tools, and/or services”; updated the bullet point on Microsoft to change both instances of the phrase “software, apps, tools, and services” to “software, apps, tools, and/or services”; changed “Other providers of apps, tools, and/or services” to “Other providers of software, apps, tools, and/or services”; and updated the reference to Adobe to change both instances of “apps, software, and other services and/or tools” to “software, apps, tools, and/or services” for internal consistency. Deleted the now duplicative reference to identity theft protection services under the “Other types of service providers” bullet point. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, revised the “Education information” bullet point to add “information about academic projects and/or theses” to the listed examples and revised one of the bullet points under “Other types of personal information” to change “Handwritten notes, documents …” to “Handwritten notes and/or documents …” for greater clarity. Made a minor amendment to this entry in Recent Revisions for clarity and consistency and made a minor clarification to the Jan. 2, 2020 entry to avoid potential misunderstanding.
    • March 15, 2021: In Definitions, changed a reference to “my system and device(s)” to “my system(s) and/or device(s)”. In Categories of Information and Purposes for Collection, updated the bullet point on security, troubleshooting, quality control, and technical improvement to change “my systems/devices” to “my system(s) and/or device(s)” for internal consistency. In Security Scans, changed “and/or my system and devices periodically supply …” to “and/or my system(s) and/or device(s) may periodically supply …” (again for consistency). (These revisions are nitpicking language adjustments, and don’t reflect any actual change in how or why I collect and use information.) In the data retention bullet point in Comments, changed “IP address and user agent information” to “IP addresses and/or user agent information” for grammar and more precise wording.
    • March 14, 2021: In the preamble, amended the Important Note paragraph to change “pertaining to my use, disclosure, and/or retention …” to “pertaining to the use, disclosure, and/or retention …” to reduce the potential for confusion and to be more broadly applicable. In Security Scans, added “special: fingerprint data*” to the categories of information gathered; changed “Some of the security measures I use to protect my device(s) from loss or theft may …” to “Some of the security measures I use to protect my device(s) may …”; changed “anti-theft/loss-protection features” to “security features”; and added “scan the user’s fingerprint” to the examples of the information that those features might gather in certain circumstances. In the final paragraph of Security Scans, changed “and/or post such information publicly” to “and/or publicly disclose such information” and changed “need additional technical assistance” to just “need technical assistance” for clarity. In Information I Receive from Third Parties for Security Purposes, revised the last sentence of the paragraph beginning, “Naturally, my security software and/or services …” to change “regarding third-party data breaches” to “regarding data breaches and/or suspected intrusion attempts” and “to malicious actors” to “to unauthorized persons and/or malicious actors” for clarity. In the examples of third-party vendors and service providers under Disclosure of Personally Identifying Information, changed “encyclopedias and/or dictionaries” to “encyclopedias and/or dictionaries, calculators and/or unit conversion tools” for completeness.Also corrected a punctuation error (incorrectly nested parentheses) elsewhere in that list and added “link shorteners and/or other hyperlink redirection services or tools” to the listed examples (in the “accessing the Internet” bullet point). In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, amended the examples listed in the bullet point on “Biometric information” to note that my smartphone(s) and/or other devices may be configured to be unlocked using a fingerprint (which the law regards as biometric information).
    • March 13, 2021: Added an “Important Note” paragraph to the preamble, above the Table of Contents: “In the event you make some separate written agreement with me pertaining to this website and/or its content (such as, without limitation, a contract for professional services, an advertising or endorsement agreement, or a license agreement for the use of my content) that includes provisions pertaining to my use, disclosure, and/or retention of certain information related to such agreement and/or the subject(s) thereof (e.g., confidentiality or nondisclosure provisions, and/or stipulations to not disclose certain information prior to a specific date/time), the terms of that agreement shall, where applicable, take precedence over this Privacy Policy.” In Definitions, updated the definition of “Malicious Activity” to change “… my visitors/users, my system and device(s), and/or me, or defraud or attempt to defraud me, my service providers and/or vendors, and/or my visitors/users” to “… my visitors/users, my system and device(s), me, and/or others, or defraud or attempt to defraud me, my service providers and/or vendors, my visitors/users, and/or anyone else. (I consider spam to be a form of malicious activity.)” In Security Scans, changed “a variety of other anti-malware tools and security measures to protect my device(s), software, and data” to “a variety of other tools and security measures to protect my device(s), software, and data.” In the following paragraph, changed “suspected spam and/or malware” to “suspected spam, malware, and/or other suspicious activity” and changed “scan for different types of suspicious activity” to “scan for suspected spam, malware, and/or other suspicious activity” for clarity and consistency. In Financial Transactions Policy, changed “a contract for my professional services” to “a contract for professional services” for consistency. In Additional Information About Data Retention, updated the bullet on contact information and other details to add “their job title (if any)” to the listed examples of other personal details and added a comma after “for example (but without limitation)” for grammatical reasons. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added two bullet points under “Other types of personal information”: “Information about individuals’ places of birth and/or upbringing” and “Information about an individual or household’s involvement in and/or connection with an accident, natural disaster(s), and/or other catastrophic event(s) (of whatever type(s) and/or cause(s))”. Under “Commercial information,” changed “participation in sports, games, hobbies, and/or other pastimes” to “participation and/or interest in sports, games, hobbies, and/or other pastimes” and split “Opinions, critical judgments, tastes, preferences, and/or other information about an individual or household’s purchasing and/or consuming history and/or tendencies” into two bullet points: “Information about an individual or household’s critical judgments, tastes, opinions, and/or preferences” and “Other information about an individual or household’s purchasing and/or consuming history and/or tendencies” (mostly for consistency of wording). Under “Professional or employment-related information,” updated the bullet point on publishing histories/bibliographies/etc. to add filmmakers, musicians, and producers to the listed examples. (This is just for clarification, as the inclusion of such professionals was already implied.) Made a minor correction in the Dec. 14, 2020 entry in this revisions list (changing “our content” to “my content” to avoid confusion).
    • March 11, 2021: In Disclosure of Personally Identifying Information, changed “… news services, online publications, websites …” to “… news services, newsletters, online publications, websites …” for completeness.
    • March 5, 2021: In Categories of Information and Purposes for Collection, amended the bullet point on “Security, troubleshooting, quality control, and technical improvement” to change “its users” to “its users/visitors” and change “… and/or me” to “… me, and/or others”. (These adjustments are just clarifications, made mostly for the sake of internal consistency, and don’t reflect any actual change in how or why I collect and use information.)
    • March 4, 2021: Made two minor clarifications to Categories of Information and Purposes for Collection: In the “Providing services” bullet point, changed “provide some service(s)” to “provide services” and in the “Completing a transaction” bullet point, changed “conduct or complete financial transactions with you” to just “conduct or complete financial transactions”. (Both revisions are nitpicking language adjustments, and don’t reflect any actual change in how or why I collect and use information.)
    • March 2, 2021: In Disclosure of Personally Identifying Information, updated the examples of third-party vendors and/or service providers to change “other online information services, repositories, news services …” to “other online information and/or reference services, encyclopedias and/or dictionaries, catalogs, repositories, news services …” In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, amended the last bullet point under Internet or similar network activity information to change “use of and/or interactions with websites, applications, electronic systems and/or services (online and/or otherwise), and/or online advertisements, including, but not limited to, errors and/or suspicious activity” to “use of and/or interactions with websites, applications, devices, electronic systems and/or services (online and/or otherwise), and/or advertisements, including, but not limited to, information about errors and/or suspicious activity” for completeness and greater clarity.
    • February 27, 2021: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, amended the bullet point on “Other physical characteristics and/or descriptions of individuals” to change the parenthetical examples from “(e.g., height, weight, hair color)” to “(e.g., height, weight, hair color, distinguishing marks and/or distinguishing features)” for completeness. (This is really just a clarification, since distinguishing marks or features would reasonably fall within the scope of this bullet point in any event.)
    • February 23, 2021: In Financial Transactions Policy, updated the first sentence of the Customer Service Information subsection to change “with a transaction” to “with a purchase or transaction” and added a new final paragraph to that subsection to clarify that questions or purchase/transaction-related inquires may also be submitted via any other contact method I may reasonably designate or make available to you for that purpose (e.g., the contact information listed on an invoice I submit to you or that is specified in an applicable written agreement or other business communication with me). (The contact information shown in Customer Service Information is intended as a general default, not a requirement for people with whom I already have some business relationship!) Made some minor clarifications to this entry in the Recent Revisions list to better explain the changes made.
    • February 13, 2021: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added a bullet point under “Other types of personal information”: “Information about other beliefs, opinions, attitudes, and/or viewpoints”.
    • February 11, 2021: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, amended a bullet point under Internet or similar network activity information to change “about an individual or household’s interactions with websites, applications, and/or online advertisements …” to “about an individual or household’s use of and/or interactions with websites, applications, electronic systems and/or services (online and/or otherwise), and/or online advertisements …” and removed the parentheses around “including, but not limited to, errors and/or suspicious activities,” setting off that clause with a comma instead. Under Other types of personal information, changed “Information about wills, estates, executorship, inheritance, trusts, trusteeship, and/or guardianship” to “Information about wills, estates, executorship, inheritance, trusts, trusteeship, conservatorship, and/or guardianship” for completeness.
    • February 7, 2021: In Disclosure of Personally Identifying Information, amended the bullet point beginning “To editors, publishers, clients, employers …” to change “where the information is part of and/or otherwise pertains to such services, content, and/or work” to “where the information is part of and/or otherwise pertains to such services, content, and/or work (and/or the offer thereof)” for internal consistency and the avoidance of doubt.
    • February 6, 2021: In Information I Receive from Third Parties for Security Purposes, updated the paragraph referencing the “Data Related to Recruitment/Hiring/Employment or Professional Partnerships” section to change “I may also commission background checks on candidates I am considering hiring and/or individuals or entities with whom I am considering entering a business partnership or other formal professional relationship, to help me make informed decisions about whether that hire or relationship would present an undue risk to my security” to “if I hire, contemplate hiring, or enter into or contemplate entering into a business partnership or other professional relationship with some individual(s) or entity, I may conduct and/or commission background checks on such individual(s) or entity to help me make informed decisions regarding any potential security risks a particular individual or entity might present” (mostly for internal consistency).
    • February 3, 2021: Changed “recruitment/hiring” to “recruitment/hiring/employment” throughout this policy, updating the Table of Contents accordingly. In Categories of Information and Purposes for Collection, updated the description of “Recruitment/hiring/employment or business partnerships” to change “and/or in entering or considering entering business partnerships or other formal professional relationships with someone” to “in entering or considering entering business partnerships or other formal professional relationships with someone; and/or in making other types of employment decisions and/or business decisions regarding formal professional relationships” (set off with a semicolon) for completeness. In the (renamed) Data Related to Recruitment/Hiring/Employment or Business Partnerships section, changed “some other individual or entity” to “some other individual(s) or entity” for completeness. Also changed “a broad range of personal information about any prospective employees, contractors, or business partners” to “a broad range of personal information about any current and/or prospective employees, contractors, and/or business partners” for completeness (obviously, if I decide to hire or otherwise go into business with someone, I will collect other information from them after the initial recruitment/hiring/decision-making stage — e.g., tax forms and payroll documents) and changed “may come from the candidates/applicants/contractors/prospective partners themselves and/or from a variety of third-party sources …” to “may come directly from the applicable individual(s) or entity and/or from third-party sources … for greater clarity. Later in that section, changed “information pertaining to prospective employees, contractors, business partners …” to “information pertaining to current and/or prospective employees, contractors, business partners …” (for similar reasons). In the last sentence of that section, changed “share or disclose the information” to “share or disclose such information” for clarity. In Other Information I Receive from Third-Party Sources, updated the reference to the Data Related to Recruitment/Hiring/Employment or Professional Partnerships section to change “contemplate hiring or entering into a business partnership or other professional relationship with someone” to “hire, contemplate hiring, or enter into (or contemplate entering into) a business partnership or other professional relationship with some individual(s) or entity” and change “the individual candidate(s) or prospective partner(s) themselves” to “the applicable individual(s) or entity” (to better align with the amended language of the referenced section and for clarity). In Disclosure of Personally Identifying Information, updated the corresponding bullet point to change “regarding prospective employees, independent contractors, and/or business partners” to “regarding current and/or prospective employees, independent contractors, and/or business partners” for internal consistency. In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, made the same change to the corresponding bullet point in the third bullet-pointed list, again for consistency. (I tinkered with the extent and wording of many of these changes after publishing the initial update.)
    • February 2, 2021: In Disclosure of Personally Identifying Information, updated the reference to the Information Captured by Service/Software/App/Device Telemetry section to add a hyperlink to that section. Also changed “information related to this website” to “information related to this website, its content, the management of my business operations, and/or my other creative endeavors” for greater clarity and internal consistency. (I tinkered with this wording after publishing the initial update.)
    • January 31, 2021: In Additional Information About Data Retention, changed “repeatedly or regularly correspond” to “repeatedly or regularly correspond and/or otherwise communicate” for greater clarity and internal consistency with the language of the rest of that bullet point. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, fixed a problem with the link to the 6200 Productions Privacy Policy not being closed correctly. (Neither the link nor the text changed, but I corrected which portions of the text were part of the link’s anchor text.) Also fixed a technical issue with the link to the Ate Up With Motor Privacy Policy in the same paragraph. (The link itself did not change.)
    • January 29, 2021: In Other Information I Receive from Third-Party Sources, further adjusted the paragraph beginning “I routinely gather a wide variety of information related to the content …” to change “discussing and sharing such information” to “discussing and/or sharing such information”; change “in the case of work I perform for others, the applicable client(s) or employer(s)” to “in the case of I perform, propose to perform, and/or consider performing for others, the applicable client(s), employer(s), and/or prospective client(s) or employer(s)” for completeness and change “I write and/or edit” to “I create and/or edit”; and change “If you are or were somehow involved with the subject(s) of my content, if you are or were otherwise relevant to such content …” to “If you are or were somehow involved with the subject(s) of my content and/or other creative endeavors, if you are or were otherwise relevant to such content and/or creative endeavors …” for internal consistency. In Disclosure of Personally Identifying Information, updated the bullet point beginning “As part of and/or in connection with my content and/or other creative endeavors …” to change “sharing and discussing relevant information” to “discussing and/or sharing relevant information” for consistency. Fixed the effective date in the preamble, which I had initially failed to update.
    • January 26, 2021: In Other Information I Receive from Third-Party Sources, in the paragraph beginning “From time to time, site visitors …” changed “or other personal or professional acquaintances …” to “or personal and/or professional acquaintances …” for internal consistency. Also amended the paragraph beginning “I routinely gather a wide variety of information related to the content I write and/or edit (and/or on which I consult) …” to change “If you are or were somehow involved with the subject(s) of my content, and/or are a public figure …” to “If you are or were somehow involved with the subject(s) of my content, if you are or were otherwise relevant to such content, and/or if you are a public figure …” for completeness. In Disclosure of Personally Identifying Information, updated the hyperlink to the Audacity source code.
    • January 22, 2021: In Disclosure of Personally Identifying Information, added “environmental remediation and/or inspection services” to the listed examples of third-party service providers.
    • January 20, 2021: In the Information Sharing subsection of the Financial Transaction Policy, changed “information related to payments I make to you that pertain directly to the aaronseverson.com website” to “information related to payments I make to you (and/or transactions with which I am involved in some other way) that pertain directly to the aaronseverson.com website” and changed “pertains to my purchase of site-related products or services (or some other, similar transaction(s)) …” to “pertains to my purchase of site-related products and/or services (and/or some other, similar, comparable, and/or related transaction(s)) …” to be more broadly applicable. In Transaction-Related Information I Receive from Third Parties, changed “if I offer products or services …” to “if I offer products and/or services …”; changed “who purchase my products or services …” to “who purchase my products and/or services …”; and changed my offered products or services …” to “my offered products and/or services …” In the following paragraph, changed “if I purchase products or services through a third-party vendor or service, or complete some other financial transaction via such means …” to “if I purchase products and/or services through a third-party vendor or service, conduct some other financial transaction(s) via such means, and/or am otherwise involved with such transaction(s) in connection with and/or otherwise involving the aaronseverson.com website …” for consistency. [The initial revision said “complete some other financial transaction(s) conducted via such means,” but after publication, I realized “conduct some other financial transaction(s) via such means” would be better wording.] In the following paragraph, changed “pertains to my purchase of site-related products or services (or some other, similar transaction(s)) …” to “pertains to my purchase of site-related products and/or services (and/or some other, similar, comparable, and/or related transaction(s)) …” In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “their products or services” to “their products and/or services” (mostly for consistency). In the Categories of Personal Information Collected subsection, changed “Information about wills, estates, executorship, inheritance, trusts, and/or trusteeship” to “Information about wills, estates, executorship, inheritance, trusts, trusteeship, and/or guardianship” for completeness.
    • January 17, 2021: In Other Information I Receive from Third-Party Sources, updated the paragraph beginning “Published works …” to add newspapers and “broadcast radio and/or television programs, streaming media, other publicly available online content, and/or theatrical movies” to the parenthetical examples, mainly for the avoidance of doubt. In Disclosure of Personally Identifying Information, updated the bullet point on photographs, images, and/or other media to change “publish and/or collect for publication on and/or in connection with this website” to “use and/or collect for use on and/or in connection with this website” (to avoid hairsplitting about any possible distinction between publication, public performance, broadcast, etc.). (I tinkered with this language after initially publishing the update after realizing I’d created a confusing wording inconsistency.) In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point on “Records of financial transactions” to change “transactions with” to “transactions with and/or otherwise involving” and change “including, as applicable …” to “including, as applicable, but without limitation …” (since transaction-related information may take a variety of different forms depending on the context). In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “books, magazines, CDs, DVDs” to “books, magazines, newspapers, CDs, DVDs” and (in the following sentence) changed “copies of published books, magazines, CDs, and/or DVDs” to “copies of published books, magazines, newspapers, CDs, and/or DVDs” for internal consistency. (There’s obviously no question that a newspaper constitutes a published work!)
    • January 15, 2021: In Other Information I Receive from Third-Party Sources, changed “From time to time, visitors or other personal or professional acquaintances may provide me with personal information about someone” to “From time to time, site visitors or other personal or professional acquaintances (which may include, but obviously are not limited to, other members of a given household and/or family) may provide me with personal information about some individual and/or household, whether directly or indirectly.” In the final sentence of that paragraph, changed “someone might provide me with pictures of it …” to “someone might provide me with pictures of and/or information about it …” In the subsequent paragraph in that section beginning “I routinely gather a wide variety of information related to the content I write and/or edit …” updated the final sentence to change “if you have disclosed the information in some other context known to me” to “if you have disclosed the information publicly and/or in some other context known to me” for greater clarity. In Disclosure of Personally Identifying Information, corrected a misspelling of “anonymize.” In the Collection Sources subsection of the CCPA Information Collection and Sharing Notice, amended the bullet point beginning “You, whether …” to change “your direct communications with me” to “your direct interactions with me” and amended the bullet point beginning “Subject matter experts …” to change “… and/or other knowledgeable parties” to “… and/or other knowledgeable parties (which in some cases may include (without limitation) personal and/or professional acquaintances, possibly including (again without limitation) other members of a given household and/or family)” for clarity and internal consistency. (I initially made this “your personal and/or professional acquaintances and/or other members of your household and/or family,” but subsequently decided to make it more consistent with the revisions made to the earlier section noted above.) Also deleted “whether directly or indirectly” from the “other visitors/users” bullet point and added that phrase to the end of the sentence immediately preceding that list. In the Information Shared for Business or Commercial Purposes subsection, fixed another misspelling of “anonymize.”
    • January 13, 2021: In Disclosure of Personally Identifying Information, updated the reference to Cloudflare in the examples of third-party vendors and service providers to fix a typographical error (improperly nested parentheses).
    • January 6, 2021: In Other Inquiries, Messages, and Support Requests, changed “… that you otherwise make visible …” to “… that you make visible or otherwise accessible …” In Transaction-Related Information I Receive from Third Parties, changed “…” and/or that the person or entity has otherwise made visible to me through their individual settings” to “…” and/or that the person or entity makes visible or otherwise accessible to me.” In Other Information I Receive from Third-Party Sources, changed “… and/or that the person or entity has otherwise made visible to me through their individual settings” to “… and/or that the person or entity makes visible or otherwise accessible to me.” (This is mostly nitpicking, for the sake of generality and consistency.) In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “pertaining to material provided to us by a third party” to “pertaining to material provided to me by a third party” for internal consistency.
    • January 2, 2021: In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, amended the bullet point beginning “The public …” to change “information that is already publicly available” to “information that otherwise is or was already publicly available” for greater consistency with the wording of the Disclosure of Personally Identifying Information section and the first bullet point of the subsequent list. In the first bullet point of the subsequent list, changed “right to share, disclose, and/or discuss …” to “right to share, discuss, and/or otherwise disseminate …” again for more consistent wording.
    • December 29, 2020: In Disclosure of Personally Identifying Information, made a number of clarifications to the bullet point on photos, images, and/or other media: Changed “(such as videos)” to “(e.g., videos)”; changed “whether in the image or other media itself” to “whether in the photos, images, and/or other media themselves”; and changed “For various reasons, it is not always practical or even feasible for me to completely obscure visible bystanders or potentially personally identifying information (for example, the license terms under which I use photos owned by others …” to “Obviously, in certain cases, those people (and/or their information) may be the subject(s), or among the subjects, of the photo(s), image(s), and/or other media; even where they are not, it is not always practical or even feasible for me to completely remove or obscure visible bystanders or other personal information or potentially personally identifying information such photos, images, and/or other media may contain (for example, the license terms under which I use images owned by others …” Amended the bullet point reading “If the person(s) to whom the information pertains have asked or authorized me to do so” to “If the person(s) to whom the information pertains (and/or, where applicable, their respective assigns, heirs, and/or successors) have asked or authorized me to do so, either directly or through their respective agent(s) or other authorized representative(s)” (mostly for clarity and the avoidance of doubt). Made the same change to the corresponding bullet point in the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice.
    • December 28, 2020: In Definitions, made a minor adjustment to the definition of “Personal information/personally identifying information” (changing “that describes or could be associated with you …” to “that describes and/or could be associated with you and/or your household …” for internal consistency). In Disclosure of Personally Identifying Information, updated the examples of third-party vendors and service providers to change “use of their computers, catalogs, databases, and/or other systems, and/or …” to “use of their computers, catalogs, databases, and/or other systems and/or services — some of which may be provided by, powered by, and/or otherwise supported by third parties, some of which may have their own privacy policies — and/or …” for completeness.
    • December 24, 2020: In Other Information I Receive from Third-Party Sources, fixed a typo in the paragraph beginning “If I have employees …” (changing “the services the perform” to “the services they perform”). In that same sentence, also changed “may entail their providing …” to “may entail and/or include their providing …” for completeness.
    • December 21, 2020: In Other Information I Receive from Third-Party Sources, in the paragraph beginning “Also, where I use vendors and/or service providers to purchase, access, and/or otherwise obtain published works …” changed “download a photo from a repository …’ to ‘take a class that discusses the life and/or work of notable people related to the course subject matter” to “… that discusses the lives and/or work of notable people related to the class’s subject matter” for consistency and grammar and changed “or download a photo” to “and/or download a photo containing recognizable people” for clarity. (I had accidentally pasted the change rather than making the change, which also had a grammatical error.)
    • December 20, 2020: In Other Information I Receive from Third-Party Sources, in the paragraph beginning “Also, where I use vendors and/or service providers to purchase, access, and/or otherwise obtain published works …” changed “or download a photo from a repository …” to “take a class that discusses the life and/or work of notable people related to the course subject matter; or download a photo from a repository …” In Disclosure of Personally Identifying Information, updated the bullet point on independent contractors, employees, agents, and/or business partners to change “and/or other types of repair/maintenance/service” to “other types of repair/maintenance/service, training, tutoring, and/or education” and added “teachers, instructors, trainers, tutors, and/or other educators” to the examples of third-party vendors and/or service providers.
    • December 18, 2020: In Disclosure of Personally Identifying Information, updated the bullet point beginning “If I believe in good faith that such disclosure is reasonably necessary …” to change “… of third parties and/or the public at large” to “… of others and/or of the public at large” and add an example pertaining to contact tracing for infectious disease cases. (In the midst of an ongoing pandemic, this seems worth spelling out!) Also in that bullet point, changed “… that was provided to me by a third party violates your copyright” to “… that was provided to me by a third party violates your copyright or other intellectual property right(s)” to align with the current wording of the section of the Terms of Use to which that sentence refers. In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, updated the corresponding bullet point to change “… and/or to forward copyright claims …” to “… and/or to forward copyright or other intellectual property rights claims …” for internal consistency.
    • December 16, 2020: In Other Information I Receive from Third-Party Sources, changed “… naturally depends on the specific circumstances” to “… naturally depend on the specific circumstances” for grammatical reasons (subject-verb agreement). In Disclosure of Personally Identifying Information, updated the item about postal services, common carriers, shipping agencies, delivery services, and/or mailbox rental services to change “for the purposes of sending and/or receiving correspondence, packages, and/or shipments” to “for the purposes of sending, receiving, and/or tracking the status of correspondence, packages, and/or shipments” for completeness. (I think tracking the status of correspondence, packages, and/or shipments would be reasonably encompassed by “sending and/or receiving,” but I spell it out for the avoidance of doubt.) In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, in the second-to-last bullet-pointed list in that subsection, updated the first bullet point to change “if that content incorporates or involves …” to “if that content or those services incorporate or involve …” Added a bullet point to that list: “Presenting and/or discussing examples of my content and/or my past or current writing/editing/writing consulting services in the course of proposing, pitching, or otherwise offering for commercial advantage my content and/or professional services (e.g., submitting some of my content as writing samples and/or describing some of my previous work as part of my application or pitch for a job or freelance assignment), if such examples incorporate or involve any personal information.”
    • December 14, 2020: In Comments, changed “… may also be subjected to certain automated tests for security purposes” to “… may also be subjected to certain automated tests for security purposes, to discourage spam, and/or to filter out comments submitted by automated bots rather than human users.” In Other Information I Receive from Third-Party Sources, changed “I routinely gather a wide variety of information related to the content I write and/or edit (and/or on which I consult), whether for this website or in connection with my business and/or other creative endeavors, professional or otherwise, which often includes information about people involved with and/or otherwise relevant to that content …” to “I routinely gather a wide variety of information related to the content I write and/or edit (and/or on which I consult), whether for this website or in connection with my business, and/or to my other creative endeavors (professional or otherwise), which often includes information about people involved with and/or otherwise relevant to that content and/or such creative endeavors …” for clarity and consistency. In the next sentence, changed “My research, writing, and editing process often involves …” to “The process of researching, creating, and/or editing such content and/or creative endeavors (and/or consulting on others’ content and/or creative endeavors) routinely involves …” In Disclosure of Personally Identifying Information, amended the last sentence of the bullet point on information disclosed as part of and/or in connection with my content to change “the process of researching, writing, and editing such content routinely involves sharing and discussing relevant information with various third parties and/or the public; the same is true of publishing, promoting, and/or otherwise disseminating such content” to “the process of researching, creating, and/or editing such content and/or creative endeavors (and/or consulting on others’ content and/or creative endeavors) routinely involves routinely involves sharing and discussing relevant information with various third parties and/or the public; the same is true of publishing, promoting, publicly performing, exhibiting, broadcasting, and/or otherwise disseminating and/or discussing such content and/or creative endeavors” for consistency and completeness. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, in the bullet point on network, shared device, and/or online service information (under “Internet or similar network activity information”), changed “e.g., names, passwords/login credentials, technical details, and/or other information …” to “e.g., names, passwords/login credentials, URLs, IP addresses, technical details, and/or other information …”; changed “online service accounts” to “online accounts”; and changed “… and/or other means of networking, sharing, and/or otherwise connecting electronic devices, files, and/or data” to “… and/or other means of networking, connecting, sharing, and/or otherwise accessing electronic devices, files, and/or data”.
    • December 13, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added “courses taken and/or completed” to the enumerated examples of education information; changed “schools attended” to “schools considered and/or attended”; changed “degrees and/or credentials earned” to “degrees and/or credentials considered, pursued, and/or earned” for completeness. (One hopes both would be reasonably-self evident, but I decided to spell this out anyway.)
    • December 12, 2020: In Other Information I Receive from Third-Party Sources, further refined the language about information I may receive through third-party vendors and/or service providers by adding a sentence about vendors and/or service providers who enable me to purchase, access, and/or obtain published works and/or other publicly available information and/or resources. Tinkered further with the additional wording after initial publication. Also in that section, changed “… often contain an assortment of personal information” to “… often contain and/or otherwise incorporate an assortment of personal information” for wording consistency. In Disclosure of Personally Identifying Information, added other wire transfer and/or other funds transfer services and restaurants, meal delivery, and/or food/grocery delivery services to the examples of third-party service providers. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, further adjusted the wording of a few of the examples: Under “Additional categories of personal information,” changed “other information pertaining to creditworthiness, assets, income, and/or liabilities” to “other information pertaining to creditworthiness, assets, benefits, income, and/or liabilities” (for completeness). Under “Professional or employment-related information,” changed “Compensation” to “Compensation and/or benefits” and changed “Other information about an individual’s work, vocation, trade, professional services, products, and/or commercial offerings” to “Other information about an individual’s current, past, and/or prospective work, vocation, trade, professional services, products, and/or other commercial endeavors”.
    • December 11, 2020: In Website Server, Error, and Security Logs, changed “Many (though not necessarily all) of those logs record the IP address and/or user agent information …” to “The information these logs record may include (but is not necessarily limited to) the IP address and/or user agent information …” for greater clarity. In Embedded Content, changed “To learn more about what user information such third-party websites or services may collect and how they use it, click the links on the applicable player or display window to go to that hosting site …” to “To learn more about what user information such third-party websites or services may collect and how they use it, please visit the applicable site …” (since not all content necessarily has a player or display window in the manner originally described). In the Information Sharing subsection of the Financial Transactions Policy, changed, “To my applicable payment processor(s) and/or bank(s)/financial institution(s) …” to “To the applicable payment processor(s) and/or bank(s)/financial institution(s) …” Further updated Other Information I Receive from Third-Party Sources to tinker with the paragraph added December 10 regarding content I create and/or edit (and/or on which I consult) that is published, broadcast, exhibited, and/or otherwise distributed by third parties; add a new paragraph regarding information I may receive through employees, independent contractors, agents, and/or business partners; and amend the paragraph on information from third-party services to change “third-party services and/or service providers” to “third-party vendors and/or service providers” for internal consistency and clarify that the information such services or vendors may provide me isn’t necessarily only about other users of the same service(s) (although that is probably the most common example); and add language about information I may receive from someone’s agents, representatives, and/or service providers. Rearranged the order of the paragraphs in that section to provide a more logical progression, making some minor wording changes, clarifications, and grammatical fixes throughout the text. In the paragraph on comments and other inquiries, added a reference and internal link to the Contact Forms section of this policy (which I’d neglected to do when I added that section some time ago). In the last paragraph of that section, changed “may be published or disclosed in that context” to “may be published and/or otherwise disclosed in that context”. Tinkered a bit with the new and revised wording after initial publication. In Reports and Aggregated Statistics, changed “I may may compile” to “I may compile” to fix a typographical error. In the examples of third-party vendors and service providers listed under Disclosure of Personally Identifying Information, moved the item about bank(s)/financial institution(s) and/or other applicable payment processors to the bullet point on “Other types of service providers” later in that same list and reworded it as “bank(s), financial institution(s), and/or payment processor(s) that process (and may sometimes audit or otherwise investigate) my financial transactions” (which better expresses the intended scope). In the Your California Privacy Rights section, renamed the “Do Not Sell My Personal Information” subsection “Opting-Out or Submitting Other California Privacy Requests (Do Not Sell My Personal Information Page)” to reduce the risk of confusion with the separate Do Not Sell My Personal Information page, also making the same change to the Table of Contents above. In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “routinely involve collecting and sharing personal information, often for publication” to “routinely involve collecting and sharing personal information, often for publication (and/or public performance, exhibition, and/or broadcast, as applicable)”; changed “… for use in or with my published work(s)” to “… for use in or with work(s) intended for publication and/or other public dissemination”; changed “Publishing or submitting for publication …” to “Publishing, submitting for publication, and/or otherwise commercially distributing or disseminating …”; in the paragraph discussing the problems with the CCPA definitions of “commercial” and “noncommercial speech,” changed “Examples could include:” to “Some representative examples could include:” (to make it clearer that the subsequent list is not intended to be exhaustive); and changed “&hellip is intended for publication” to “… is intended for publication (and/or public performance, exhibition, and/or broadcast, as applicable)”. Removed some extra spaces throughout this page. Made a minor clarification to the December 5, 2020, entry in this revisions list (“In Categories of Information and Purposes for Collection …” was supposed to say “In the Categories of Information and Purposes for Collection subsection of the CCPA Information Collection and Sharing Notice …”). Also made a minor grammatical correction in the December 10 entry (where the word “subsection” was inadvertently omitted).
    • December 10, 2020: In Website Server, Error, and Security Logs, changed “and/or involves credentials I create to allow specific users to access certain resources …” to “and/or involves or appears to involve credentials I create to allow specific users to access certain resources …” In Security Scans, changed “If the activity in question involved or appears to involve any of this website’s administrative users, the information collected may also include the username(s), user ID number(s), and/or other identifiers associated with such administrative user(s)” to “If the activity in question involves or appears to involve any of this website’s administrative users, and/or involves or appears to involve credentials I create to allow specific users to access certain resources (e.g., the login credentials for certain FTP folder(s) associated with this website), the information collected may also include the username(s), user ID number(s), and/or other identifiers associated with such administrative user(s) and/or credentials” for consistency with Website Server, Error, and Security Logs. Updated Transaction-Related Information I Receive from Third Parties to clarify that I may also receive information related to questions, comments, reviews, and/or other interactions related to products and/or services I offer through third-party services (not just regarding completed sales or transactions). Made a number of other clarifications in that section. In Other Information I Receive from Third-Party Sources, added a paragraph about information I may receive in connection with content I create and/or edit (and/or on which I consult) that is published, broadcast, exhibited, and/or otherwise distributed by third parties. In the Collection Sources subsection of the CCPA Information Collection and Sharing Notice, changed “Clients or employers for whom I provide (or have provided) writing/editing/writing consulting services” to “Clients or employers for whom I provide (or have provided) writing/editing/writing consulting services, and/or publishers or other third parties through which I publish, perform, broadcast, exhibit, and/or otherwise distribute my content and/or other creative endeavors (professional or otherwise).” In the Information Shared for Business or Commercial Purposes subsection of the notice, changed “The public, through the publication, performance, broadcast, other dissemination, and/or public discussion of …” to “The public, through the publication, performance, broadcast, exhibition, other dissemination, and/or public discussion of …” for consistency.
    • December 7, 2020: In Data in Submitted Images, updated the third paragraph to change “the metadata could also include other personally identifying and/or potentially personally identifying information, such as …” to “the metadata could also include personal information and/or potentially personally identifying information, such as (though not necessarily limited to) …” and changed which portions of that sentence are boldface. In Disclosure of Personally Identifying Information, updated the bullet point on Google to change “the Android platform and the related Google Mobile Services applications and APIs” to “the Android platform and Google’s related services, applications, APIs, and infrastructure (such as, though not limited to, the Google Location Service infrastructure)” (to clarify that this text is referring to a range of services associated with Android devices, not to Google’s wireless service). Added the Google Location Service to the trademark notice at the end of that bullet point. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, under “commercial information,” changed “Information about real property an individual or household has purchased, rented, and/or leased (and/or is considering purchasing, renting, and/or leasing), and/or property records indicating who owns, manages, administers, sells, rents, leases, or otherwise offers for commercial advantage a particular building, lot, or other real property” to “Information about real property and/or lodgings an individual or household owns, rents, leases, and/or otherwise uses (and/or is considering purchasing, renting, leasing, and/or otherwise using), and/or information about who owns, manages, administers, sells, rents, leases, and/or otherwise offers for commercial advantage particular lodgings and/or a particular building, lot, or other real property” for greater clarity and completeness. (My first pass at this revised language, published earlier today, was “Information about real property an individual or household owns, rents, and/or leases (and/or is considering purchasing, renting, leasing, and/or otherwise obtaining), and/or information about who owns, manages, administers, sells, rents, leases, and/or otherwise offers for commercial advantage a particular building, lot, or other real property”; I subsequently decided to further revise that text as indicated above.) In the Information Shared for Business or Commercial Purposes subsection, changed “&hellip of my content and/or other creative work …” to “… of my content and/or other creative endeavors (and/or content I write and/or edit (and/or on which I consult) for others) …” for greater internal consistency.
    • December 6, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, under “commercial information,” changed “property records indicating who owns and/or manages a particular building, lot, or other real property” to “property records indicating who owns, manages, administers, sells, rents, leases, or otherwise offers for commercial advantage a particular building, lot, or other real property” and changed “(e.g., whether an individual or household owns and/or has recently purchased and/or sold shares in a particular corporation or other business entity)” to “(e.g., whether an individual or household owns and/or has recently purchased and/or sold shares in a particular corporation or other business entity, and/or what broker(s) and/or other intermediaries, if any, conducted and/or administered such transaction(s))”. Under the “professional or employment-related information” bullet point, restored the bullet point on “Publishing histories/bibliographies …” (which had been inadvertently deleted in a previous revision); changed “… about writers, artists, designers, performers, developers, engineers, scientists, and/or other professionals” to “… about writers, artists, designers, architects, performers, developers, engineers, scientists, inventors, and/or other professionals”; and changed “… mechanical inventions and/or designs, and/or other types of artwork and/or creative endeavors” to “… architectural plans, mechanical inventions and/or blueprints, designs of whatever type, and/or other types of artwork and/or creative endeavors”. Under “other types of personal information …” added “broker(s)” to the examples of an individual’s employees, agents, representatives, and/or service providers. (These are all essentially nitpicking elaborations; the previously listed examples would probably have reasonably encompassed each of these additions.)
    • December 5, 2020: In Definitions, updated the definition of “Other personal information” to change “This includes any other information about an individual or household …” to “This may include any information about an individual or household …” In the Categories of Information and Purposes for Collection subsection of the CCPA Information Collection and Sharing Notice, added a new final paragraph explaining that while the listed categories are intended to describe the types of information I typically collect in the specified contexts, there may be circumstances in which I collect or receive a type of information not listed and/or that can’t be easily categorized. In Security Scans, updated the categories of information gathered to add “email addresses*; other contact information (e.g., phone numbers)*; images and/or other media (including metadata)*” and change “geolocation data (estimated from IP addresses and/or inferred from other data)*” to “geolocation data (determined directly, estimated from IP addresses, and/or inferred from other data)*” to reflect the broader range of security measures mentioned in the current text of that section. In Information I Receive from Third Parties for Security Purposes, updated the categories of information gathered to include “images and/or other media (including metadata)*” and change “geolocation data (estimated based on IP address/domain name and/or inferred from other data)*” to “geolocation data (determined directly, estimated from IP addresses, and/or inferred from other data)*” (for similar reasons). Corrected an error in this revisions list (this item had been inadvertently dated “November 5” rather than “December 5”!). Also in Security Scans, rearranged several of the paragraphs in that section to place them in a more logical order. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “&hellip in the course of my business” to “through and/or in connection with this website and/or in the course of my business” for more consistent wording. In the “Collection Purposes” subsection, changed “… in the course of operating this website and/or my business” to … through and/or in connection with this website and/or in the course of my business” for similar reasons. In the Information Shared for Business or Commercial Purposes subsection, changed “Therefore, by the law’s definitions, I may share any or all of the categories of personal information I collect in the course of my business …” to “I may share any or all of the categories of personal information I collect through and/or in connection with this website and/or in the course of my business …” (also for internal consistency) and adjusted which portions of that sentence are boldface. Later in that section, changed “in ways that are hard to avoid with any business activity conducted at home” to “in ways that are hard to avoid with any activity conducted at home.” Also in that section, changed “… any or all of the categories of personal information I collect in the course of my business” to “… collect through and/or in connection with this website and/or in the course of my business”; changed “… could also involve any or all of the categories of personal information I collect in the course of my business” to “… could also involve any or all of the categories of personal information I collect through and/or in connection with this website and/or in the course of my business”; and changed “any or all of the categories of personal information I collect in the course of my business” to “any or all of the categories of personal information I collect through and/or in connection with this website and/or in the course of my business” (also for internal consistency). Elsewhere in that section, changed “(including offering the content on this website, which is supported by advertising and user contributions)” to “(potentially including publishing content on this website, which may be supported by advertising, and which I may use to advertise and/or otherwise promote my work and/or professional services)” (since to date, I haven’t received or even solicited any user contributions for this website, nor do I have any immediate plans to do so). (To date, I haven’t run any paid advertising on this website either, but I don’t rule it out, which is why the advertising language is included in this policy.)
    • December 4, 2020: In the preamble, changed “… and how I use that information” to “… and how I may use and/or share that information.” In Legal Bases for Collecting and Using Information, removed the parenthetical examples after “The use is necessary to provide the functions of the website”; added “to conduct research into the subjects of my content” to the examples listed after “I have a legitimate interest in using your information …”; and added a statement after the numbered list (adapted from similar text in recent versions of the Automattic privacy policy) explaining/reiterating that because I’m based in the U.S., information from users in the European Economic Area (EEA) may be used, stored, and/or accessed by individuals operating outside the EEA. In Additional Information About Data Retention, changed “Naturally, the applicable bank(s)/financial institution(s) and/or payment processor(s) may also retain transaction-related information, which is outside of our control” to “Vendor(s), service provider(s), payment processor(s), and/or bank(s)/financial institution(s) involved in a given transaction may also retain certain information related to that transaction, which is generally outside of my control” for greater clarity. In Data in Submitted Images, changed “the recognizable likeness of any individual person in an image or video (and/or their voice in a video or audio recording or broadcast) …” to “the recognizable image and/or identifiable likeness of any individual person in images and/or other media (and/or their audible voice in a video or audio recording, broadcast, other media) …” and changed “The image might also contain …” to “Images or other media may also contain …” for completeness. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “… images, videos, audio recordings, and/or other media in which recognizable individuals and/or likenesses are visible …” to … images, videos, audio recordings, broadcasts, and/or other media in which recognizable individuals and/or their identifiable likenesses are visible …” for internal consistency and better grammar. Also rearranged the order of several of the bullet points under “Other types of personal information not specifically described in the applicable statutes …”
    • December 3, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, made a number of very minor wording changes to the enumerated examples (e.g., changing certain instances of “and” and “or” to “and/or”) for greater internal consistency. Also changed “Health insurance information (e.g., whether or not individuals are insured and with which insurance carrier(s) …” to “Health insurance information (e.g., whether or not individuals or households are insured and if so, with which insurance provider(s) …”; changed “Information about personal property, products, goods, and/or services an individual or household owns, rents, leases, and/or otherwise uses; has owned, purchased, rented, leased, obtained, or considered; desires to purchase, rent, lease, obtain, and/or use; and/or is considering purchasing, renting, leasing, obtaining, and/or using” to “Information about personal property, products, goods, and/or services an individual or household owns, rents, leases, has otherwise obtained, and/or uses; has owned, purchased, rented, leased, otherwise obtained, used, and/or considered; desires to purchase, rent, lease, otherwise obtain, and/or use; and/or is considering purchasing, renting, leasing, otherwise obtaining, and/or using”; and removed the bullet point on “Network, shared device, and/or online service information” from under “Professional or employment-related information” (as it had been inadvertently duplicated from “Internet or similar network activity information”). Under “Professional or employment-related information,” changed “Other information about an individual’s vocation, trade, professional services, products, and/or commercial offerings” to “Other information about an individual’s work, vocation, trade, professional services, products, and/or commercial offerings” for completeness.
    • December 2, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point on agents, representatives, and/or service providers (under “Other types of personal information”) to change “Information about an individual or household’s agents, representatives, and/or service providers (e.g., attorney(s) or legal counsel, talent or literary agency, manager(s), accountant(s), auditor(s), assistant(s) and/or secretaries, and/or other authorized representatives and/or professional service providers)” to “Information about an individual or household’s employees, agents, representatives, and/or service providers (e.g., assistant and/or secretary, attorney(s) and/or other legal counsel, talent and/or literary agent(s), manager(s), accountant(s), auditor(s), and/or other authorized representatives and/or professional service providers)”. In the Collection Sources subsection, changed the first bullet point to “You, whether through your direct communications with me; through other public disclosures you’ve made (e.g., social media posts); through your use of this website; and/or through your employees, agents, representatives, and/or service providers (as applicable)”. In Disclosure of Personally Identifying Information, revised the references to Gpg4win and its associated software to update and clarify the information about Kleopatra, add a trademark notice, and rearrange one of the existing trademark notices. In Additional Information About Data Retention, updated the bullet point about contact information to change “The contact information of individuals with whom …” to “The contact information and other details of individuals with whom …” and added a sentence with some further explanation. In Disclosure of Personally Identifying Information, updated the reference to WordPress.org to add the phrase “and/or its respective developers, contributors, volunteers, and other users” and change “… of the WordPress website and/or forums to help me manage and troubleshoot this site” to “… of the WordPress website and/or forums, which I regularly use to seek help in managing, troubleshooting, and/or improving this website as well as to report bugs, security flaws, and/or other issues with the WordPress content management system itself” (since use of the forums and/or website may involve communicating with various people who are not part of the WordPress organization).
    • December 1, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added a bullet point to the examples under “Commercial information”: “Information about products, goods, services, and/or property an individual or household sells, rents, leases, and/or otherwise offers for commercial advantage”. Also changed “Information about cars and/or other vehicles an individual has owned, purchased, rented, leased, otherwise obtained, or considered …” to “Information about cars and/or other vehicles an individual or household has owned, purchased, rented, leased, otherwise obtained, or considered …”; changed “Information about real property an individual has purchased, leased, or rented, and/or property records indicating who owns a particular building, lot, or other real property” to “Information about real property an individual or household has purchased, rented, and/or leased (and/or is considering purchasing, renting, and/or leasing), and/or property records indicating who owns and/or manages a particular building, lot, or other real property”; and changed “… (e.g., whether an individual owns or has recently purchased or sold shares in a particular corporation or other business entity)” to “… (e.g., whether an individual or household owns or has recently purchased or sold shares in a particular corporation or other business entity)”. In the examples of “Professional or employment-related information” later in that section, changed “Other information about an individual’s vocation and/or trade” to “Other information about an individual’s vocation, trade, professional services, products, and/or commercial offerings” and updated the bullet point on “Authorship, other credits, and/or rights holder information” to change “… artwork, books, films, software, photographs, other media, other published works or designs, and/or other intellectual property such as trademarks and/or patents” to “… creative works, designs, inventions, and/or performances (e.g., books, articles, essays, blog posts, photographs, illustrations and/or other images, videos, songs and/or musical compositions, audio recordings, films, television and/or radio programs, other media, software, mechanical inventions and/or designs, and/or other types of artwork and/or creative endeavors), and/or other types of intellectual property such as trademarks, service marks, and/or patents” for greater completeness. Added a new section under Information We Collect Automatically: Subscribing via Web Feed (Atom and RSS). Also fixed the title of the “Information You Provide to Me” section (which had been accidentally changed to “Information You Provide to Us” at some point I hadn’t previously noticed). In Comments, changed “the contents of published comments may also appear in search results of the website’s search function” to “the contents of published comments may also appear in search results of the website’s search function and/or to users who have subscribed to this website’s web feeds (as described in “Subscribing via Web Feed (Atom and RSS)” above).” In the first paragraph of the preamble, changed “… through and/or in connection with this website …” to “… through and/or in connection with this website (including, where applicable, its web feeds, if any) …” In the second paragraph of the preamble, changed “… including those linked from the aaronseverson.com website or on which I may have accounts …” to “… including those linked from the aaronseverson.com website and/or on which I may have accounts …”
    • November 30, 2020: In the examples of third-party service providers under Disclosure of Personally Identifying Information, updated the item on hotels, motels, and/or other lodging providers to change “(if I use and/or arrange such lodgings in some context related to this website and/or in the course of my business)” to “(if I use, arrange, and/or communicate with people using such lodgings in some context related to this website and/or in the course of my business)” for completeness.
    • November 26, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, rearranged the examples of “Internet or similar network activity information” to put them in a (hopefully) more logical order. Also in that subsection, changed the phrase “about an individual’s interactions with a website, application, or advertisement” to “about an individual or household’s interactions with websites, applications, and/or online advertisements” for greater completeness.
    • November 23, 2020: Updated Other Information I Receive from Third-Party Sources to change “user name” to “username” and updated Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice to change “user names” to “usernames” for internal consistency of spelling.
    • November 20, 2020: In the Refunds and Returns subsection of the Financial Transactions Policy section, updated the bullet point on Other Purchases to change “digital goods or services other than advertising” to “digital goods and/or services other than advertising” (for completeness) and changed “(e.g., the purchase of an ebook)” to “(such as, without limitation, the purchase of an ebook and/or payment(s) for my writing/editing/writing consulting services)” (to better illustrate the intended scope). Updated the bullet point on Other Types of Transactions to change “transactions that do not fit any of the above categories …” to “transactions that do not fit into any of the above categories (including, though not limited to, payment(s) of license fees and/or royalties for the reuse of my content) …”
    • November 19, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, made some minor grammatical and punctuation adjustments to the “Education information” bullet point (separating the examples with semicolons rather than commas and adding “and/or” before “degrees and/or certifications earned”). Under the “Other types of personal information” bullet later in that section changed “Information about wills, estates, executorship, and/or inheritance” to “Information about wills, estates, executorship, inheritance, trusts, and/or trusteeship”.
    • November 17, 2020: In Disclosure of Personally Identifying Information, added hCaptcha to the examples of third-party service providers. Also updated and adjusted the references to Cloudflare in that section for greater accuracy and better readability, also adding and rearranging some trademark notices in that text and adjusting which portions of the text are anchor text for the applicable links.
    • November 16, 2020: In Disclosure of Personally Identifying Information, added Discord to the examples of third-party service providers and adjusted the wording of the reference to Signal in the same section to be more readable, also rearranging the trademark notices in that text.
    • November 14, 2020: In the Website Server, Error, and Security Logs; Security Scans; and Information I Receive from Third Parties for Security Purposes sections, added “other personal information*” to the listed categories where it wasn’t already included, and changed “special: other technical details (some of which might be potentially personally identifying)*”; and “special: other technical details relevant for security purposes (some of which might be potentially personally identifying)*”; and “special: other security-related technical details (some of which might be potentially personally identifying)*” to “special: other technical details (some of which might be potentially personally identifying and/or constitute personal information in certain jurisdictions)*” for consistency. (These changes are really just clarifications; some jurisdictions have adopted such expansive definitions for “personal information” that certain types of information may be considered “personal information” even if it could not reasonably be used to individually identify you.) In Disclosure of Personally Identifying Information, changed “travel agencies, travel bureaus, ticket brokers, and similar services” to “travel agencies, travel bureaus, ticket brokers, and/or similar services” for consistency of wording. Also in that section, updated the PayPal reference to change “processes some payments for me” to “processes certain payments I make or receive” for greater clarity. In the Transaction-Related Information Gathering section of the Financial Transactions Policy section, added a paragraph referencing the Transaction-Related Information I Receive from Third Parties section, including an internal link to that section. In both those sections, added “images and/or other media (possibly including metadata)*” to the listed categories of information I may collect (since the information I receive may include profile pictures or other types of images and/or media). Also in Transaction-Related Information I Receive from Third Parties, changed “the seller’s profile picture” to “the seller’s profile picture and/or geographical location,” since the latter is another common example of this type of information, and made a number of clarifications to the paragraph on data retention. In Additional Information About Data Retention; Controller/Responsible Party, Questions, and How to Reach Me; and this revisions list, removed some duplicated commas.
    • November 13, 2020: In Advertising, changed “settings/configurations/addons” to “settings and/or add-ons” to better align with the Embedded Content section (and to make the spelling of “add-ons” consistent throughout this policy).
    • November 11, 2020: In Disclosure of Personally Identifying Information, amended the paragraph about possible incidental disclosures involving roommates, houseguests, other cohabitants, and/or visitors for better grammar and changed the conjunction separating the listed examples from “or” to “and/or.” Also in that section, added a trademark notice for Akamai.
    • November 8, 2020: In Disclosure of Personally Identifying Information, added “online time servers” to the examples of third-party service providers. Also in that section, updated the reference to the manufacturers of my wireless routers to change “their associated software/services” to “their associated software and/or services” (for greater accuracy). Amended a previous item on this list for October 30, 2020, to change “examples of third-party services” to “examples of third-party service providers” for internal consistency. Removed some extra spaces throughout this page. In Consents and Agreements, completely revised and updated the text to be more broadly applicable and more accurate (it was originally written to refer mostly to the privacy banners and consent checkboxes, but the new version is more comprehensive), also splitting the second paragraph into two separate paragraphs in the interests of readability. Tinkered with the updated wording.
    • November 7, 2020: In Disclosure of Personally Identifying Information, updated the bullet point on comments to add the following phrase to the end of the sentence beginning “As explained in that section …”: “and/or emailing you directly (at the email address you provided with your comment) prior to or instead of publishing your comment(s).” (Since this point is already spelled out explicitly in the Comments section above, this is a just a clarification for easier reference.) Also in that section, updated the bullet point on inquiries and support requests to change “As part of a public response to an inquiry or support request” to “To respond (publicly and/or privately) to your messages, inquiries, and/or support requests” for greater accuracy. (Even if I only respond to you privately, doing so typically involves communicating at least some information to third parties in ways some jurisdictions now regard as a disclosure of personal information — for example, sending you an email in response to your inquiry necessarily involves transmitting your email address to the servers of our respective email providers!)
    • November 3, 2020: In Website Server, Error, and Security Logs, changed “Additionally, if a logged event or action involved or appeared to involve any of this website’s administrative users, certain logs may also record the username(s), user ID number(s), and/or other identifiers associated with such administrative user(s)” to “Additionally, if a logged event or action involves or appears to involve any of this website’s administrative users, and/or involves credentials I create to allow specific users to access certain resources (e.g., the login credentials for certain FTP folder(s) associated with this website), certain logs may also record the username(s), user ID number(s), and/or other identifiers associated with such administrative user(s) and/or credentials.” Also in that paragraph, changed the phrase “the routine operation of the website and its host” to “the website and its related systems” (which is more correct).
    • November 2, 2020: In Disclosure of Personally Identifying Information, updated the reference to WebAIM to change the phrase “whose WAVE Accessibility Tool …” to “whose WAVE Accessibility Tool and/or other tools …” for completeness. (They have a number of useful tools besides the WAVE tool.) Later in that same section, changed “repair, maintenance, and/or technical service providers” to “repair, maintenance, installation, and/or technical service providers” and changed “postal services, common carriers, shipping agencies, and/or mailbox rental services (for the purposes of sending and/or receiving correspondence and/or packages)” to “postal services, common carriers, shipping agencies, delivery services, and/or mailbox rental services (for the purposes of sending and/or receiving correspondence, packages, and/or shipments)” (again for completeness).
    • October 30, 2020: In Disclosure of Personally Identifying Information, adjusted the wording of the reference to Audacity audio editing software (for greater correctness and better grammar). Also added identity theft protection services to the examples of third-party service providers listed in that section.
    • October 29, 2020: In Website Server, Error, and Security Logs, updated the categories of information gathered to add asterisks to “IP addresses,” “user agent information” and “geolocation data” (since such information may be collected and/or inferred in some circumstances and not in others, depending on the specific logs involved) and added “domain names*” to the listed categories for completeness. In the first paragraph of that section, deleted the phrase “such as submitting comments” (which was grammatically awkward); added a new sentence: “Many (though not necessarily all) of those logs record the IP address and/or user agent information of the applicable device (and sometimes the referring site, if any), which sometimes makes it possible to determine, estimate, and/or infer certain other information (e.g., geographical location and/or device type)”; and changed “Most such logs also include …” to “Most such logs include …” In the paragraph beginning “Please keep in mind that …” changed “server and server error logs” to “server access and server error logs” for clarity. In Disclosure of Personally Identifying Information, amended the reference to insurers and/or warranty providers to change “their respective affiliates, agents, brokers, claims adjusters, subcontractors, and/or subsidiaries” to “their respective administrators, affiliates, agents, brokers, claims adjusters, subcontractors, and/or subsidiaries” for completeness.
    • October 28, 2020: In Disclosure of Personally Identifying Information, changed “Abine, Inc.” to “Abine Inc.” to reflect their stylization. In Your Rights (GDPR and Other National or State Privacy Laws), changed “or in some U.S. states” to “or in certain U.S. states” for grammatical reasons; changed “I may (to the extent permitted — and/or required — by applicable law/regulation) ask you to provide additional information to verify your identity and/or residency before processing any data-related requests” to “I may (to the extent permitted — and/or required — by applicable law/regulation) take steps to verify your identity and/or residency before processing certain requests pertaining to your personal information”; and changed “for legal or administrative purposes or to secure this website and its data” to “for legal or administrative purposes and/or to secure this website and its data.” In Controller/Responsible Party, Questions, and How to Reach Me, added a link to the former section and changed “If you have questions about this policy or my use of personal information, you can contact me …” to “If you have questions about this policy or my use of personal information, or if you would like to contact me regarding the rights mentioned in “Your Rights (GDPR and Other National or State Privacy Laws)” above, you can reach me …” In Other Information You Provide to Me, changed “These are just a few of the many possibilities” to “These are just a few of the many possibilities, not an exhaustive list.”
    • October 25, 2020: In Disclosure of Personally Identifying Information, updated the reference to LibreOffice to change “their LibreOffice suite” to “the LibreOffice suite of open source office software” for clarity, added a link to the homepage for that software, and updated the trademark notice. Also updated the reference to FileZilla to add a link to the FileZilla privacy policy and remove the (inaccurate) statement that the software did not have such a policy (which was an unfortunate error on my part; the project website’s privacy policy does include a section pertaining to the software itself). Throughout that section and in older items on this revisions list (on this page only, not in the older revisions now archived on a separate page), removed the hyphen from “open source” for consistency. Also changed “Social media services (including, without limitation, chat rooms, online bulletin boards/message boards/discussion groups, and/or similar online forums)” to “Social media services (including, without limitation, chat rooms, online bulletin boards/message boards/discussion groups, wikis, and/or similar online forums)” for completeness. (Whether a wiki can be considered a social media service is arguable, but there is not necessarily a strong distinction between a wiki dedicated to a specific topic and a chat room or online bulletin board dedicated to the same topic.)
    • October 24, 2020: In Disclosure of Personally Identifying Information, added towing and/or roadside assistance services to the examples of third-party service providers; changed “mapping and/or navigation services” to “mapping, navigation, and/or trip-planning services and/or apps” (for completeness, although these are to some extent different terms for very similar types of services); and changed the parenthetical note in the listing for cars, trucks, vans, bicycles, scooters, and/or boats from “if I use such services …” to “if I use and/or arrange such services …”
    • October 21, 2020: Added credit bureaus and/or credit reporting agencies to the examples of other types of service providers under Disclosure of Personally Identifying Information. In that section, also changed “third-party printers/print services” to “third-party printers and/or print services” for clarity.
    • October 18, 2020: In Disclosure of Personally Identifying Information, added print-on-demand publishing and/or distribution platforms to the examples of third-party service providers, including one specific example. (This is just a clarification, since that section already lists both publishers and distributors.) In the same part of that section, also changed “sites and/or services for publishing and/or distributing audiovisual content” to “platforms and/or services for publishing and/or distributing audiovisual content” (this is just a nitpicking change for consistency with the wording of the privacy policy of my professional writing website).
    • October 16, 2020: In Embedded Content, clarified the bullet point regarding jQuery to also mention the API service as well as the CDN service.
    • October 15, 2020: In Security Scans, Information I Receive from Third Parties for Security Purposes, and Disclosure of Embedded Content, updated references to Bitdefender to remove the registered trademark symbol (which Bitdefender apparently prefers that third parties not use in connection with Bitdefender marks). Also in Information I Receive from Third Parties for Security Purposes, adjusted the wording of the reference to Spybot. In Embedded Content, amended the recently added bullet point for jQuery CDN to clarify that it may also use cookies and/or store potentially personally identifying information on your device. In that section and Security Scans, changed references to content distribution network(s) to content delivery network(s), which is the correct term for such services.
    • October 14, 2020: In Embedded Content, updated the bullet point regarding Yoast SEO to describe the plugin’s latest integration, with the SEMrush SEO and Internet marketing firm, also adding a link to the SEMrush Privacy Policy and their trademark notice. (It may be worth noting that in adding trademark notices on this page, I have generally omitted the phrase “All rights reserved” (which many trademark owners prefer or insist on incorporating into such notices) in contexts where it would seem likely to cause confusion. I am sensitive to the importance of appropriately presenting such marks, but given the unavoidable density of the information on this page and the sheer number of notices in the text, there is a danger of inadvertently creating uncertainty over which rights are being reserved by whom, which seems counterproductive. In general, you should can reasonably assume that all rights to the various third-party trademarks mentioned on this page are reserved by those marks’ respective owners, whether that phrase expressly appears in the text or not.) Made a correction in the revision summary for October 13, 2020, below, to fix an inadvertent use of “we” rather than “I.” In Embedded Content, updated the bullet point regarding BootstrapCDN to add a trademark notice and links to the StackPath Privacy Statement and California Privacy Rights page and to update the link to the StackPath GDPR page. Added a new bullet point pertaining to the jQuery CDN. In the Financial Transactions Policy, changed “PayPal’s User Agreement, Privacy Statement, and any other applicable PayPal policies or requirements” to “the PayPal User Agreement, the PayPal Privacy Statement, and any other applicable PayPal policies and/or requirements” and adjusted the positions of the applicable hyperlinks to match. In Information I Receive from Third Parties for Security Purposes and Disclosure of Personally Identifying Information, adjusted the wording of certain descriptions to avoid some awkward possessive use.
    • October 13, 2020: In Do Not Sell My Personal Information; the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice; and Controller/Responsible Party, Questions, and How to Reach Me, updated the text to better distinguish the Right to Know and the Right to Access (which under the CCPA are distinct, though obviously related) and capitalize the names of the various CCPA rights, since each has a specific legal meaning. Made some minor adjustments to the adjacent text to accommodate these changes and for consistency. In those sections, Contact Forms, Additional Information About Data Retention, Reports and Aggregated Statistics, and Disclosure of Personally Identifying Information, adjusted the references to the CCPA to spell out “California Consumer Privacy Act of 2018 (CCPA)” for consistency. In Additional Information About Data Retention, changed “for compliance purposes, I must retain information pertaining to privacy-related requests” to “for compliance purposes, I must retain information pertaining to certain privacy-related requests” (since the retention requirements may apply in some cases and not others) and changed “receive under” to “receive pursuant to” for grammatical reasons.
    • October 11, 2020: Updated the Financial Transactions Policy to clarify that where your transaction is pursuant to a separate written agreement with us, the terms of that agreement shall, where applicable, take precedence over the terms of the Financial Transactions Policy present on this page.
    • October 10, 2020: In Security Scans and Embedded Content, added a trademark notice for GoDaddy to the paragraph on the Sucuri Security plugin. Also added the same notice to the first reference to Sucuri in Disclosure of Personally Identifying Information.
    • October 8, 2020: In Disclosure of Personally Identifying Information, revised the reference to embedded content providers to change “the embedded content providers described in …” to “embedded content providers such as (though not necessarily limited to) those described in …” to better align with the language Embedded Content section (which makes clear that its list of providers is not intended to be exhaustive). Added GoDaddy to the examples of third-party service providers in that section (mostly for completeness, since I haven’t used their domain registration services for years and permanently closed my account today). In that section, Security Scans, and Embedded Content, updated references to GoDaddy Operating Company, LLC, to match their current stylization.
    • October 7, 2020: Fixed a broken internal link in Security Scans. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added a bullet point under “Internet or similar network activity information”: “Online avatars, profile images, and/or icons” (this is essentially just a clarification, since such images would also reasonably be encompassed by several of the categories and examples already listed).
    • October 5, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point under “Other types of personal information” about awards and honors to change “Information about awards, honors, other recognition, prizes, and/or winnings in games of chance or skill” to “Information about awards, honors, prizes, and/or other recognition” and moved the part about games of chance or skill to a new bullet point under “Commercial information”: “Information about an individual or household’s scores, achievements, winnings, and/or prizes in games of chance or skill.” Under “Professional or employment-related information,” added a bullet point: “Professional achievements and/or honors.” (These clarifications are intended to arrange these points in a more logical order and better reflect the fact that there are many different kinds of awards and honors, some of which the law may regard as different categories of information.) Also made a minor revision to the bullet point for “Audio, electronic, visual, thermal, olfactory, or similar information,” changing “recognizable individuals or likenesses” to “recognizable individuals and/or likenesses.”
    • October 4, 2020: Made a further clarification in Data in Submitted Images, changing “… some of which may be personally identifying” to “… some of which may include and/or constitute personal information and/or potentially personally identifying information” and changed “the metadata could also include other personal information” to “the metadata could also include other personally identifying and/or potentially personally identifying information” (mostly for greater consistency with the Definitions).
    • October 3, 2020: Updated Categories of Information and Purposes for Collection to note that any or all of the listed purposes may include communicating with you (and/or third parties), which is why I haven’t listed that separately. (This is a clarification, more clearly spelling out a point I had hoped would be reasonably self-evident!) In Reports and Aggregated Statistics, changed “may compile and publish aggregated statistical information” to just “may compile aggregated statistical information” (since the possible publication and/or sharing of such information is discussed later in that section). In Data in Submitted Images, changed “digital files contain metadata (such as EXIF information)” to “digital media files usually contain metadata (such as Exif information)” for clarity and to conform to how the official standard stylizes “Exif” (which is an acronym for “exchangeable image file”); added a sentence later in that paragraph: “Video and/or audio recording devices and/or editing software may add various metadata to other types of digital media files”; and, in the final sentence of that paragraph, changed “for your individual device” to “for your individual device and software.”
    • September 30, 2020: In Website Server, Error, and Security Logs and Security Scans, added an additional type of information to the categories of information gathered (“special: other identifiers*”). In Website Server, Error, and Security Logs, changed the sentence “Most such logs also include the date and time each logged event took place” to “Most such logs also include the date and time each logged event took place; certain types of events may also be assigned unique ID numbers and/or other identifiers for reference purposes.” In Security Scans, added a sentence to the paragraph beginning “Like the logs described …”: “Certain events may be assigned unique ID numbers and/or other identifiers for reference purposes.” (These additions are a clarification intended to better describe the information that may be recorded in the various logs, not all of which is within my technical understanding.)
    • September 29, 2020: In Information I Receive from Third Parties for Security Purposes, fixed misspellings of Spamhaus, updated the link to the MVPS HOSTS file homepage, added a trademark notice for IPinfo, and changed “the security components of the Microsoft® Windows® operating system …” to “the security components of the Microsoft® Windows® operating system and/or its associated software and/or services …” In Disclosure of Personally Identifying Information, updated the description of Microsoft in the examples of third-party service providers to change “which provides some of the software, apps, tools, and services I may use and/or offer — including, but not limited to, the operating systems for some of the devices I use and the Microsoft Office suite of software and services — and gathers certain information about such use as described …” to “which provides some of the software, apps, tools, and services I may use and/or offer — which are too numerous to list here, but may include (without limitation) the operating systems and associated software and services for some of the devices I use and the Microsoft Office suite of software and services — and gathers certain information about the use of such software, apps, tools, and services as described …” (mostly for the sake of internal consistency of wording). Also added to that section the providers of filter lists, block lists, and/or other security information listed in Information I Receive from Third Parties for Security Purposes that were not already among the examples listed in Disclosure of Personally Identifying Information and adjusted the wording of the existing references to NetGuard and IPinfo in that section, mainly to add a trademark notice for the latter. (For the record, the IPinfo website is inconsistent about the spelling and stylization of both IPinfo and IDB LLC, the company that provides the service; I went with what seemed to be the most frequently used iterations and took my best guess at an appropriate trademark notice.) Removed some extra spaces. Renamed the License for This Policy section “Credits and License for This Policy.” In Legal Bases for Collecting and Using Information, corrected the abbreviation for Brazil’s new privacy law (the LGPD). In the Your Rights (GDPR and Other National or State Privacy Laws) section, moved the language about the right to make a complaint to the applicable data protection authority to the bullet-pointed list, adjusting the preceding items in that list and the text of following paragraph accordingly.
    • September 26, 2020: In Disclosure of Personally Identifying Information, updated the bullet point beginning “To editors, publishers, clients, employers, and/or other third parties …” to change “and/or for whom I may otherwise work and/or provide services” to “for whom I may otherwise work and/or provide services; and/or as I may reasonably be requested or directed to do as part of and/or in connection with such services, content, and/or work (and/or the offer thereof)” (since there are various scenarios in which my work and/or services, and/or the sale or licensing of my content, might entail my sharing certain pertinent information directly with third parties other than the actual editor(s), publisher(s), client(s), or employer(s)). In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, updated the related bullet to change “and/or for whom I may otherwise work and/or provide services” to “for whom I may otherwise work and/or provide services; and/or as I may reasonably be requested or directed to do as part of and/or in connection with such services, content, and/or work (and/or the offer thereof)” for consistency. Tinkered a bit with the wording of these amendments.
    • September 25, 2020: Added the Blacklight tool developed by The Markup to the examples of third-party service providers under Disclosure of Personally Identifying Information.
    • September 24, 2020: In Definitions, updated the definition for geolocation data to change “(or, obviously, if I meet you in person), but I (and/or my service providers, where applicable) may also determine or estimate your geographical location or movements based on other data …” to “(or, obviously, if I meet or otherwise encounter you in person); if someone else directly or indirectly describes your location or movements to me; or if I (and/or my service providers, where applicable) determine, estimate, and/or infer your geographical location or movements based on other data …” In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “Geolocation information, such as a geographical location estimated based on an IP address and/or GPS coordinates, or a location and/or movements that you describe to me” to “Geolocation information, such as an individual or household’s geographical location and/or movements, whether directly observed; stated or described to me (directly or indirectly); or determined, estimated, and/or inferred from other data (e.g., from an IP address, telephone area code, and/or GPS coordinates)” (for internal consistency with language elsewhere in this policy).
    • September 23: 2020: In Definitions, updated the definition for user agent information to change “certain settings such as (though not necessarily limited to) …” to “certain settings such as (though not limited to) …” In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, amended the bullet point under “Additional categories of personal information” regarding health insurance information to change “much of what insurance-related data I do collect” to “much of what health-insurance-related data I do collect” for clarity and added an additional bullet point: “Information about other types of insurance and/or insurance coverage.” Under “Commercial information,” added a bullet point: “Information about an individual or household’s participation in sports, games, hobbies, and/or other pastimes.” Under “Internet or similar network activity,” changed “Network and/or shared device information” to “Network, shared device, and/or online service information” and added “websites; online service accounts;” to the listed examples after “shared printers and/or other devices.” In “Other types of personal information,” added three bullet points: “Information about an individual or household’s agents, representatives, and/or service providers (e.g., attorney(s) or legal counsel, talent or literary agency, manager(s), accountant(s), auditor(s), assistant(s) and/or secretaries, and/or other authorized representatives and/or professional service providers)”; “Information about wills, estates, executorship, and/or inheritance”; and “Information about community service (e.g., jury duty), volunteer work, and/or charitable activity.” Also changed “Encryption public keys and similar security data” to “Encryption public keys and/or similar security data.” Fixed an accidental duplication in these additions.
    • September 22, 2020: In Categories of Information and Purposes for Collection, updated the bullet point on “Research and publishing” to change “… and/or other creative endeavors” to “… and/or my other creative endeavors.” In Embedded Content, updated the bullet point regarding PayPal content to change “that some plugins place on the administrative dashboard” to “that certain themes and/or plugins place on the administrative dashboard” and updated the bullet points on embedded YouTube videos, Vimeo videos, and blog feeds to change “by certain plugins on portions of the administrative dashboard” to “by certain themes and/or plugins on portions of the administrative dashboard” (for internal consistency).
    • September 19, 2020: In Website Server, Error, and Security Logs, changed “In general, DreamHost has access to any data or files on any server they own — except in cases where I have specially encrypted such file(s) or data …” to “In general, DreamHost has access to any data and/or files on any server they own — except in cases where I have specially encrypted such file(s) and/or data …” In Disclosure of Personally Identifying Information, updated the reference to DreamHost to more fully (though still not exhaustively) describe the range of services they provide for us. Also fixed a capitalization error elsewhere in that section.
    • September 18, 2020: In Disclosure of Personally Identifying Information, made a minor revision to the reference to Blur (changing “Abine, Inc.’s Blur” to “Abine Blur” to reflect their current usage), and added a clearer trademark notice for Khan Academy. Made a minor clarification in the Cookie Notice: In the “Commenting” subsection, changed “are associated with their user ID number and user profile” to “are associated with their user ID number and user profile information” for clarity.
    • September 15, 2020: In Disclosure of Personally Identifying Information, changed “Second, if I possess artwork, one or more copies of published work(s), and/or useful article(s) that contain and/or incorporate personal information about certain individual(s) or household(s) who have visited this website (such as, without limitation, a book by or about you (or that you once owned and in which you wrote your name), a magazine that published a letter or article you once wrote, or a DVD of a movie in which you appeared), I might sell, lend, donate, or otherwise dispose of such artwork, my copy or copies of such published work(s), and/or such useful article(s)” to “Second, if I possess artwork, copies of published work(s), and/or useful article(s) that contain and/or otherwise incorporate personal information about certain individual(s) or household(s) who have visited this website (such as, without limitation, a book by or about you; a magazine you once owned that still bears your name and address on the subscription mailing label; a DVD of a movie in which you appeared; or some item you once autographed), I might sell, lend, donate, or otherwise dispose of such artwork, my copy or copies of such published work(s), and/or such useful article(s).” In the related paragraph of the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “that contain and/or incorporate personal information” to “that contain and/or otherwise incorporate personal information” for consistency. Also revised the wording of the related bullet points in that section and Disclosure of Personally Identifying Information in an effort to better align the language, changing the first portion of the text of each bullet point to “If the information is contained in and/or otherwise incorporated into artwork, a copy of a published work, or a useful article (including, without limitation, information inscribed or imprinted upon and/or affixed or otherwise attached to such work(s), copies, or article(s), particularly where that information cannot reasonably be removed without damaging the item or article in question …” (although the formatting of each instance is a little different, and the examples listed in the Disclosure bullet point are now contained in the same parentheses as “including, without limitation …” in the interests of clarity). In the Disclosure bullet point, also struck the sentence “(There are many possible scenarios; these are just a few illustrative examples.)” (The revised wording hopefully makes this statement extraneous.)
    • September 13, 2020: In Other Information I Receive from Third-Party Sources, updated the paragraph regarding the types of people with whom I routinely discuss and/or share information regarding my research to also include “researchers and/or other academics” in the interests of completeness. For the same reason, in the Collection Sources subsection of the CCPA Information Collection and Sharing Notice, changed “Subject matter experts (e.g., historians, biographers), archivists, librarians, observers, eyewitnesses, and/or other knowledgeable parties” to “Subject matter experts, historians, biographers, researchers and/or other academics, archivists, librarians, observers, eyewitnesses, and/or other knowledgeable parties.” (These are clarifications and efforts to more fully illustrate the intended scope, not an actual change in my practices.) In Certificate Authority Checks and Disclosure of Personally Identifying Information, rearranged and updated the trademark notices for Let’s Encrypt. In Embedded Content and Disclosure of Personally Identifying Information, added trademark notices for Font Awesome.
    • September 12, 2020: In Comments, changed “Also, if your comment contains HTML/PHP code (including hyperlinks), emojis, and/or special characters, they may be removed (“stripped”) prior to publication” to “Also, if your comment contains hyperlinks, certain types of HTML/PHP or other code, emojis, and/or special characters, they may be removed, either by being automatically “stripped” prior to publication or manually deleted by me” for greater clarity. Later in that section, updated the paragraph on commenting-related cookies to refer to the Commenting subsection of the Cookie Notice rather than the Cookies and Similar Technologies section, adding a link to the Cookie Notice and making some minor wording and punctuation adjustments to that paragraph for consistency. In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, added a bullet point on information inscribed or imprinted upon, affixed to, and/or otherwise attached to or incorporated into artwork, a copy of a published work, or a useful article, for consistency with the similar bullet point in Disclosure of Personally Identifying Information. Throughout this page, fixed a recurrent typographical error in the HTML attributes of certain hyperlinks (I realized I had frequently misspelled “noopener”!).
    • September 11, 2020: In the Data Retention subsection of the Financial Transactions Policy, Transaction-Related Information I Receive from Third Parties, Other Information I Receive from Third-Party Sources, and Additional Information About Data Retention, added disclaimers that the retention of data by third parties (e.g., vendors and/or service providers) is subject to the individual policies of the applicable third parties, and in most cases is outside of my control. (The wording of the disclaimer varies slightly from section to section, but the intent is the same.) Added a similar disclaimer (also worded slightly differently, but again with the same intent) to Data Related to Recruitment/Hiring or Business Partnerships. In Additional Information About Data Retention, also updated the bullet point on financial transactions and/or legal agreements to add “(Naturally, the applicable bank(s)/financial institution(s) and/or payment processor(s) may also retain transaction-related information, which is outside of my control.)” to further emphasize and illustrate the point. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “The collection/sharing of personal information by third-party services is subject to the applicable service’s privacy policy and terms of use/terms of service, and is outside of my control” to “The collection, use, and/or retention of personal information by third-party services are subject to the applicable service’s privacy policy and terms of use/terms of service, and are outside of my control.” Also in the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, under “Other types of personal information,” changed “Handwritten notes, documents, and/or other examples of individuals’ handwriting (in whatever medium)” to “Handwritten notes, documents, illustrations, paintings, sketches, and/or other examples of individuals’ handwriting, calligraphy, and/or artwork (in whatever medium).” Did some minor tinkering with the wording of these additions.
    • September 10, 2020: In Information I Receive from Third Parties for Security Purposes, updated the reference to EFF browser add-ons to specify Privacy Badger as an example, also making some minor adjustments to the wording. Also added Disconnect (whose Tracker Protection lists some web browsers now use to help block fingerprinting and/or certain other forms of online tracking) to that section’s listed examples of information sources. Fixed a minor punctuation error in that section and Disclosure of Personally Identifying Information (replacing a colon with a semicolon).
    • September 8, 2020: In Data Related to Recruitment/Hiring or Business Partnerships and the examples of third-party service providers under Disclosure of Personally Identifying Information, changed “employment agencies” to “staffing agencies/employment agencies” in the interests of completeness (although these terms can generally be considered synonymous).
    • September 6, 2020: In the list of examples of third-party service providers and vendors in Disclosure of Personally Identifying Information, updated the bullet point on electronic devices to also mention other types of home appliances, headphones and/or headsets, and webcams and/or microphones. Also changed “I do not presently use these devices’ proprietary software” to “I generally seek to avoid or at least limit my use of these devices’ proprietary software (if any)” and changed “any applicable product-specific privacy policies” to “any applicable product- and/or software-specific privacy policies.” (Although I generally loathe both Internet-enabled appliances and proprietary device software, they are becoming harder to avoid, which calls for additional caveats.) In that same bullet point, changed “incorporated into the devices and/or their associated software, firmware, and/or drivers” to “incorporated into the devices and/or their associated software and/or drivers” (since many electronic devices can’t work without their associated firmware, it didn’t really make sense to try to distinguish the two in this context). In Disclosure of Personally Identifying Information, updated the bullet point on social media services to note that I retain an offline copy of my Facebook account data as of December 11, 2018 (the date I initiated the deletion of my account). Also in Additional Information on Data Retention, changed “… social media accounts, and/or social media services” to “… social media services, and/or other communications services” (which was how that phrase was intended to read). In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, amended a bullet point in the examples of Professional or employment-related information to change “and/or similar and/or other comparable information …” to “and/or other, similar and/or comparable information …” in the interests of clarity. Made a number of minor corrections to earlier items in this revisions list.
    • September 5, 2020: In Disclosure of Personally Identifying Information, changed “… or otherwise perform services for me or on my behalf” to “… and/or otherwise perform services for me or on my behalf” (for internal consistency) and changed an instance of the phrase “again, without limitation” to “again without limitation” (for stylistic consistency). In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “Service providers and/or vendors I use in connection with this website, my other professional activities, and/or the management or operation of my business” to just “My service providers and/or vendors” in the interests of clarity (and to avoid inadvertently obfuscating or contradicting the corresponding language in Disclosure of Personally Identifying Information).
    • September 2, 2020: In Disclosure of Personally Identifying Information, updated the bullet point on social media services in the examples of third-party service providers to add a note regarding LiveJournal. Also added Tumblr to the examples listed in that bullet point. Fixed a minor punctuation issue.
    • August 30, 2020: In Other Information I Receive from Third-Party Sources, made a number of minor adjustments to the paragraph on information provided by social media services (mostly nitpicking, and intended to make the language as broadly applicable as possible), also changing the first words of that paragraph from “Social media services …” to “Similarly, third-party social media services …” (to help clarify that it’s intended to refer to social media services outside of this website) and eliminating the potentially confusing use of the second person in the first sentence. In Disclosure of Personally Identifying Information, updated the reference to the software included with Gpg4win to change the phrase “including (again without limitation)” to “which may include (again without limitation).”
    • August 28, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, removed the FAX number bullet point from Other types of personal information to Additional categories of personal information, combining it with the bullet point in that section for telephone numbers (i.e., “Telephone numbers (and/or FAX numbers)”), which is probably a more appropriate place for it. In Disclosure of Personally Identifying Information, restored the bullet points on third-party service providers, which I had accidentally replaced with the equivalent section of the 6200 Productions Privacy Policy while making other changes on August 25, 2020, and (hopefully) recreated the changes I had intended to make at that time. In the bullet point on social media services in that section, also changed “discuss and/or promote” to “research, discuss, and/or promote” for completeness. Later in that section, updated one of the references to Yahoo! to change the phrase “their services are now subject to …” to just “their services are subject to …” to avoid confusion, fixed some errors in the anchor text for several of the links to the Verizon Media Privacy Policy (the name of which had been listed incorrectly in a couple of places in this policy), and further adjusted the references to and trademark notices for Yahoo and Verizon Media (which had gotten garbled in the previous attempt to update them). Made a couple of minor corrections to this revisions list (in particular, the FAX number addition was actually in the In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, not the Information Shared for Business or Commercial Purposes subsection!). In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, also made a number of adjustments to the examples under Additional categories of personal information (updating the “Other financial information” bullet point to also include “other information pertaining to creditworthiness, assets, income, and/or liabilities” and updating the “Medical information” bullet point to list include drugs and/or medical products and/or equipment used rather than vaccinations received); Characteristics of classifications protected by law (updating the bullet point on “Information about children and/or family members” bullet point to add after “children” the parenthetical phrase “(such as the number of children and/or their names, ages, and/or genders)”; and Commercial information (amending the first and third bullet points to also mention rental and leasing as well as purchase, which was already partially reflected in the first bullet point; changing “Property records (e.g., information about who owns or has owned a particular building or other real property)” to “Information about real property an individual has purchased, leased, or rented, and/or property records indicating who owns a particular building, lot, or other real property”; and changing “Information about other types of purchases or transactions” to “Information about other types of purchases, transactions, and/or investments”). (Most of these are just clarifications and to better align the listed examples with certain statutory language.) In Information I Receive from Third Parties for Security Purposes, changed “For example (but without limitation), I might submit to the maintainers of these lists or databases certain email addresses or domain names that have been used in malicious activity directed at me” to “For example (but without limitation), I might submit to the maintainers of these lists or databases certain email addresses or domain names that have been used in malicious activity directed at me, or post information on support forums in order to obtain help or advice in preventing and/or remediating certain malicious activity” (for clarity and further emphasis). In Disclosure of Personally Identifying Information, changed “insurers” to “insurers and/or warranty providers (for greater clarity and completeness).
    • August 27, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added FAX numbers to the examples listed under Other types of personal information.
    • August 25, 2020: In Other Inquiries, Messages, and Support Requests, changed “In general, you’re perfectly free to contact me using a pseudonym unless your message is a privacy request or pertains to a specific legal or financial matter” to “In general, you’re perfectly free to contact me using a pseudonym unless your communication(s) pertain to a legal matter, a specific financial transaction, or certain privacy-related requests, in which case I may need your legal name.” Later in that section, added a trademark notice for Verizon and Verizon Media and added links for the older Yahoo! Privacy Policy (which in some cases may apply in addition to or instead of the Verizon Media Privacy Policy). In Disclosure of Personally Identifying Information, made similar adjustments to the Yahoo! and Verizon Media privacy policy links, removed a potentially confusing reference to Oath (the corporate entity that is now Verizon Media), added or updated some other trademark notices in that section, and slightly amended the references to the DuckDuckGo and Startpage.com search engines (to separate the two with a semicolon and delete the phrase “the search engines I most commonly use,” although that statement remains true). Also updated some trademark notices elsewhere in this policy. Removed some extra spaces elsewhere in the text and fixed a number of minor punctuation issues. Throughout the text, updated some external links from HTTP to HTTPS.
    • August 24, 2020: In Disclosure of Personally Identifying Information, revised the reference to travel agencies and airline/bus/rail services to change “in connection with trips I take or arrange” to “in connection with trips I take and/or arrange” and revised the reference to hotels, models, and/or other lodging providers to change “in connection with trips I take or arrange in some context related to this website and/or in the course of my business” to “if I use and/or arrange such lodgings in some context related to this website and/or in the course of my business” (all nitpicking clarifications). Also in that section, changed “the Microsoft Office suite” to “the Microsoft Office suite of software and services” for clarity and updated the trademark notice. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “such as a geographical location estimated based on an IP address” to “such as a geographical location estimated based on an IP address and/or GPS coordinates” (again for clarification purposes, since either example would clearly fall into this category).
    • August 23, 2020: In Disclosure of Personally Identifying Information, added the phpMyAdmin project to the examples of third-party service providers whose services I may use in operating this website. In Information I Receive from Third Parties for Security Purposes, changed the phrase “(which is used by Bitdefender, Mozilla Firefox, various other web browsers, and some other apps and online services)” to “(which is used by Bitdefender, various web browsers, and some other apps and online services)” for the sake of conciseness.
    • August 22, 2020: In Information I Receive from Third Parties for Security Purposes, changed “… bank(s)/financial institution(s), and/or other sources not specified above” to “… and/or bank(s)/financial institution(s); the support forums on WordPress.org (WordPress is a registered trademark of the WordPress Foundation) and/or other support forums or online resources; and/or other sources not specified above” for completeness.
    • August 21, 2020: In Disclosure of Personally Identifying Information, updated the references to the Google, Yahoo, and Yandex search engines to change “search engine” to “search engine(s)” (since in some cases they may technically comprise families of distinct search engines that can’t reasonably be enumerated in this already-crowded list). Also updated the reference to Microsoft Bing Search to add the phrase “(and/or other Bing search engines such as, without limitation, Bing Maps)” for the same reason and fixed a typographical error in the trademark notice.
    • August 20, 2020: Made a minor clarification in Comments, changing “a request to retrieve, delete, or amend personal information” to “a request to access, delete, and/or correct personal information.” (The intended meaning is the same, but the latter terms are hopefully clearer.) In Website Server, Error, and Security Logs, changed “Like most websites, I and my web host” to “Like most websites, the aaronseverson.com website and my web host” (since I am obviously not a website) and changed “… or attempts to interact with the site in any unusual or suspicious way (such as trying to access the site’s administrative dashboard or run an unauthorized script)” to “&hellips; logs into or otherwise accesses the administrative dashboard and/or other administrative resources or controls; attempts to interact with the site in any unusual or suspicious way (such as trying to access the site’s administrative dashboard without authorization or run an unauthorized script); and/or performs certain other actions.” Also in that section, added “special: information collected via cookies and/or similar technologies*” to the listed categories of information that may be collected and changed “data pertaining to administrative resources” to “data pertaining to administrative resources or controls” for consistency. In Online Tracking, changed “web analytics tools” to “third-party web analytics services” (for clarification) and amended the entry below for August 19, 2020, to better explain the reasoning for the wording change.
    • August 19, 2020: In Website Server, Error, and Security Logs, changed the sentence “Certain website logs that contain only anonymous and/or administrative data (e.g., hit counters) may be retained for longer periods” to “Certain website logs and/or log reports that contain only aggregated data, anonymous information (e.g., hit counters), and/or data pertaining to administrative resources that are normally off-limits except to authorized administrative users, may be retained for longer periods” (in the interests of completeness). Also in that section, changed “Naturally, I may retain certain specific information from the website’s logs if I still need it …” to “Naturally, I and/or my web host may retain certain specific information from the website’s logs if it is still needed …” for greater accuracy and changed “… and are not in any way connected to or associated with any web analytics service” to “… and are not connected to or associated with any third-party web analytics service” for clarity. (Although I may sometimes use log data for purposes that could be described as analytic, such analysis involves examining data already collected as part of the site’s normal operations, in the same way one might analyze call data from one’s existing monthly phone bills.)
    • August 18, 2020: In Disclosure of Personally Identifying Information, added a new bullet point: “To editors, publishers, clients, employers, and/or other third parties for whom I provide (and/or to whom I offer) my writing/editing/writing consulting services; to whom I may license, sell, or otherwise offer my content and/or other creative work; and/or for whom I may otherwise work and/or provide services, where the information is part of and/or otherwise pertains to such services, content, and/or work,” along with a few representative examples. (As already indicated elsewhere in this policy, I am a professional writer/editor and writing consultant. While that work is primarily covered by a separate privacy policy, it’s not beyond the realm of possibility that there could be some overlap with this website, a point that was already stated later in that same section and at various other points in this policy.) Amended the related bullet point in the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice to better align with this language. Elsewhere in the Disclosure of Personally Identifying Information section, changed “somehow visible, audible, or otherwise included” to “somehow visible, audible, and/or otherwise included” (obviously, it’s entirely possible for someone to be both visible AND audible in certain media!). Throughout this document, changed various instances of “writing consultation” to “writing consulting” for internal consistency.
    • August 17, 2020: Updated Security Scans to note that the features of the Sucuri Security and iThemes Security plugins include testing the integrity of the website’s WordPress files (which involves communicating with WordPress API servers and/or repositories), making a number of revisions to the descriptions of those plugins to accommodate the added text (including noting that some of the features of iThemes Security may include transmitting information to other external sources as well as receiving information from them) and add links to the WordPress Privacy Policy. Updated the bullet point in Embedded content regarding WordPress.org content to change “associated content distribution networks” to “associated API servers, content distribution networks (CDNs), and/or repositories” and mention file integrity checking as a specific example of the kind of communication that may be involved, referring back to the Security Scans section.
    • August 16, 2020: In Disclosure of Personally Identifying Information, amended the reference to Dell to change “factory-installed software” to just “software” (since their software isn’t necessarily factory-installed); updated the reference to HP to change “software and/or services” to “drivers, software, and/or services”; and updated the references to Seagate and Western Digital to change “associated software and/or drivers” to “associated drivers and/or software” for consistency. (Most of this is just nitpicking to make the language in that section reasonably consistent.) Also updated the reference in that section to Tracker Software Products (Canada) Ltd. to also reference PDF-XChange Co. Ltd. (of which Tracker Software Products is a subsidiary), adjust the wording, and add a trademark notice. In Disclosure of Personally Identifying Information, also changed “… are the subject(s) of and/or otherwise pertinent to that content” to “… are the subject(s) of and/or otherwise pertinent to such content and/or creative endeavor(s)” for consistency.
    • August 15, 2020: In Information I Receive from Third Parties for Security Purposes, changed “from the StevenBlack hosts file” to “Steven Black’s StevenBlack/hosts” (which appears to be how the developer styles the name), mostly for grammatical consistency within that paragraph, and changed “WHOIS or similar lookups” to “WHOIS, RDAP (Registration Data Access Protocol), and/or similar lookups” for completeness. In Definitions, amended the Domain name definition to make some clarifications and correct a number of factual errors. In Disclosure of Personally Identifying Information, changed “WHOIS lookup providers” to “WHOIS and/or RDAP (Registration Data Access Protocol) lookup providers” (since RDAP is intended to fulfill the same function as and eventually replace WHOIS) and changed “tools such as the ICAAN WHOIS Lookup tool” to “tools such as, though not necessarily limited to, the ICANN Domain Name Registration Data Lookup tool,” also updating the link to the latter tool and adding a trademark notice. In the same section, also added a trademark notice for TCL.
    • August 14, 2020: In Embedded Content, rewrote the bullet point regarding WordPress.org content for greater accuracy and clarity (also updating and reordering the examples of domains used by content distribution networks associated with WordPress.org, such as s.w.org). In the following paragraph in that section, changed “I may post embedded content hosted and served by other third-party websites or services not listed above” to “I may post or otherwise use embedded content hosted on and served by other third-party websites or services not listed above” for similar reasons. Did some minor tinkering with the wording of these additions. Also made a minor amendment to the Information Sharing subsection of the Financial Transactions Policy, changing “…” deliver anything to you in connection with your transaction” to “… deliver anything in connection with your transaction.” (This is mostly a clarification; obviously, if your transaction is for or on behalf of someone else, it may involve mailing, shipping, or delivering something to some person or entity other than you.) Elsewhere in that section, also changed “so that I may communicate with you regarding your transaction” to “for purposes of transaction-related communications” for similar reasons.
    • August 13, 2020: Updated Security Scans and Information I Receive from Third Parties for Security Purposes to also make reference to iThemes Security. Corrected the second reference to the Sucuri Security privacy policy in Security Scans to change “As explained in the Sucuri Privacy Policy …” to “As explained in the Sucuri Security Privacy Policy …” Also added Sucuri Security to the Information I Receive from Third Parties for Security Purposes section (mostly for completeness, since it’s already discussed elsewhere in this policy), added “and/or other Google services” after Google Voice (since there may be other relevant Google services besides those already enumerated), and tidied up the grammar of the list of examples in that section (removing various extraneous instances of the words “through” and “via”). Added iThemes to the examples of third-party service providers in Disclosure of Personally Identifying Information. Removed some extra spaces. In Disclosure of Personally Identifying Information, also changed the phrase “associated images” to just “images” to avoid confusion (since in some cases, the images may BE the content in question rather than simply associated with it) and added a separate bullet point on information in images and other media. Did some minor tinkering with the wording of these additions.
    • August 12, 2020: In Disclosure of Personally Identifying Information, added a new bullet point pertaining to information “inscribed or imprinted upon, affixed to, and/or otherwise attached to or incorporated into artwork, a copy of a published work, or a useful article, particularly where the information cannot reasonably be removed without damaging that item or article,” which was already alluded to elsewhere in the text, but probably needs to be spelled out explicitly. In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, updated the bullet point beginning “The public …” to add “my disposal of my personal property (e.g., lending, donating, or selling my copies of books, magazines, and/or other published works)” for consistency. In the latter section, also added an additional bullet point to the list that follows the paragraph beginning, “Actions like the following could also be deemed sharing information …”: “Lending or giving someone a copy of a book or other published work that was autographed by the author and/or contains someone’s handwritten marginal notes, or a magazine with the original subscription mailing label still affixed to or imprinted upon the cover.” Did some minor tinkering with the wording of these additions. In the latter section and Disclosure of Personally Identifying Information, also changed existing language about personal information contained and/or incorporated into published works to also refer to useful articles containing and/or incorporating personal information, for consistency with today’s other additions. In the same paragraph of the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, also changed “… disposing of my copies of published books, magazines, CDs, DVDs, or other such personal property” to “… disposing of personal property such as my copies of published books, magazines, CDs, and/or DVDs” (again for consistency). In the applicable paragraph of Disclosure of Personally Identifying Information, also changed “a book by or about you” to “a book by or about you (or that you once owned and in which you wrote your name)” to further illustrate the point. Fixed some stray uses of “we” and “our” rather than “I” and “my.” In Other Inquiries, Messages, and Support Requests, changed “With some third-party services, our respective settings may also affect what information is shared and/or accessible in connection with messages and/or other communications” to “With some third-party services, individual settings may also affect what information is shared and/or accessible in connection with messages and/or other communications” for internal consistency. Did some minor tinkering with the wording of these additions (including updating it to include artwork as well). Removed some extra spaces.
    • August 11, 2020: In Disclosure of Personally Identifying Information, changed “as do some works of fiction and other types of artwork” to “as do some works of fiction and other types of art and/or creative work” (a nitpicking wording change that better expresses the intended scope with less risk of inviting argument about what constitutes an artwork) and removed the parentheses around that phrase, setting it off with a comma instead.
    • August 9, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added another bullet point to the examples listed under “Other types of personal information”: “Information about friendships, personal relationships, and/or social interactions (including observations and/or inferences regarding individuals’ tendencies and/or preferences therein)” and, under “Professional or employment-related information,” changed “Performance evaluations and/or information about individuals’ professional reputations” to “Performance evaluations and/or information about individuals’ professional reputations and/or conduct” (which more fully expresses the intended scope).
    • August 7, 2020: In Security Scans changed “my mobile carrier” to “my current mobile carrier”; updated the “Phone calls” bullet point in Additional Information About Data Retention” to change “My phone company/mobile carrier …” to “My phone service provider(s) and/or mobile carrier(s) …”; and updated Disclosure of Personally Identifying Information to change “my mobile carrier” to “my mobile carrier(s),” setting the name of the current carrier in parentheses and adjusting the remainder of that phrase for subject/verb agreement, and change “other Internet service providers, mobile carriers, and/or wireless network services …” to “other Internet service providers, mobile carriers, phone service providers, and/or wireless network services …” (As of this writing, I use only one mobile carrier, but I’ve had multiple phone service providers at some points in the past, and it’s not inconceivable that I might again in the future.) Also in that section of Disclosure of Personally Identifying Information, changed “process certain emails sent to and from my phone(s)” to “may process certain emails sent to and from my phone(s)” (since the way email is handled on my newer smartphone isn’t necessarily the same as on my older devices, which the original language was intended to describe) and changed “or otherwise conducted” to and/or otherwise conducted …” for consistency.
    • August 6, 2020: Made various minor changes to the Cookie Policy in the interests of clarity, consistency, and better grammar. (The most substantive changes are to clarify how the setting of cookies may differ for administrative users.)
    • August 5, 2020: Updated recent items in this revisions list (to add the preceding entry for August 4, 2020, and this one to explain it). In the Other Information I Receive from Third-Party Sources section, updated the paragraph on information in published works to also make reference to advertising and/or promotional materials and change “… also gather additional information about the people described, depicted, or involved with such published works, such as (without limitation) seeking to identify pictured individuals not named in a photo caption, the names of contributors not credited in the work itself, or the contact information of an editor or publisher” to “… also gather additional information about the people described, depicted, and/or involved with such published works, such as (without limitation) seeking to identify pictured individuals not named in a photo caption, determine the names of contributors not credited in the work itself, and/or obtain the contact information of an editor or publisher” (mostly in the interests of grammar and internal consistency; this is all hopefully self-evident!).
    • August 4, 2020: Made a minor correction in the previous entry in this revisions list. (There were no further changes to the policy itself, just to the description of the revisions made on August 3, 2020.)
    • August 3, 2020: Updated and revised some of the examples listed in the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice: changed “Names” to “First and/or last names”; changed “Cookies” to “Information gathered through cookies and/or similar technologies” for consistency; added a new bullet point under “Internet or similar network activity information” about network and/or shared device information; added a new catch-all bullet point under “Professional or employment-related information”: “Other information about an individual’s vocation and/or trade”; and amended the bullet point regarding legal information to change “information regarding an individual having been accused of, charged with, and/or convicted of crime(s), infraction(s), and/or misconduct, and/or involved in a civil lawsuit” to “information regarding an individual having been accused of, charged with, and/or convicted of crime(s), infraction(s), and/or misconduct; having been a victim (or alleged victim) of crime(s) and/or misconduct; and/or being involved in a civil lawsuit” for completeness. (Most of these changes are really just clarifications, but it occurred to me that the law may regard simply viewing lists of nearby wireless networks or devices — much less connecting to any of them — as the collection of personal information.) Updated the Cookie Notice to describe the wp-settings-UID and wp-settings-time-UID cookies (listed in the Administrative and Login Cookies category) in the plural rather than the singular. (There’s typically only one of each of these cookies, but there are some scenarios where there could be multiple versions.) Also corrected and clarified the description of the wp-saving-post cookies, including noting that there may be more than one; restored the sentence explaining the meaning of “xx” and “UID” in the cookie descriptions, which had been inadvertently deleted from the Administrative and Login Cookies category; made a grammatical change to the description of the wp-donottrack_feed cookie (to avoid an unclear antecedent); made a minor wording change to the PayPal® Button cookie descriptions (changing the phrase “and is used for …” to “and is probably used to facilitate …” in the interests of preciseness); renamed the latter category “PayPal® Buttons” (since it refers to more than one); added the phrase “(and potentially also for various other purposes, such as user analytics and/or advertising)” after “… to manage your PayPal login and transaction data”; and, in the Vimeo Videos category, changed the phrase “Vimeo’s Cookie Policy …” to “The Vimeo Cookie Policy …”. In the Cookie Notice and on this page, also updated the anchor text and/or title attributes for the links to the Legal Agreements for PayPal Services page. In Other Inquiries, Messages, and Support Requests, changed “in your public profile or that you otherwise make visible …” to “in your public profile and/or that you otherwise make visible …” and added a sentence to the end of that paragraph: “With some third-party services, our respective settings may also affect what information is shared and/or accessible in connection with messages and/or other communications.”
    • July 31, 2020: Updated the Cookie Notice to clarify the descriptions (and some of the names) of the commenting and WordPress cookies and add an additional category for the cookies used to access password-protected posts (which I might conceivably use at some point in the future). Also amended the first paragraph in the Categories of Cookies Used section of the Cookie Policy to insert an additional disclaimer about embedded content providers’ use of cookies (noting that content providers not currently listed might begin using cookies in connection with their embedded content, and/or may already do so in certain circumstances I have not yet recognized) and added a reference and link to the Embedded Content section above, with its links to my commonly used embedded content providers’ respective privacy policies.
    • July 29, 2020: Updated the Contact Forms section to change “If you ask me to publish some portion of your message …” to “If you ask or authorize me to publish your message (or some portion of it) …” (This clarification is mostly for internal consistency of language; I assume most people would consider it reasonably self-evident!) In Other Messages, Inquiries, and Support Requests, simplified the reference to the preceding section by changing the phrase “under the same circumstances as those described in the examples listed in …” to “under the same circumstances as described in the …” (which is hopefully a little clearer).
    • July 28, 2020: Updated Transaction-Related Information I Receive from Third Parties to fix a typographical error and clarify that that section may also apply in situations where I use a third-party vendor or service for other types of transactions, not just where I offer products or services in such ways. Updated that section and the Information Sharing subsection of the Financial Transactions Policy to note that I may also use certain information pertaining to my purchase of products or services (or other, similar transactions) as part of and/or in connection with reviews and/or other commentary regarding the applicable transaction(s). Made a minor editorial change in Embedded Content, changing “(such the ones placed on your device when you log into a specific third-party website or online service)” to “(e.g., the ones placed on your device when you log into a particular third-party website or online service).” Updated a number of trademark attribution notices.
    • July 27, 2020: Further updated the Cookie Notice to fix a typographical error (changing “needed to login” to “needed to log in”); change the words “disappear” and “disappears” to “expire” and “expires” (which is more technically precise); clarify the reference to the Google Video hosting service; add “compiling user analytics data” to the purposes for which YouTube may use cookies; rearrange the trademark notices in the YouTube Videos category for better readability; rearrange the text of the Vimeo Videos category for better readability (including moving the trademark notices to the end); fix a typographical error in the name of one of the Vimeo cookies (“Searchtoken” was misspelled “Sarchtoken”); add the parenthetical phrase “(without limitation)” after “such as” in the YouTube Videos and Vimeo Videos categories (to emphasize that the purposes described are not necessarily an exhaustive list).
    • July 26, 2020: Updated the Cookie Notice to fix a minor grammatical error in the Administrative and Login Cookies category (changing “if you click the “Remember Me” when logging in” to “if you click “Remember Me” when logging in”) and to fix a text formatting error. Amended the Embedded Content section to clarify the bullet point on blog feeds, reorganizing the text, cleaning up some patchy grammar, and making it clearer that such feeds may collect your IP address and user information and may be able to use cookies and/or stored information to track and/or identify you. (As already noted in that bullet point, this refers to feeds on the administrative dashboard, so it normally only applies to logged-in administrative users.)
    • July 25, 2020: In Disclosure of Personally Identifying Information, updated the reference to Intel to change the word “equipment” to “devices and/or hardware” (which is a more accurate description).
    • July 24, 2020: In Other Information I Receive from Third-Party Sources, updated the paragraph about information I may receive from other visitors (the paragraph beginning, “From time to time …”) to specifically mention car photos. (People frequently send me pictures of interesting cars for various reasons!) Updated Cookies and Similar Technologies and the Cookie Notice to clarify that while the cookie descriptions in the Cookie Notice and the cookie settings accessed through the “Access Your Privacy and Cookie Preferences” button are intended to be identical save for minor variations in formatting and text style, in the event of any substantive discrepancy, the Cookie Notice version(s) shall govern. Updated Browser Tests and the Browser Tests section of the Cookie Notice to note that the login page for the administrative dashboard also conducts similar tests (something that was already mentioned in the Cookie notice section on Administrative and Login Cookies) and amended some of the existing text, deleting the wording about the local storage lasting the duration of your visit (which may not always be the case depending on the test and what browser you’re using) and the line about not using the test results information to track or individually identify you. (Some jurisdictions now take such an expansive view of what information may be considered personally identifying that I’d rather not argue the latter point.) In the Who I Am section of this page, amended the anchor text for the link to the Controller/Responsible Party, Questions, and How to Reach Me section in the interests of clarity. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added handwritten notes, documents, and/or other examples of individuals’ handwriting (in whatever medium) to the examples of other types of personal information.
    • July 23, 2020: In the Cookie Notice, made some changes to the descriptions of the cookies (principally stylistic) in hopes of making those descriptions clearer and easier to read. Also made some minor corrections to the references to PayPal on this page and the Cookie Notice (their privacy policy is called the Privacy Statement, and “Statement on Cookies and Tracking Technologies” was supposed to be singular rather than plural). In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, added information collected through cookie and/or similar technologies to the listed examples of identifiers collected. In that notice and the Data Related to Recruitment/Hiring or Professional Partnerships section, also changed “professional certification and/or licensure” to “professional certifications and/or licensure.”
    • July 22, 2020: Moved or copied some of the information from the Definitions and the Cookies and Similar Technologies section of this page to the Cookie Notice. Revised and rearranged the Cookie Notice text to accommodate the additions, improve clarity, and limit repetition. Revised the Cookies and Similar Technologies section to better reflect the move. Updated the Definitions of “Cookies and similar technologies” (both on this page and the Cookie Notice) to change “Some online services …” to “Some websites and/or online services …” Copied some of the information from the Browser Tests section to the Cookie Notice (since that section describes certain information that may be stored in a visitor’s browser). Added an additional category of information to Browser Tests; Security Scans; Embedded Content; Consents and Agreements; Age Verification; Comments; Other Messages, Inquiries, and Support Requests; and Data Related to Recruitment/Hiring or Business Partnerships: “special: information collected via cookies and/or similar technologies.” (This is really a clarification rather than an addition, since it pertains to how information may be collected rather than what information is collected, which was already encompassed by the existing categories. For example, the information the website may collect when someone submits a comment is the same whether that user has saved their name and email address in cookies or types it in each time.) In Disclosure of Personally Identifying Information, added an internal hyperlink to the Embedded Content section. Clarified some points in the previous entry (July 21, 2020) in this revisions list. Removed some extra spaces here and on the Older Privacy Policy Revisions page. Added a trademark disclaimer statement to the Older Privacy Policy Revisions page. Copied part of the final paragraph of Disclosure of Personally Identifying Information (a portion of the sentence beginning “While no online website —”) to the beginning of Security Scans — where it more logically belongs — and amended the paragraph in the latter section to clarify that it is (now) reiterating the point. (Also changed “https” to “HTTPS” for stylistic consistency.) In Website Server, Error, and Security Logs, changed “trying to access the site’s administrative area” to “trying to access the site’s administrative dashboard” for clarity. Added trademark notices for Creative Commons. In License for This Policy, changed the phrase “both the original and this document” to “both their policy and this document” in the interests of clarity.
    • July 21, 2020: Updated the Website Server, Error, and Security Logs and Security Scans sections to state explicitly that some of the information gathered by the logs and/or security measures “may be considered personal information or potentially personally identifying information in at least some jurisdictions” and more clearly explain that certain logs and/or security measures may record the username, user ID, and/or other identifiers associated with administrative users involved in (or appearing to be involved in) certain actions or events. Also added the latter to the categories listed in the Consents and Agreements, Age Verification, Comments, and Contact Forms sections. (I’ve categorized this type of data as “special” because it normally doesn’t apply to you at all if you’re not one of this website’s administrative users; in most cases, it’s only collected from me when I use site functions like comments. The principal exceptions would be if someone else used or attempted to use my user credentials on this website, or tried to create and/or use new user credentials, as part of an intrusion or hacking attempt.) In Website Server, Error, and Security Logs, also amended the paragraph about email alerts to change “If the event is a potential threat, it may include the IP address of the device involved (which is also recorded in the website logs)” to “The alert may include some or all of whatever data the logs recorded.” Made a number of minor changes to the language in those sections to accommodate these additions and improve readability. Updated Other Messages, Inquiries, and Support Requests to rename the category “information on or provided by third-party services (as applicable)” to “special: identifiers and/or other information provided by and/or specific to third-party services (as applicable)” for completeness. Also added that category to Data Related to Recruitment/Hiring or Business Partnerships (replacing “information provided by third-party services (as applicable)”), Financial Transactions Policy, Transaction-Related Information I Receive from Third Parties, and Other Information I Receive from Third-Party Sources. (This category is intended to better encompass a whole range of information that identifies or is associated with the users of various third-party services; for example, an individual’s unique ID number or username on a particular service would fall into this category. It’s necessarily general because it may vary dramatically depending on the specific services involved.) In Data in Submitted Images, also changed the category “potentially personally identifying information such as (without limitation) license plate and/or vehicle identification numbers*” to “special: other visible and/or audible identifiers and/or potentially personally identifying information (such as (without limitation) a pictured car’s license plate and/or vehicle identification numbers)*” (since a license plate number or VIN is probably now considered an identifier in many jurisdictions). Throughout this policy, also revised the category lists to ensure that sections listing multiple “special” categories separate them by semicolons, with each category preceded by “special:” (which is hopefully less confusing). In Other Messages, Inquiries, and Support Requests, also added a that information that pertains to my articles or other content (for example, if I interview or consult with you in connection with an article) may be published or disclosed in that context, as already stated in the Other Information I Receive from Third-Party Sources section. In Disclosure of Personally Identifying Information, changed “storage facilities” to “storage facilities (including, though not limited to, providers of safe deposit boxes)” and changed “postal services, common carriers, and/or shipping agencies” to “postal services, common carriers, shipping agencies, and/or mailbox rental services.” In Other Information I Receive from Third-Party Sources, made various minor edits to the paragraph about research related to my content (the paragraph beginning “I routinely gather information …”). In Contact Forms, changed “I may amend and/or update the applicable content to incorporate and/or reflect the factual substance of your corrections, clarifications, and/or suggestions” to “I may incorporate the factual substance of your corrections, clarifications, and/or suggestions into the applicable content” and added a new second bullet point to that list reading, “If your inquiry provides significant assistance with the management of this website, my content, and/or some related matter(s), I may elect to publicly acknowledge and/or thank you by name or applicable pseudonym, unless you ask me not to or I reasonably surmise that you prefer not to be acknowledged or identified.” Adjusted references to my newer smartphone to match the way the manufacturer styles the model name. Updated the preamble and Cookies and Similar Technologies to note that the Cookie Notice also constitutes the “cookie policy” for this website, for jurisdictions that explicitly require such a policy. Also added a similar note to the Cookie Notice itself. In Disclosure of Personally Identifying Information, completely rewrote the bullet point about information incorporated into my content (which previously began “As part of journalistic, historical, critical, or other nonfiction accounts”) and the paragraphs later in that section regarding information incorporated into content that I license or sell, also deleting the paragraph about keeping certain information separate (since it was confusingly framed and I couldn’t figure out a suitable generalizable way to coherently express the intent). (These revisions don’t represent a change in my practices — although the revised language is slightly broader in scope — but rather my ongoing efforts to explain the normal activities of a professional writer/editor within the context of this policy, something for which I have few useful models. As you may gather, I remain deeply uneasy about the potential impact of the various state and national privacy laws and regulations on freedom of expression, freedom of the press, and my livelihood.) Elsewhere in that section, changed the phrase “are difficult to quantify” to “is difficult to quantify” (a point of troublesome grammar). In that section, Advertising, and the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, changed “they may gather information about you as described …” to “they may gather and use information about you — potentially for various commercial purposes — as described …” In the instance in Disclosure of Personally Identifying Information, also added the sentence “This could conceivably be deemed to constitute sharing information “for commercial purposes” as the CCPA defines it, even if I do not directly provide any information about you to those advertisers” to the end of the applicable paragraph.
    • July 20, 2020: In Disclosure of Personally Identifying Information, added I.R.I.S. (which makes OCR software) to the examples of third-party service providers. Added or updated more trademark notices through this page (and, where applicable, the Cookie Notice), sometimes making minor adjustments to the surrounding text to fit. Also corrected the capitalization of Startpage and fixed some stray uses of “we” and “our” rather than “I” and “my.” Made various other wording adjustments to Disclosure of Personally Identifying Information, including changing “other services for sharing images and/or other media, and/or audiovisual streaming services” to “other services or platforms for sharing images and/or other media, and/or audiovisual streaming services or platforms”; changing “sites and/or services for publishing and/or distributing audiovisual content” to “platforms and/or services for publishing and/or distributing audiovisual content”; and changing “Voice over Internet Protocol (VoIP), voice chat, teleconferencing, and/or video chat services; other types of messaging and/or chat services, apps, and/or clients …” to “Voice over Internet Protocol (VoIP), voice chat, teleconferencing, and/or video chat apps, clients, platforms, and/or services; other types of messaging and/or chat apps, clients, platforms, and/or services, such as (without limitation) …” (This is mostly nitpicking, as the distinction between a “platform” and a “service” is at best hazy and a client can be either an app or a service; the point is to cover a range of service providers who may use different terms for similar concepts.) Also changed “Other providers whose services enable me to operate and secure my devices and/or data …” to “Other providers whose services enable me to operate and/or secure my devices and/or data …” and adjusted the wording of the reference to IPinfo.io (mainly to avoid the possessive after “LLC”). Also in the Cookie Notice, made some minor changes to the description of the cookies used by the PayPal button(s). Throughout this page, changed a number of instances of the phrase “potentially identifying” to “potentially personally identifying” for internal consistency. In Website Server, Error, and Security Logs; Security Scans; and Information I Receive from Third Parties for Security Purposes, updated the category descriptions at the beginning of each section to note that of the other technical details collected, “(some of which might be potentially personally identifying)” (which, as noted in the Definitions, refers to information that may be personally identifying in some contexts and/or in combination with certain other information). Also added news services and online publications to the examples of third-party vendors and service providers under Disclosure of Personally Identifying Information.
    • July 19, 2020: In Disclosure of Personally Identifying Information, updated the references to Microsoft (to note explicitly that I also use Microsoft Office; this isn’t new, but it previously wasn’t expressly stated), Adobe and Apple (to adjust the trademark information), and LibreOffice (to properly capitalize The Document Foundation and change “LibreOffice software” to “LibreOffice suite,” since it’s technically a suite of several interrelated software programs). Also in that section, changed “public relations firms” to “public relations services”; changed “advertising agencies” to “advertising agencies and/or services”; added online scheduling, task management, meeting, and/or collaboration platforms, tools, and/or services to the specified examples of other types of service providers; changed “messaging services, apps, and/or clients” to “other types of messaging and/or chat services, apps, and/or clients” for completeness; and amended the reference to online file transfer, file sharing, and/or file storage services by adding the parenthetical phrase “(which may include, but are not necessarily limited to, cloud storage services)” to the description (for clarification). Added additional Microsoft trademark notices in Security Scans, Information I Receive from Third Parties for Security Purposes, Information Captured by Service/Software/App/Device Telemetry, and throughout Disclosure of Personally Identifying Information. Also added some additional Google trademark notices to those sections and to Embedded Content; Other Inquiries, Messages, and Support Requests; Financial Transactions Policy; Additional Information About Data Retention; and the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice. Added trademark notices to the references to Amazon Web Services in Other Inquiries, Messages, and Support Requests and Disclosure of Personally Identifying Information. Added or updated trademark notices throughout this page and added a variety of trademark notices to the Cookie Notice, sometimes making minor adjustments to the surrounding text to fit. In the Cookie Notice, also deleted the words “strictly necessary” from the description of the Privacy and Cookie Preferences cookies (since that may not have been entirely accurate from a legal standpoint, although those cookies are currently this website’s only means of managing your cookie preferences.) Also updated the License for This Policy section to note that a changelog for the Automattic Privacy Policy can also be found in the repository mentioned in that section. Moved items on this list from prior to January 1, 2020, to the separate Older Privacy Policy Revisions page for space reasons and updated the license information on that page to include trademark attribution. In Legal Bases for Collecting and Using Information, changed “complying with the terms of a Creative Commons or other license …” to “complying with the terms of a license …” In Other Information I Receive from Third-Party Sources, changed “under a Creative Commons or similar license …” to “under a Creative Commons license or other, similar license …”
    • July 18, 2020: In Disclosure of Personally Identifying Information, added “file-sharing services” in the examples in the bullet point on search engines and/or other research tools. (This is basically just a clarification, as such services would fall into one or more categories already listed among those examples, and are also listed among the “other types of service providers” examples.) Also in that section, further updated the language about the Privacy Shield Frameworks and added a note that a recent European court ruling has declared those frameworks invalid as a means of complying with European data protection regulations. Made a slight correction to the description of Signal: removing the comma from “Signal Messenger LLC” (upon belatedly realizing that they don’t use a comma before “LLC”). In Financial Transactions Policy, amended the Information Sharing subsection to change “To the applicable email and/or telephony provider(s) …” to “To the applicable email, telephony, and/or other communications service provider(s) …” (This is a clarification, and should hopefully be reasonably self-evident; obviously, transaction-related communications via some third-party service necessarily entail sharing certain information with the applicable service provider, even if the means of communication include something other than email or telephony.) Also made some minor adjustments to the description of Bitdefender in that section (to better describe the scope of Google services the these apps may incorporate and/or utilize). Also made some updates to the enumerated examples of Google trademarks in that section and changed the phrase “I could theoretically still use Blogger through my Google account” to “I could theoretically still use Blogger through my Google account(s).” In Cookies and Similar Technologies, Consents and Agreements, Age Verification, and the Cookie Notice, changed several instances of the phrase “on your computer or device” to “on your device/browser” for internal consistency. In Embedded Content, revised the description of BootstrapCDN to change the phrase “your computer or device” to just “your device” (again for internal consistency). In Website Server, Error, and Security Logs, changed “about each computer or device” to “about each computer or other device” for clarity (since in the context of this policy, a computer is a type of device, although not all devices are necessarily computers). Adjusted the wording of the first paragraph of the Cookie Notice, adding the phrases “though not necessarily limited to” and “again without limitation” after the word “including” and adding storing your comment data to the examples of site functions that use cookies.
    • July 17, 2020: In Security Scans, changed the phrase “Among the website security measures I use on this website is the Sucuri Security plugin …” to “Among the website security measures I may use on this website is the Sucuri Security plugin …” (As noted elsewhere in this policy, which specific security measures I use may vary.) In that section and Embedded Content, updated the language about Sucuri and Cloudflare’s Privacy Shield certification (they’re both certified under both the EU-U.S. and Swiss-U.S. frameworks, not just the EU-U.S. framework). Made some minor adjustments to the language regarding Privacy Shield in the Disclosure of Personally Identifying Information. (To be clear, I am not Privacy Shield certified, but some of my third-party service providers and/or vendors are, so I want to make sure I’m describing the Privacy Shield Frameworks correctly.) Also changed the Privacy Shield examples in that paragraph from “Adobe Inc., Cloudflare, Google, HP, and Sucuri …” to “Adobe, Cloudflare, Google, HP, Microsoft, and Sucuri …” In the list of examples of third-party service providers and vendors in that section, also changed “Adobe® Inc.” to just “Adobe®” and the first reference to “Apple Inc.” to just “Apple” (mainly for consistency of language. In Your Rights (GDPR and Other National or State Privacy Laws), changed the phrase “(aka the “GDPR”)” to “(aka the “GDPR” or “EU GDPR”) for clarity and amended the paragraph about government data protection authorities to distinguish the EU GDPR and the UK GDPR, update the link to the list of EU data protection authorities, and and add a link to the UK ICO (which is the British data protection authority and will remain so in the wake of the UK’s withdrawal from the EU). In the first paragraph of the California Privacy and Data Protection Rights section, deleted the comparison to the European GDPR to avoid confusion. In Legal Bases for Collecting and Using Information, changed “such as the EU or UK General Data Protection Regulation (GDPR) or the forthcoming Brazilian Lei Geral de Proteção de Dados (LGPD)” to “such as the European General Data Protection Regulation (aka the “GDPR” or “EU GDPR”), the UK GDPR, or Brazil’s Lei Geral de Proteção de Dados (LGDP)” for internal consistency. In the first item in the list of bases, changed the parenthetical example from “(such as comments)” to “(such as comments and user feedback forms).” In Who I Am, changed “many of the vendors and third-party service providers …” to “many of the other third-party vendors and service providers …”
    • July 15, 2020: In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, revised the wording of the bullet point on legal information to change “… accused of, charged with, and/or convicted of a crime …” to “… accused of, charged with, and/or convicted of crime(s), infraction(s), and/or misconduct …” In Disclosure of Personally Identifying Information, changed “some or all of those vendors and/or service providers may use …” to “some or all of my vendors and/or service providers may use …” for greater clarity. In Security Scans, updated the paragraph about anti-theft/loss-protection features to note that I may also use similar features to protect my desktop computer, including, though not necessarily limited to, security features of products and/or services provided by Microsoft. In Embedded Content, added the following sentence to the paragraph beginning, “Please note that the types of information embedded content providers may collect …”: “Similarly, some or all of my embedded content providers may use various subcontractors, subprocessors, vendors, subsidiaries, affiliates, and/or partners to process information related to their services, which is also outside of my control and generally beyond my reasonable ability to enumerate here.”
    • July 14, 2020: In Disclosure of Personally Identifying Information, changed “where I might share information related to this website” to “where I might discuss and/or promote this website, its content, the management of my business operations, and/or my other creative endeavors” and changed “…” search for and/or purchase materials related to my research, my content, and/or this website” to “… search for and/or purchase materials related to this website, its content, the management of my business operations, and/or my other creative endeavors” for greater consistency. Also in that section, added a note explaining that the use of the Roundcube mail client is also subject to the DreamHost Privacy Policy (since DreamHost actually operates the client and the mail servers to which it connects); changed “operate and secure my devices” to “operate and secure my devices and/or data” (which is a more broadly accurate description); and changed various instances of “in the course of my business and/or in some context related to this website” to “in some context related to this website and/or in the course of my business” (which is more in keeping with the scope of this policy). In the description of the Sucuri Security plugin in Security Scans, changed “… that perform certain suspicious actions” to “… that perform certain actions (e.g., adding or editing a post, updating or installing a plugin).” (The plugin may log a variety of routine administrative activities that aren’t necessarily suspicious in and of themselves.) Updated the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice to add vaccinations to the enumerated examples of medical information collected. In the same section, in the the paragraph immediately following the bullet-pointed list, added the parenthetical phrase (“but without limitation”) after “(For example …” for emphasis.
    • July 13, 2020: In Definitions, made some nitpicking adjustments to the wording of some definitions, inserting additional instances of the phrases “(without limitation),” “(again without limitation),” and/or “(though not necessarily limited to)” for emphasis and changing an existing instance of “such as” to “e.g.” In the definition of Identifiers, changed “that expressly identify an individual, household, or specific device” to “that specifically identify an individual, a household, or a device” (which is a bit more accurate). In Disclosure of Personally Identifying Information, added photo-sharing services and other services for sharing images and/or other media to the examples of third-party service providers. (This is mainly a clarification, since most such services would also fall into one or more of the categories already described in that section.) In Legal Bases for Collecting and Using Information, changed “European data protection laws” to “data protection laws such as the EU or UK General Data Protection Regulation (GDPR) or the forthcoming Brazilian Lei Geral de Proteçao de Dados (LGPD).” Updated Security Scans to add a link to the Privacy Shield website for more information on that framework. In Disclosure of Personally Identifying Information, updated the note on the Privacy Shield Framework to note that Privacy Shield participation may in some instances also cover the transfer of data subject to Swiss data protection laws and/or the UK GDPR, but additional requirements may apply; added a link to the Privacy Shield Program website for more information. In Your Rights (GDPR and State Laws), updated the first paragraph to also reference the UK GDPR and the Brazilian LGPD. Changed the name of that section to “Your Rights (GDPR and Other National or State Privacy Laws)” and updated the Table of Contents. Added Google Search Console (formerly known as Google Webmaster Tools) to the enumerated examples of Google services among the examples of third-party vendors and service providers listed in Disclosure of Personally Identifying Information. (This again is just a clarification; as that section already indicated, the range of Google apps, services, and/or tools I may use and/or offer is too extensive to list more than a sampling.) Throughout the text of this policy and the Cookie Notice, changed various instances of the the phrase “potentially identifying information” to “potentially personally identifying information” for consistency. (I realized I had inadvertently alternated between the two versions in different portions of the text; although I regard those phrases as synonymous, I want to make the usage consistent throughout.)
    • July 12, 2020: In Disclosure of Personally Identifying Information, added parking attendants, security guards, property managers, receptionists, and/or other such functionaries to the examples of third-party vendors and service providers. In the Online Tracking section, changed the words “on this site” to “on this website” for clarity and added a final paragraph to the end of that section noting that other websites or online services, including ones to which I may link and/or on which I have accounts, may use various web analytics services and/or tools, which in most cases is outside of my control. That paragraph also notes that analytics tools used on my Ate Up With Motor and 6200 Productions websites are described in those websites’ respective privacy policies. Added a similar paragraph to the end of the Embedded Content section. Updated the Cookie Notice to change “The use of cookies and/or similar technologies by third-party sites and/or services …” to “The use of cookies and/or similar technologies by third-party websites and/or services …” for greater consistency. In Information I Receive from Third Parties for Security Purposes, added the DTEK by BlackBerry app to the listed examples of sources of security-related information. (This is one of the suite of BlackBerry Limited apps and services that came preinstalled on the newer of my BlackBerry smartphones.) Also updated the Security Scans section to note that BlackBerry Limited is another of the principal providers of security measures I use for my mobile devices. (The BlackBerry security features are primarily concerned with electronic security rather than anti-theft/loss-protection, but there may be exceptions that would fall within the scope of that paragraph.) Fixed a formatting error in this Revisions List. Fixed a typo in Security Scans: “the security of my system, devices, and data” should have read “the security of my systems, devices, and data.”
    • July 10, 2020: In the first paragraph of Information I Receive from Third Parties for Security Purposes, changed “… and/or user agents that may be associated with malicious activity such as spam” to “… user agents, and/or other such information that may be associated with malicious activity such as (without limitation) spam and/or attempts to transmit or otherwise propagate malicious code.” (This is really just a clarification; the types of information enumerated in that paragraph are the most common and typical examples, but not necessarily an exclusive list, and of course spam is only one possible type of malicious activity.) In the following sentence, changed “(without limitation)” to “(again without limitation)” for better flow. In the following sentence, changed “(without limitation)” to “(again without limitation)” for better flow. In the Categories of Personal Information Collected subsection of the CCPA Information Collection and Sharing Notice, changed “Information about other household members (e.g., roommates and/or pets)” to “Information about other household members (e.g., roommates) and/or pets.” (This is just a nitpicking clarification; a pet is usually not considered a household member in a legal sense.) In Disclosure of Personally Identifying Information, added job search and/or professional networking sites and/or services, employment agencies, and sites and/or services for publishing and/or distributing audiovisual content (e.g., videos and/or podcasts) to the examples in the bullet point about services and/or service providers that help me promote and/or sell (or otherwise offer for commercial advantage) my content, writing/editing/writing consulting services, and/or other creative endeavors, also rearranging the order of some of those examples. Corrected some inadvertent uses of “we” and “our” rather than “I” and “my” in recent entries in this Recent Revisions list.
    • July 9, 2020: In Embedded Content, added a bullet point for the Sucuri Security plugin described in the Security Scans section. (That section already describes the plugin’s functions, but some components of the plugin do qualify as embedded content, so I decided it would be appropriate to also mention it in the Embedded Content section.)
    • July 8, 2020: In Embedded Content, updated the entry on Yoast to also mention the remotely served functionality provided by Ryte (which is incorporated into recent versions of the Yoast SEO plugin) and my fruitless efforts to determine from the developers whether the plugin’s remotely served components gather personal information about logged-in administrative users. (Any such information-gathering would apply only to users logged into the site’s administrative dashboard, not visitors to the publicly facing website, but it needs to be reflected here regardless.) Elsewhere inn Embedded Content and in several prior entries in this Recent Revisions list, corrected some inadvertent uses of “we” and “our” rather than “I” and “my.” In Cookies and Other Technologies, moved the example about showing or hiding banners for first-time visitors to parentheses; changed “&hellip and to ensure that …” to “… and to help ensure that …”; and changed “such as” to “e.g.” Added another sentence to the end of that paragraph: “Certain other site functions and/or site content may require the use of cookies and/or similar technologies to function properly.” Toward the end of that section, changed “some site features may not function …” to “some site features and/or site content may not function … for consistency and added a paragraph about the use of cookies and/or similar technologies by third-party services. Also updated the Cookie Notice to mention that, to reflect the revised language about cookies and/or similar technologies recently added to the Embedded Content section, and to clarify that this Recent Revisions list now also includes changes to that notice. Fixed a punctuation error in this Recent Revisions list.
    • July 7, 2020: In Definitions, renamed “Cookies and local storage” to “Cookies and similar technologies” and further refined that definition. In Cookies, changed “(such as local storage)” to “(such as local storage objects)” (which is both more accurate and more grammatically correct in that sentence). In Embedded Content, further adjusted the language and descriptions, including using the phrase “cookies and/or similar technologies” (which is how other privacy policies tend to characterize these technologies), smoothing out the wording, and simplifying and/or further clarifying some of the specific descriptions. Subsequently made an additional round of revisions to Embedded Content to further refine this language. Renamed the Cookies section to “Cookies and Similar Technologies” and changed other references to that section accordingly (both on this page and the Cookie Notice, which previously had erroneously identified that section as the “Cookie Policy” section, an inadvertent holdover from an earlier version of this policy). In Comments, corrected another stray reference to “Cookie Policy” section to refer to the “Cookies and Similar Technologies” section instead and added an internal link to that section. In Financial Transactions Policy, changed “PayPal may use cookies and/or “web beacons” (such as so-called “tracking pixels” and “pixel tags”) in the payment button and/or in the shopping cart to collect and track data about users” to “PayPal may also use cookies and/or similar technologies in the payment button and/or the shopping cart to collect information about, track, and/or identify users, in addition to whatever information the service may collect to log you into your PayPal account (if any) and/or complete your transaction” (which is more accurate and more internally consistent). In Advertising, added the parenthetical aside about information-gathering by ads on the administrative dashboard that already appeared in the Disclosure of Personally Identifying Information section, for greater internal consistency. In the latter section, reordered that aside in the paragraph in which it appears (which entailed splitting the first sentence in that paragraph into two sentences with the parenthetical aside between them), again for the sake of consistency. Also in Definitions, amended the definition of “Personal information/personally identifying information” to change “(or in combination with certain other information)” to “(and/or in combination with certain other information” and amended the definition of “Identifiers” to change “… to be personal identifiers” to just “… to be identifiers” (which is more accurate).
    • July 6, 2020: In Definitions, fixed a formatting error inadvertently created during yesterday’s revisions and further amended the “Cookies and local storage” definition for greater accuracy. Updated the Cookies section to also mention “similar technologies” such as local storage of information. Also updated Browser Tests to note that the results of the tests may be stored in your browser’s local storage for the duration of your visit. (This is how the test have always worked, but I struggled to properly explain it.) Further amended the Embedded Content section for greater accuracy and to further refine the new language added yesterday about local storage. (Again, this isn’t a procedural change, but an effort to more accurately explain technically complex concepts of which I don’t have a robust understanding myself!)
    • July 5, 2020: In Embedded Content, changed the phrase “and/or other domains owned by WordPress, such as …” to “and/or other domains owned by WordPress, such as (without limitation) …” and changed “… or other WordPress-related messages” to “… and/or other WordPress-related information.” (This is just a clarification.) Fixed an HTML error in this revisions list. In Other Inquiries, Messages, and Support Requests, added a paragraph about communications by some means that is accessible to multiple users (e.g., via email discussion group or group chat, on social media, and/or by transmitting electronic files via shared FTP folder(s)) and/or publicly accessible, noting that such communications may be visible to anyone with access to the shared medium and that I cannot control and accept no responsibility for what third parties may do with information shared in such ways. (I hope this is reasonably self-evident!) In the following paragraph, changed “may publish such communications” to “may publish your communications” for a more natural progression from the inserted language. In the paragraph about data retention at the end of the section, changed “any third-party websites or services you use to contact …” to “any third-party websites or services you may use to contact …” Updated Information I Receive from Third Parties for Security Purposes to note that I may also receive alerts and/or other security-related information from various sources regarding third-party data breaches that could potentially expose my online credentials and/or other personal information to malicious actors. In the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice, fixed a punctuation error (incorrectly nested parentheses in the example regarding the processing of payments) and changed “my bank(s) and the applicable payment processor, if any” to “my bank(s) (or other applicable financial institution(s)) and the applicable payment processor(s), if any (e.g., PayPal®)” for greater internal consistency. In Definitions, updated the definition of cookies (which has been renamed “Cookies and local storage”) to include a brief definition of local storage of potentially identifying information (a technology which is sometimes used in addition to or instead of cookies). Updated Embedded Content to add language about local storage (which many embedded content providers and other online services now use along with cookies), insert a new bullet point about embedded content from Twitter, and add a disclaimer that embedded content providers may also use and/or add other information-gathering and/or tracking technologies beyond what I can reasonably specify in that section. Made various other minor adjustments to the wording of that section for clarity. Further updated the adjusted language in that section to fix my repeated but unintentional use of “store other personally identifying information” when I meant to say “store other potentially identifying information” (an error I repeated an embarrassing number of times by careless use of copy-paste) and made a number of additional minor adjustments and updates to the text, including changing the language about displaying videos or Tweets to be a bit broader in scope (including sharing and/or otherwise displaying the content as well as posting it) and fixing an inadvertent use of “us” rather than “me.”
    • July 4, 2020: In Disclosure of Personally Identifying Information, added rental services and/or rental agencies for vehicles such as (without limitation) cars, trucks, vans, bicycles, scooters, and/or boats.
    • July 3, 2020: In Security Scans, added a new paragraph about anti-theft/loss-protection security measures for my devices that may collect additional personal information under certain circumstances.
    • July 1, 2020: In Disclosure of Personally Identifying Information, added the Roundcube project (whose open source webmail client software my web host uses) to the examples of third-party service providers. In the description of Font Awesome in that section, changed “web mail” to “webmail” for consistency. Updated the Other Information I Receive from Third-Party Sources section to add language about information I might receive from or through social media services and to insert an explicit reference and an internal link to the Additional Information About Data Retention section. (Since the latter section presently follows immediately after Other Information I Receive from Third-Party Sources, I hadn’t previously included such a link, but I added it now for convenience and ease of reference.) Toward the end of Other Information I Receive from Third-Party Sources, also changed “other non-public information” to “other, non-public information” (which better expresses the intended meaning).
    • June 29, 2020: In Other Information You Provide to Me, added a note regarding submitted images and/or other media, with an internal link to the Data in Submitted Images section. Also changed the parenthetical aside from “(These are just a few hypothetical possibilities.)” to “(These are just a few of the many possibilities.)”
    • June 28, 2020: In Information I Receive from Third Parties for Security Purposes, added social media services to the examples of sources from whom I may receive such information and changed “Internet service provider, mobile carrier, bank …” to “Internet service provider(s), mobile carrier(s), bank(s)/financial institution(s) …” for internal consistency. In Disclosure of Personally Identifying Information, created a new sub-bullet for social media services on which I have accounts and/or where I might share information related to this website in the list of examples of third-party service providers. Moved the existing bullet point about Flickr to that sub-bullet. Tinkered a bit with the wording of the new language.
    • June 27, 2020: In Security Scans, Financial Transactions Policy, and Other Information I Receive from Third-Party Sources, changed several instances of “such as (for example, but without limitation)” to just “such as (without limitation)” (for internal consistency and because “for example” is probably redundant in those instances).
    • June 26, 2020: In Security Scans, changed “and/or the various Google services I use (e.g., the Google Voice communications service …” to “and/or other applicable service provider(s) (e.g., the various Google services I use, such as (for example, but without limitation) the Google Voice communications service …” In Comments; Contact Forms; and Other Inquiries, Messages, and Support Requests, adjusted the language referring to the Security Scans section (regarding messages being scanned for spam and/or malware) to be more consistent with the wording of the latter section. Added similar language to the Information Sharing subsection of the Financial Transactions Policy section. In Other Inquiries, Messages, and Support Requests, also changed “other services place the entire message text in the notification” to “other services include some or all of the message in the notification.” In Website Server, Error, and Security Logs, added a sentence noting that email alerts may be scanned for spam and/or malware (also referring to the Security Scans section) and changed “since my web host …” to “because my web host …” (which is more grammatically appropriate).
    • June 25, 2020: A number of minor wording adjustments for internal consistency: In Website Server, Error, and Security Logs, changed “may be captured in backups created by me or my web host” to “may be captured in backups created by me and/or my web host.” In Comments, changed, “may have been accessed or used” to “may have been accessed and/or used.” In Data in Submitted Images, changed “backup files created by me or my web host” to “backup files created by me and/or my web host” and changed “may have already been accessed or used by third parties” to “may have already been accessed and/or used by third parties.” In Information I Receive from Third Parties for Security Purposes, changed “applications/services” to “applications/software/services.” In Disclosure of Personally Identifying Information, updated some of the descriptions of third-party service providers to change a number of instances of the word “applications” to “software” for greater clarity. In the latter section, also changed “Internet firewall applications/services” to “Internet firewall applications/software/services” and changed “TinyWall and …” to “TinyWall and/or …” for consistency. Also updated the sentence beginning “Where I become aware of such a case, I will take reasonable efforts to keep separate any information I have gathered through or in connection with this website …” to insert the parenthetical phrase “(e.g., the IP addresses in the logs, the email addresses associated with comments and/or form submissions)” in hopes of clarifying the intended scope of that paragraph.
    • June 23, 2020: In Disclosure of Personally Identifying Information, added a new paragraph following the bullet-pointed list regarding the possibility of roommates, houseguests, other cohabitants, and/or visitors becoming incidentally aware of certain personal information pertaining to this website and/or my business operations, in ways that are hard to avoid with any business activity conducted at home. Added similar language to the Information Shared for Business or Commercial Purposes subsection of the CCPA Information Collection and Sharing Notice. In the subsequent paragraph of the latter section, also changed the phrase “in such contexts” to “in the above contexts” to avoid any potential confusion due to the added paragraph.
    • June 21, 2020: In Disclosure of Personally Identifying Information, further adjusted the description of BlackBerry Limited by adding “(and/or, where applicable, their subsidiaries and/or affiliates)” after the corporate name to better reflect the framing of their Privacy Policy. Also changed “its previous corporate name” to “the previous corporate name” to avoid an unclear antecedent. Changed “other service providers, and/or other vendors” to “various subcontractors, subprocessors, vendors, subsidiaries, affiliates, and/or partners” and, at the end of that bullet point, changed “any third-party subcontractors, subprocessors, vendors, and/or partners those entities may employ or utilize …” to “any subcontractors, subprocessors, vendors, subsidiaries, affiliates, and/or partners those entities may employ and/or utilize …” for greater internal consistency. Updated the description of Abine’s Blur to also mention their email masking tool.
    • June 20, 2020: In Disclosure of Personally Identifying Information, updated the descriptions of TCT and BlackBerry Limited to clarify that TCT made the hardware for the newer device and BlackBerry Limited makes the suite of BlackBerry apps, services, and software both devices use. Also adjusted TCT’s corporate name to match their current usage (TCL Communication Ltd., with “Limited” abbreviated) and updated the description of VeraCrypt to clarify that portions of the software are the work of various developers besides IDRIX. In that section, also changed “may use various subprocessors and/or other vendors not necessarily listed here …” to “may use various subprocessors, other service providers, and/or other vendors, not necessarily listed here, …”
    • June 16, 2020: Updated the Information I Receive from Third Parties for Security Purposes and Disclosure of Personally Identifying Information sections to note that Bitdefender may also use the Google Safe Browsing API. Also updated the reference to Google Safe Browsing in the former section to note that some other apps (as well as web browsers and online services) may also use that service. Also in Disclosure of Personally Identifying Information, updated the bullet point on disclosures I deem reasonably necessary to protect property, rights, security, and/or safety to note that (as stated in the Copyright/Intellectual Property Violations section of the Terms of Use) I may forward copyright claims pertaining to material provided to me by a third party to that third party. (This provision has been in the Terms of Use for years, but I had previously neglected to mention it in the Privacy Policy.) Made a related update to the Information Shared for Business or Commercial Purposes section of the CCPA Information Collection and Sharing Notice.
    • June 15, 2020: In Other Information I Receive from Third-Party Sources, made a variety of clarifications to the paragraph regarding my research process: Added “(without limitation)” after “… with third parties such as …” and added “observers, eyewitnesses, and/or other knowledgeable parties” to the examples enumerated in that sentence. (These were already listed in the related language in the CCPA Information Collection and Sharing Notice.) Later in that paragraph, changed “the subjects of my content” to “the subject(s) of my content.” Added a new second-to-last sentence: “In some cases, I may look for your contact information so I can ask you questions related to my content, request an interview, and/or let you know about content in which you were mentioned.” In the final sentence of that paragraph, changed “… or if you have disclosed the information …” to “… and/or if you have disclosed the information …” In the same section, updated the paragraph regarding information provided by third-party services to add two more examples of the type of information that might be provided: whether a contact “is typing, and/or has seen a particular message.” (These are obviously just additional examples, not an exhaustive list of possibilities.)
    • June 14, 2020: Made some minor clarifications to the summary of the June 13 revisions below.
    • June 13, 2020: In Embedded Content, fixed a typographical error in the description of Font Awesome: correcting “your IP address and user information” to “your IP address and user agent information” (the word “agent” had been inadvertently deleted). In Disclosure of Personally Identify Information, amended the bullet point on public acknowledgments and thanks to note that those acknowledgments may also include (where applicable) the date(s) of the assistance. (This is just a clarification of my customary practice, not a change in how I handle such acknowledgments.) In that bullet point, also changed “the type of assistance” to “the nature of the assistance provided” for greater clarity.
    • June 11, 2020: In the list of examples of third-party service providers in Disclosure of Personally Identifying Information, updated the description of Firefox to clarify that that may include the desktop and/or mobile versions and changed “taxi and/or ride-share services” to “taxi, livery, shuttle, carpool, and/or ride-share services.” Also adjusted the description of Simple DNSCrypt to change “desktop computer” to “desktop computer(s).”
    • June 10, 2020: In the list of examples of third-party service providers in Disclosure of Personally Identifying Information, made some minor wording adjustments to the “accessing the Internet” bullet point for clarity and internal consistency (and to fix some questionable grammar). Also added “other Internet service providers, mobile carriers, and/or wireless network services I may periodically use.”
    • June 8, 2020: In Disclosure of Personally Identifying Information, added Microsoft Bing Search to the examples of third-party service providers. (This is mainly a clarification, since Bing is one of the many Microsoft “software, apps, tools, and services” mentioned elsewhere in that section.) Fixed a typo in this revisions list.
    • June 7, 2020: In Disclosure of Personally Identifying Information, fixed a typographical error in the description of CompanionLink and DejaOffice CRM and adjusted the description to better explain their function. Changed “Other providers of apps, tools, and/or services I may use in connection with this website and/or its content” to “Other providers of apps, tools, and/or services I may use in connection with this website, its content, the management of my business operations, and/or my other creative endeavors” to better reflect the current language elsewhere in this policy. Adjusted the description of DreamHost in that section to change “(which also hosts the mail servers for email addresses using this domain name)” to “(which also hosts the mail servers for all email addresses using the 6200productions.com domain name)” for greater clarity. Updated Other Information I Receive from Third-Party Sources to also mention that I may sometimes receive information through third-party services and/or service providers. Amended and simplified the language in that section about software developers, added a note that software licenses typically prohibit deleting the developer information, and moved that paragraph to an earlier point in the section. Fixed a typographical error. Later in that section, changed the phrase “any attribution information” to “any of the developer credits or copyright information” for greater clarity. In Disclosure of Personally Identifying Information, fixed a punctuation error in the description of Signal and updated that description to indicate that Signal is a registered trademark.
    • June 6, 2020: Updated the Additional Information About Data Retention section’s bullet points on text messages and phone calls to explain that my retention of text messages and phone records on my phone(s) is now highly variable. (This change is to reflect my increased use of a newer device that no longer allows me to globally control message retention the way my older smartphones did; if there’s a way to get the newer phone to automatically delete all unsaved messages after a certain period of time, I haven’t yet found it!)
    • June 4, 2020: In Disclosure of Personally Identifying Information, corrected the attribution for MozBackup, also reordering that item in the list of examples to keep that section in more or less alphabetical order.
    • May 31, 2020: In Disclosure of Personally Identifying Information, updated the attribution for Cookie-AutoDelete to reflect that browser extension’s current copyright statement. In Security Scans, updated the reference to the EU-U.S. Privacy Shield Framework to add periods to “U.S.” to match the reference in Disclosure of Personally Identifying Information.
    • May 30, 2020: In Contact Forms, split the final sentence (beginning “Otherwise, I may disclose …”) into a separate paragraph. Inserted a bullet point regarding incorporating corrections, clarifications, and/or suggestions (which hopefully was reasonably self-evident, but bears mentioning). In that section, also changed “infringe on” to “infringe upon.” In Other Inquiries, Messages, and Support Requests, deleted the bullet-pointed list beginning “Unlike comments, I do not generally publish …” and replaced it with a reference to the list in the Comments section above (to avoid repeating the same list twice). Fixed a typo in Data Related to Recruitment/Hiring or Business Partnerships.
    • May 23, 2020: In Data in Submitted Images, changed “I typically also gather additional information about the images I use …” to “I typically also gather additional information about the images and/or other media I use …” for internal consistency. Also changed several instances of “images or media files” to “images or other media files,” again for consistency of wording. In Other Information I Receive from Third-Party Sources, added a paragraph noting that published works I use and/or access may also contain a variety of personal information, and I may also obtain additional information about the people depicted, described, or involved with those works. Also changed “photographs and other images or media” to “photographs, other images, and/or other media.” Updated Additional Information About Data Retention to note that I typically retain indefinitely copies of published works I own, along with (where applicable) associated documentation and/or notes and any inventories, catalogs, and/or lists that I may create and/or utilize to manage my collection of such works.
    • May 20, 2020: Updated the description of the NoScript browser extension in Information I Receive from Third Parties for Security Purposes and Disclosure of Personally Identifying Information to better describe its attribution. (The NoScript website‘s copyright statement attributes it to InformAction, but the copyright statement in the extension’s source code credits the extension to InformAction co-founder Giorgio Maone.) Also updated the Security Scans section to correct a reference to the Information I Receive from Third Parties for Security Purposes section (from which the word “Parties” had somehow been dropped) and fix the link, which had been configured incorrectly. In Disclosure of Personally Identifying Information, changed “journalistic, historical, or other nonfiction accounts” to “journalistic, historical, critical, or other nonfiction accounts.” (This is mostly a clarification; a review or other work of criticism is a type of nonfiction account and sometimes also a journalistic one, but spelling it out helps to better explain the intended scope of that provision.) Also updated the description of uBlock Origin in Information I Receive from Third Parties for Security Purposes and Disclosure of Personally Identifying Information to note that the extension is developed by Raymond Hill (although its associated lists are developed and maintained by various people).
    • May 18, 2020: Updated the Cookie Notice to make some clarifications to the description of the WordPress administrative and login cookies. In the examples of third-party service providers in Disclosure of Personally Identifying Information, changed “bookkeeping and/or accounting services” to “bookkeeping, accounting, and/or tax preparation services.”
    • May 16, 2020: In Disclosure of Personally Identifying Information, updated and expanded the bullet point regarding contractual obligations by changing “If I am contractually required to do so in connection with a dispute, investigation, or audit involving a third-party service” to “If I am contractually obligated to do so pursuant to my agreement(s) with my business partner(s), vendor(s), and/or third-party service(s), such as (without limitation) in connection with a dispute, investigation, or audit involving …” (since a business partner, vendor, or service provider could also conceivably compel me to provide information in situations other than a formal dispute, investigation, or audit, although those are the most likely examples; I changed “required” to “obligated” principally to better distinguish this bullet point from the earlier bullet point regarding legal requirements). Also clarified the example by changing “their” to “the payment processor’s” (to avoid a potentially unclear antecedent). For related reasons, updated the Financial Transaction Policy subsection on Information Sharing to change the phrase “as otherwise required by my legal agreements with …” to “as otherwise required by my contractual agreements with …” (This is a clarification; a contract is of course a legal agreement, but “contractual agreements” better expresses the intent in this instance.) In the CCPA Information Collection and Sharing Notice subsection on Information Shared for Business or Commercial Purposes, changed the phrase “If I am legally obligated to do so …” to “If I am legally or contractually obligated to do so …” and added “or in connection with a payment dispute or other contractual dispute” to the enumerated examples for internal consistency. In Privacy Policy Changes, changed “This Privacy Policy may be modified from time to time, at my sole discretion. Your continued use of and access to the site signifies your acceptance of any such modifications …” to “I may change this Privacy Policy from time to time, at my sole discretion. Your continued use of this website after any changes to this Privacy Policy will constitute your acceptance of such changes …” (This change is mainly to better align the wording of this policy with the privacy policy of my freelance writing website, to help me avoid confusion in the future.) Also changed “If the policy has changed since your last visit …” to “If the policy has changed since your last visit to this website …” for greater clarity. Updated the preamble to change the phrase “… which summarizes recent modifications by date” to “… which summarizes recent modifications in reverse order by date” for consistency with the description at the beginning of this revisions list.
    • May 15, 2020: In Disclosure of Personally Identifying Information, added Apple Inc. to the examples of third-party service providers. Fixed a typographical error in another listed example and corrected an accidental use of “our” rather than “my.” Made some minor adjustments to the wording of the reference to Adobe in that list for greater internal consistency, also changing the first instance of “Adobe” to “Adobe Inc.” Changed the phrase “Some or all of my third-party vendors/service providers …” to “Some or all of my third-party vendors and/or service providers …” and changed “data subprocessors” to just “subprocessors” (a term that now has a specific legal meaning in some jurisdictions). Updated the reference to the EU-U.S. Privacy Shield Framework to add periods to “U.S.” (which is how the framework’s name is officially styled, at least in the U.S.); note that Adobe Inc. also complies with that framework; and add a parenthetical note that others among the listed examples of vendors and/or service providers probably do as well. (The Privacy Shield website currently lists more than 5,300 U.S. businesses as active participants, so the fact that I haven’t listed a specific service provider or vendor as a participant doesn’t necessarily mean that they are not one — there are just too many for me to keep track.) Added generic listings for “providers of other web browsers I may use” and “any other search engines I may use” to the examples of third-party service providers. (I hope this was already clearly implied, but I spelled it out for the avoidance of doubt.) Also added generic listings for healthcare providers and/or their respective staffs and “other online information services, repositories, websites, blogs, video blogs (“vlogs”), podcasts, and/or audiovisual streaming services.”
    • May 14, 2020: In Disclosure of Personally Identifying Information, updated the description of taxi and/or ride-share services to change “which I may use if I travel to meet with someone via such means and/or arrange such transportation for someone in some manner related to this website” to just “which I may use if I travel via such means and/or arrange such transportation for someone in the course of my business and/or in some context related to this website” (since such travel might not always be to meet with someone, that possibility is obviously implied without needing to be spelled out, and “context” is more correct than “manner” in this instance). In that same bullet point, changed references to business trips or travel to “in connection with trips I take or arrange in the course of my business and/or in some context related to this website” for internal consistency. Also in that section, changed “such that it could not reasonably be used to identify specific person(s)” to “such that it could not reasonably be used to identify the specific person(s) and/or household(s) to whom the information pertains.” (This is another attempt to clarify the intent of that bullet point’s somewhat cumbersome wording.) Elsewhere in that section, changed “financial consulting services” to “financial advisory services” (which is a more correct term for the type of service that language was intended to describe).
    • May 11, 2020: In Embedded Content, changed the phrase “what information I collect in connection with PayPal transactions with me” to “what information I may collect in connection with PayPal transactions to which I am a party and that pertain directly to this website” for greater clarity. Also fixed a typographical error in Disclosure of Personally Identifying Information (correcting the phrase “its and associated drivers” to “its associated drivers”).
    • May 10, 2020: In Disclosure of Personally Identifying Information, added some other generic types of services to the listed examples of third-party service providers. In Controller/Responsible Party, Questions, and How to Reach Me, changed the phrase “can file a request” to “can submit a request” for more consistent wording. Adjusted the wording of references to the Controller/Responsible Party, Questions, and How to Reach Me section in Notice to Parents Regarding Children Under 18; Not for Children, the Age Verification section, and the CCPA Information Collection and Sharing Notice so that those references all consistently say “methods described in” rather than “methods listed under …” or “methods described under …” For similar reasons, also adjusted the wording of a reference in the Cookies section to the Cookie Notice and Privacy Tools pages (changing “the list shown in” to “the list shown on”) and of a reference in Disclosure of Personally Identifying Information to the Financial Transactions Policy (changing “as otherwise described under” to “as otherwise described in”).
    • May 8, 2020: In Disclosure of Personally Identifying Information, changed the sentence “Please note that in many cases, I have no way of associating data gathered through this website with information I may have obtained about you in other contexts” to “Please note that in many cases, I have no reasonable way of associating data gathered through this website with information I may have collected about you in other contexts, or of associating different types of personal information and/or potentially personally identifying information I may have obtained about a given individual or household.” Also made that sentence the beginning of a new paragraph rather than a continuation of the previous one.
    • May 5, 2020: Corrected the HTML anchor in Other Information I Receive from Third-Party Sources, which had been configured incorrectly. In Disclosure of Personally Identifying Information, corrected the internal link to the Other Information I Receive from Third-Party Sources section, which had not been updated correctly in yesterday’s revision. (I had corrected the link text, but not the link itself.)
    • May 4, 2020: In Disclosure of Personally Identifying Information, revised the language of the bullet point regarding journalistic, historical, or other nonfiction accounts to change “it may also include information, corrections, clarifications, and/or additional details provided by the person(s) to whom the information pertains and/or obtained from third parties” to “it may also include non-public information obtained from a variety of sources.” Also corrected the reference in that bullet point to the Other Information I Receive from Third-Party Sources (which had not been updated properly in a previous revision) and adjusted the corresponding language in that section to match this current revision (deleting the word “certain” in the phrase “may also include certain non-public information obtained from a variety of sources,” since including that word was probably more confusing than helpful in that context).
    • May 3, 2020: In Disclosure of Personally Identifying Information, added online file transfer, file sharing, and/or file storage services to the examples of third-party service providers. Rearranged the order of some of the examples in that section. Also in that section, updated the description of Microsoft to change “some of the software, apps, tools, and services I use — including, but not limited to, the operating systems for some of my devices” to “some of the software, apps, tools, and services I may use and/or offer — including, but not limited to, the operating systems for some of the devices I use” (mostly for consistency with other language in this policy, but also because at present, I own only a single device with a Microsoft operating system, although that may change in the future, and I may still sometimes use other devices with their operating systems and/or other software, apps, tools, and/or services, whether or not I own those devices).
    • May 2, 2020: In Disclosure of Personally Identifying Language, amended the language about the sale or rental of information about individual site visitors to change the phrase “about a site visitor” to “about one or more site visitors.” Also amended the description of LG to change “my peripheral devices” to “my displays and/or peripheral devices” (to avoid any uncertainty about whether a display constitutes a peripheral device). In the CCPA Information Collection and Sharing Notice, changed the final bullet point in Categories of Personal Information Collected subsection from “Other data that could potentially be deemed personal information, but that does not easily fit into any of the above-listed categories” to “Other types of personal information, and/or other types of data that could potentially be deemed personal information, that do not readily fit into any of the above-listed categories.” Fixed an error in the HTML anchor for the “Controller/Responsible Party, Questions, and How to Reach Me” section.
    • April 30, 2020: In Disclosure of Personally Identifying Information, updated the examples of third-party service providers to add “any other DNS resolver service(s) I may use” (as there may be various others besides Cloudflare). Also added Ysard’s Cookie Quick Manager to the listed examples of browser extensions and updated the description of Adblock Plus to add the phrase “and its related lists” for consistency.
    • April 29, 2020: In Disclosure of Personally Identifying Information and the Information Shared for Business or Commercial Purposes of the CCPA Information Collection and Sharing Notice, updated the language about disposal of published works to change “incorporating personal information” and “that contain personal information” to “that contain and/or incorporate personal information” for consistency. In the latter section, also changed “or other personal property” to “or other such personal property” for greater clarity. In Disclosure of Personally Identifying Information, also added a sentence to the beginning of the list of examples of third-party vendors and service providers noting that some or all of those providers and/or vendors may use various subprocessors and/or other vendors not necessarily listed. Also amended the subsequent sentence to change “vendors/service providers” to “vendors and/or service providers.” Made a slight adjustment to this revisions list.
    • April 26, 2020: In Disclosure of Personally Identifying Information, added gitg, the vDos DOS emulator, and Shahin Gasanov’s ZoneIDTrimmer tool to examples of third-party service providers. Further amended the description of Gpg4win in that list to fix a typographical error and adjust the wording. Added the Android Open Source Project’s SDK Platform Tools to the enumerated examples of Google products and services and made some minor wording adjustments to the other item in that bullet point. In Website Server, Error, and Security Logs, changed “accesses the site and its content” to “accesses the site and/or its content.” (This is a clarification; the server and error logs will usually also record attempts to access certain site content without actually visiting the site, such as if someone “hotlinks” an image.) Fixed a typographical error in this bullet point. In Financial Transactions Policy and Transaction-Related Information I Receive from Third Parties, changed “transaction-related questions or inquiries” to “transaction-related questions, inquiries, and/or comments.”
    • April 25, 2020: Revised Disclosure of Personally Identifying Information and the Information Shared for Business or Commercial Purposes of the CCPA Information Collection and Sharing Notice to explain that I may also sell, lend, or otherwise dispose of copies of published works (e.g., books, magazines, DVDs) that contain someone’s personal information. (I’d hoped I wouldn’t need to spell this out, but California’s Office of the Attorney General has still failed to provide any guidance regarding the profound First Amendment implications of the CCPA regarding the sale or distribution of published works.) Also noted that the CCPA doesn’t regard transfers of information as part of the sale or transfer of a business to be sales. Rearranged and revised the text following the bullet-pointed list in Disclosure of Personally Identify Information to present the points described there in a (hopefully) more readable way. Made some further tweaks to the newly added language. Also in Disclosure of Personally Identifying Information, added the phrase “or other such devices, equipment, and/or accessories” to the bullet point on other electronic devices to emphasize that the enumerated examples are not intended to represent an exhaustive list of my electronic equipment. Also added Francesco De Stefano’s Opena11y Toolkit extension to the examples and tweaked the descriptions of the various browser add-ons in that list for more consistent wording.
    • April 24, 2020: Updated the effective date, which I had neglected to do yesterday. In the CCPA Information Collection and Sharing Notice subsection on Information Shared for Business or Commercial Purposes, simplified the paragraph beginning “I may disclose personal information I collect through and/or in connection with this website …” to change the second sentence to “Also, as noted in that section and elsewhere in this Privacy Policy, my work as a professional writer/editor and writing consultant and/or other creative endeavors routinely involve collecting and sharing personal information, often for publication.” Struck the links to the 6200 Productions and Ate Up With Motor privacy policies (which are already included earlier in the notice). In Disclosure of Personally Identifying Information, changed “… keep separate any information I have gathered through or in connection with this website” to “… keep separate any information I have gathered through and/or in connection with this website” for wording consistency. In Information I Receive from Other Third-Party Sources, revised the paragraph about my writing and editing process to also refer to my other creative endeavors, professional or otherwise (since “creative endeavors” are referenced elsewhere in this policy; the intent is to express that some aspects of what I do creatively are not strictly writing or editing); change the phrase “research and writing process” to “research, writing, and editing process”; and note that in some cases, my research, writing, and/or editing may include inviting comment from and/or presenting questions to the public regarding related topics. Made similar adjustments to the corresponding language in Disclosure of Personally Identifying Information for consistency, also changing the phrase “in the course of researching, writing, and/or editing same” to “in the course of researching, writing, and/or editing my content and/or other creative endeavors” for clarity and consistency and changing “including, as applicable but without limitation, any associated images …” to “which may include, as applicable but without limitation, information contained in associated images …” to better express the intended meaning. Elsewhere in that section, also amended language referring images and other media to change “visible” to “visible or otherwise included” (since no one may actually be visible in some types of media, such as audio recordings).
    • April 23, 2020: In Transaction-Related Information I Receive from Third Parties, corrected a reference to “transactions with us” to “transactions with me.” In the Financial Transactions Policy, fixed an inadvertent duplication of the word “and” and updated both the Transaction-Related Information Gathering and Data Retention subsections to note that I may use the information I gather to respond to your transaction-related questions or inquiries (which I hope would be self-explanatory). Expanded the Transaction-Related Information I Receive from Third Parties section to include information I may receive if I offer products or services through some third-party vendor or service. Updated that section and the Financial Transactions Policy to clarify that I may also use transaction-related information to meet my contractual obligations and fixed a grammatical issue. Further amended the Financial Transactions Policy subsection on information sharing to change “information pertaining to payments I make to you” to “personal information related to payments I make to you” (for greater clarity and to avoid using “pertain” twice in the same sentence) and to add bullet points regarding transactions made on behalf of some third party and information I share with my employees and/or independent contractors. (Those points were already effectively covered through the reference to the Disclosure of Personally Identifying Information section, but it seemed worth spelling them out more explicitly in the Financial Transactions Policy.) Made some further minor adjustments to the wording of those bullet points and to the first two paragraphs of the Financial Transactions Policy. In Disclosure of Personally Identifying Information, updated the reference to developers of WordPress plugins, themes, and/or add-ons to note that any information they collect may be through telemetry features incorporated into those plugins, themes, and/or add-ons as well as through my communications with the developers. In the CCPA Information Collection and Sharing Notice subsection on Information Shared for Business or Commercial Purposes, added links to the Ate Up With Motor and 6200 Productions privacy policies and inserted the phrase “… and much (though not all) of the information I collect in connection with that work is intended for publication” in the sentence beginning “Because I am a professional writer/editor and writing consultant …” Also revised the wording of the first paragraph of the Categories of Personal Information Collected subsection to better express the intended scope of the section and include references and links to the 6200 Productions and Ate Up With Motor privacy policies. Made a few other wording adjustments to match. Fixed several instances of the word “the” being duplicated. In the examples of third-party service providers listed under Disclosure of Personally Identifying Information, updated and corrected the descriptions of Gpg4win and VeraCrypt and rearranged the order of the encryption tools listed. Also fixed a couple of minor errors in this revisions list.
    • April 22, 2020: In the Financial Transactions Policy, changed “applies to financial transactions with me and/or pertaining to aaronseverson.com …” to “applies to financial transactions with me pertaining to the aaronseverson.com website …” In the following paragraph, changed “applies only to transactions with me, NOT to your transactions with third-party vendors, retailers, or services” to “applies only to transactions pertaining directly to the aaronseverson.com website, and then only to transactions you enter into with me, NOT to your transactions with third-party vendors, retailers, or services, which are outside of my control” and changed “if you purchase a copy of some work I have written through an online bookseller rather than directly from me …” to “if you purchase a copy of some work I have written through an online bookseller …” (I’m concerned that the previous wording was confusing and potentially misleading as to the intended scope of the policy.) Made similar wording changes through the rest of that policy for consistency. Also struck a confusing reference to “transactions with 6200 Productions,” which does not apply to this policy, and noted in the Transaction-Related Information Gathering subsection that I may also use transaction-related information I collect for service improvement, fraud prevention, and/or other security purposes. (This was already indicated in the data retention subsection.) Fixed some punctuation errors in the data retention subsection.
    • April 21, 2020: In the list of examples of third-party service providers in Disclosure of Personally Identifying Information, added Waves Audio Ltd. to the listed examples and clarified the bullet point regarding other electronic devices, also adding some other devices to the examples listed and removing one (which I just returned without ever really using). Made some further minor adjustments to the wording of my recent additions to the list of examples and changed several instances of the word “suite” to “software” for clarity. (In a number of instances in that list, I had previously used the word “suite” to refer to packages of software consisting of more than one distinct program or app, but “software” is probably clearer in context.) Removed some extra spaces.
    • April 19, 2020: In Disclosure of Personally Identifying Information, added another bullet point regarding other electronic devices such as cameras and memory storage devices to the examples of third-party service providers. Tinkered further with the wording of that addition. Fixed some typos in that section. Also added Realtek Semiconductor Corp. to the listed examples, updated the description of Qualcomm (also adding a registered trademark symbol), and rearranged the order of some of the examples in the list. Added another device to the examples of other electronic devices.
    • April 17, 2020: Added the Simple Mobile Tools Voice Recorder app to the examples of third-party service providers under Disclosure of Personally Identifying Information. (Hastily updated to add the correct link to the app’s privacy policy.) Also clarified the description of Librera Reader in that section. Updated Controllers, Questions, and How to Reach Me to note that I am also the “responsible party” with regard to the processing of personal information related to this website (for the purposes of local privacy laws that use that term rather than “controller”). Changed the name of that section to “Controller/Responsible Party, Questions, and How to Reach Me” and updated internal references to it accordingly.
    • April 16, 2020: In the CCPA Information Collection and Sharing Notice, revised the examples of professional or employment-related information, adding “and/or client(s)” to the bullet point about employer(s); changing the phrase “certification or licensure” to “certification and/or licensure”; adding a bullet point about other professional relationships; and rearranging the order of several bullet points in that list.
    • April 15, 2020: In Disclosure of Personally Identifying Information, updated the description of CompanionLink Software products listed among the examples of third-party service providers, removing the reference to DejaDesktop and adding the acronym “CRM” after “DejaOffice®.”
    • April 12, 2020: In the CCPA Information Collection and Sharing Notice, amended the second list in the Information Shared for Business or Commercial Purposes subsection (including adding a bullet point about appropriately crediting someone for the use of their intellectual property) to better align it with the list in Disclosure of Personally Identifying Information. Also adjusted the punctuation in that list for greater consistency. Updated Information I Receive for Security Purposes to note that I may also receive such security-related information through the security features, firmware, software, and/or services of my routers.
    • April 7, 2020: In Information I Receive from Third Parties for Security Purposes, changed the phrase “from other external sources such as …” to just “from sources such as …” (since “external” was potentially confusing here).
    • April 5, 2020: In the CCPA Information Collection and Sharing Notice, made a slight adjustment to the wording of the bullet point on sex, gender, gender identity, and/or gender expression (to separate the latter two items with a comma and “and/or” rather than a slash) and added a bullet point regarding language(s) spoken and/or preferred. (This doesn’t appear to be mentioned among the statutory categories, so I’ve listed it under “Characteristics of classifications protected by law,” since language would tend to suggest or implicate one or more characteristics that ARE specified by law.) In Disclosure of Personally Identifying Information, revised the description of dnscrypt-proxy to better describe what it does (viz., allow me to encrypt my DNS queries when I browse the web from my desktop computer).
    • April 4, 2020: Made some clarifications to yesterday’s entry on this revision list (April 3) regarding the changes to the Cookie Notice. Made some further adjustments to the Cookie Notice entries (regarding cookies set by embedded video players). In Definitions, updated the definition of “Cookies” to note that cookies are also used to help identify specific users or devices for analytics and/or advertising purposes. In Disclosure of Personally Identifying Information, amended the bullet point regarding journalistic, historical, and other nonfiction accounts to change “any associated illustrations, bibliographies, and/or metadata” to “any associated images, other media, bibliographies, and/or metadata”; revised the paragraphs following the bullet-pointed list to better explain the intended meaning of “non-public” information” and further clarify the intent and intended scope of that text; and added a reference to the CCPA Information Collection and Sharing Notice and the way some local laws have greatly expanded the definitions of the word “sale.” In the CCPA Information Collection and Sharing Notice, added a bullet point under “Commercial information” regarding information about retailers, vendors, and/or service providers. (This a clarification rather than a new type of information gathered, since this information is probably reasonably encompassed by the other examples listed in that category.) Amended the bullet point regarding “Information about specific vehicles” to also mention damage, repairs, and/or maintenance.
    • April 3, 2020: Updated the Definitions and Embedded Content section to explain that some embedded content may be saved (cached) in your browser. Also amended the latter section to clarify that this does not only apply to Google Fonts and Google Hosted Libraries. Further amended Embedded Content to note that embedded YouTube and/or Vimeo video players may show you ads (and may set cookies and/or use information the player gathers about you for that purpose). In the CCPA Information Collection and Sharing Notice, struck the word “permanent” in the phrase “death or permanent incapacity” (making it just “death or incapacity”) and changed “heirs and successors” to “heirs, successors, and/or assigns” for consistency with the corresponding language in Disclosure of Personally Identifying Information. In Disclosure of Personally Identifying Information, adjusted that bullet point to change “to third-party purchaser(s) or acquirer(s) (including, where applicable …” to “to the third-party purchaser(s) or acquirer(s) (and/or, where applicable …” for the sake of coherency and grammar. Also in Disclosure of Personally Identifying Information, updated the description of Librera Reader in the examples of third-party service providers to make some clarifications and add a link to their privacy policy; updated the description of Google services to add references to Google advertising services (which I don’t use, but may be used by apps, services, and/or websites I use) and a few additional trademark references; and updated the reference to Adobe to change “other services or tools” to “other services and/or tools”; and updated the reference to taxis and/or ride-share services to change “to meet with you via such means and/or arrange such transportation for you” to “to meet with someone via such means and/or arrange such transportation for someone.” Fixed a typographical error in an earlier item in this revisions list. Updated Cookies to clarify that the Cookie Notice forms part of this Privacy Policy; also added language to that effect to the preamble. Updated the Cookie Notice to also make that clearer, rearrange and update some text, and explain that the Privacy Policy license also applies to the Cookie Notice. Fixed a typo in this item. In the CCPA Information Collection and Sharing Notice, amended the bullet point regarding “Information about specific vehicles” to also include customization and/or modifications among the examples. (This a clarification rather than a new type of information gathered, since modifications or customization would reasonably be considered “other identifying characteristics or details,” but it seems worth specifying.)
    • April 1, 2020: Adjusted some wording in Embedded Content, for greater internal consistency and to clean up some grammatical issues. In the CCPA Information Collection and Sharing Notice, added a bullet point under “Other types of personal information” regarding gifts, donations, and contributions. (This is primarily a clarification, since gifts, donations, or contributions would probably also constitute “other types of purchases or transactions,” already listed under “Commercial information.”)
    • March 28, 2020: Added Nuance Communications, Inc. (present owner of the voice dialing software on the older of my BlackBerry devices) and the certificate management application Kleopatra (which is installed along with the Gpg4win suite) to the examples of third-party service providers under Disclosure of Personally Identifying Information.
    • March 27, 2020: In Disclosure of Personally Identifying Information, updated the bullet point regarding public responses to an inquiry or support request to also reference the Contact Forms section as well as the Other Inquiries, Messages, and Support Requests sections, for internal consistency. (I neglected to update this item when I added the Contact Forms section earlier this year.) Fixed some typographical errors in this revisions list. In License for This Policy, fixed the capitalization of Legalmattic.
    • March 23, 2020: Added the F-Droid repository and client app to the examples of third-party service providers under Disclosure of Personally Identifying Information.
    • March 22, 2020: Amended the revision made March 19 by changing the phrase “person or people to whom …” to “person(s) to whom …” (to better convey the intended meaning and specificity of that phrase). For the same reason, in the language about de-identified, anonymized, redacted, and/or aggregated information, changed “such that it could not reasonably be used to identify the specific person(s) to whom it pertains” to just “such that it could not reasonably be used to identify specific person(s) (other than me, if I am somehow included in that information and elect not to de-identify, anonyimize, redact, and/or aggregate my own information).” Fixed a minor formatting error. In Advertising, Disclosure of Personally Identifying Information, and CCPA Information Collection and Sharing Notice, clarified the language about advertisers (to specify that I don’t let advertisers use technologies like scripts or cookies to gather information about you through the publicly visible portions of this website) and fixed some inconsistent wording. Also in Disclosure of Personally Identifying Information, deleted the automotive sites listed among the examples of third-party service providers (as they’re unlikely to be applicable in the context of this website). In CCPA Information Collection and Sharing Notice, changed “to protect property, rights, and/or safety” to “to protect property, rights, security, and/or safety” to align with the recent revision of the corresponding language in Disclosure of Personally Identifying Information.
    • March 21, 2020: Added some additional automotive sites to those listed among the examples of third-party service providers under Disclosure of Personally Identifying Information.
    • March 20, 2020: In CCPA Information Collection and Sharing Notice, amended the biometric information item to also mention fingerprints. (I have no means of analyzing, identifying, or using fingerprint data, but the law and its associated regulations make no such distinction.) Added Intel to the examples of third-party service providers under Disclosure of Personally Identifying Information.
    • March 19, 2020: In Disclosure of Personally Identifying Information, changed “Where that information otherwise is or was already publicly available” to “If that information otherwise is or was already publicly available” (to avoid potential ambiguity about the intended meaning of the word “where” in this context). In the bullet point regarding de-identified or aggregated information, inserted the word “specific” before “person or people to whom it pertains.” In the CCPA Information Collection and Sharing Notice subsection regarding Information Shared for Business or Commercial Purposes, changed “where” to “if” (and changed “Where I deem it reasonable and appropriate …” to “As I deem reasonable and appropriate …”) in the third bullet-pointed list and made some wording adjustments for consistency with the Disclosure language.
    • March 18, 2020: In Advertising, changed “use scripts or cookies to collect information about you while you are on the publicly visible/publicly accessible portions …” to “use scripts, cookies, web beacons, or other such technologies to collect information about you while you are visiting the publicly visible/publicly accessible portions …”; changed “(and can typically tell that you came from this website)” to “(and may be able to tell that you came from this website)”; and changed “NOT normal site visitors” to “NOT other site visitors.” In Disclosure of Personally Identifying Information, added a paragraph about advertising (basically to reiterate what it says in Advertising above) and fixed a technical problem with one of the links.
    • March 17, 2020: In the CCPA Information Collection and Sharing Notice subsection regarding Information Shared for Business or Commercial Purposes, changed the phrase “the management of my business” to “the management or operation of my business” and added the phrase “for publication and/or for use in or with my published work(s)” after “any images and/or other media you submit to me” in the interests of clarity. Also added a bullet point to the list following that one regarding the sharing of information that is already publicly available. (This is already noted elsewhere in that section, but I want to make it absolutely clear; I am quite alarmed by the unconstitutional effort of the CCPA and its associated regulations to restrict free expression and freedom of the press in the name of “consumer privacy.”)
    • March 16, 2020: In Disclosure of Personally Identifying Information, changed some additional instances of the second person to the third person (e.g, changing “you” to “someone,” “they,” or “the person or people to whom the information pertains”), continuing the update begun on March 15. In Embedded Content, changed the phrase “may include, but is not limited to …” to “may include, but is not necessarily limited to …”; changed “From time to time …” to “Not all of the above embedded content is necessarily used on the site at any given time, and from time to time …”; and added the phrase (“but without limitation”) after “for example” for greater clarity. Corrected some typographical errors in this revisions list.
    • March 15, 2020: In the CCPA Information Collection and Sharing Notice, amended the example under “Additional categories of personal information” regarding medical information to change “(e.g., health conditions, treatments or therapies received)” to “(e.g., health conditions and/or tests, treatments, and/or therapies received).” Also amended “and most of the insurance-related data I do receive is in aggregated form” to “and much of what insurance-related data I do collect is in aggregated form.” In Disclosure of Personally Identifying Information, amended “property, rights, and/or safety” to “property, rights, security, and/or safety” (to clarify the intended meaning of that phrase; obviously, “security” may encompass various threats and/or potential threats to property, rights, or safety). Also in that section, changed several instances of the second person to the third person (e.g, changing “you” to “someone,” “they,” or “the person or people to whom the information pertains”) to avoid potential confusion and amended the bullet point on historical, journalistic, and other nonfiction accounts to restore the word “accounts” (which had been accidentally deleted), change “associated bibliographies and/or metadata” to “associated illustrations, bibliographies, and/or metadata,” and change “which may include images and/or other media such as …” to “and may include images and/or other media such as, again without limitation …” Made a related change (adding “without limitation” and “again without limitation”) to the corresponding paragraph of Other Information I Receive from Third-Party Sources for consistency. In Information Captured by Service/Software/App/Device Telemetry, changed the phrase “about me and/or other individuals” to “about me and/or other individuals and/or households.” Removed some extra spaces.
    • March 14, 2020: In the CCPA Information Collection and Sharing Notice, amended the first example under identifiers to also specify nicknames. (This is essentially a clarification rather than an addition, as I would consider nicknames to be a type of alias/pseudonym.) In Disclosure of Personally Identifying Information, added some automotive history and information sites and the Opera browser (and/or its integral VPN/proxy service) to the examples of third-party service providers. Clarified an earlier item on this revisions list.
    • March 13, 2020: In the CCPA Information Collection and Sharing Notice, updated the geolocation data bullet to change the word “data” to “information” and edited the examples to illustrate that geolocation information can include movements as well as location (as is already noted in the Definitions).
    • March 12, 2020: In Disclosure of Personally Identifying Information, updated the paragraph following the bullet-pointed list to clarify that that language also applies to content I edit and/or write, and/or on which I consult, as part of my professional work (as well as work that I write and/or publish myself in that context). (I hope that this was previously implicit, but I don’t want there to be any confusion on this point.) In the bullet points, changed “journalistic or historical accounts” to “journalistic, historical, or other nonfiction accounts” (to limit hairsplitting about what is and isn’t “journalism”) and changed “in the course of researching and writing same” to “in the course of researching, writing, and/or editing same.” Also made some related clarifications in Other Information I Receive from Third-Party Sources.
    • March 11, 2020: Some wording adjustments: In Other Inquiries, Messages, and Support Requests, changed “the message itself might also be publicly visible” to “the messages themselves might also be publicly visible.” In the CCPA Information Collection and Sharing Notice, clarified the examples under commercial information by changing “property and/or services” to “personal property, products, goods, and/or services” (which is what that bullet point was always intended to encompass; the change is simply to make that clearer), fix a missing serial comma in that section, and change “purchasing or consuming history or tendencies” to “purchasing or consuming history and/or tendencies” (since one tends to suggest the other).
    • March 10, 2020: In Disclosure of Personally Identifying Information section, changed “repair, maintenance, and/or service providers” to “repair, maintenance, and/or technical service providers” for clarity.
    • March 9, 2020: In Disclosure of Personally Identifying Information, added Dell, LG, and Logitech to the examples of third-party service providers. In that same list, updated the description of WordPress.org to note that their privacy policy also applies to my use of their website and/or support forums to help me manage and troubleshoot this site. In the CCPA Information Collection and Sharing Notice, changed instances of the phrase “names or other personal information” to “names and/or other types of personal information” for internal consistency (and so as not to cause confusion with the usage outlined in Definitions). Also added airlines, bus or rail services, hotels, motels, other lodging providers, travel agencies, travel bureaus, travel brokers, and the developers of this website’s theme(s), plugins, and/or add-ons to the examples of third-party service providers under Disclosure of Personally Identifying Information (noting that my communications with such developers are typically but not always via the WordPress forums). Fixed a typo in this list.
    • March 8, 2020: In the CCPA Inf