Privacy Policy

Who we are

Our website address is: http://foxemerson.com.

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site, we collect the data shown in the comments form, along with the visitor’s IP address and browser user agent string to help detect and prevent spam.

An anonymised string (a hash) from your email address may be provided to the Gravatar service to check if you’re using it. The Gravatar service privacy policy is here: https://automattic.com/privacy. After your comment is approved, your profile picture is publicly visible with your comment.

Media

If you upload images, avoid including location data (EXIF GPS). Other visitors can download and extract this info from your uploaded files.

Contact Forms

We store the information you voluntarily submit via our contact form (name, email, message) for customer service purposes only. We don’t use this data for marketing.

Cookies

If you leave a comment, you can opt to save your name, email, and website in cookies for convenience. These last for one year.
When logging in, we use cookies to save login info and screen preferences. Login cookies last two days; if “Remember Me” is selected, they last two weeks.
A cookie indicating the ID of a recently edited post will be stored and expires after one day.

Embedded Content from Other Websites

Articles may include embedded content (e.g. YouTube videos, images, or articles). Embedded content behaves the same as if you visited the source site directly. These third-party sites may collect data, use cookies, or track your interaction.

Analytics

We use anonymous traffic data and analytics to understand how visitors use our site. No personally identifiable data is shared.

Redirect and 404 Tracking

We use Redirection software to monitor broken links, page redirects, and suspicious traffic patterns. This may include logging the IP address, browser type, and accessed URL path.
This data is only used for website performance and security purposes. We do not sell or share this information. IP addresses are stored only if needed for legal or security reasons and are anonymised where applicable.

Legal Basis for Processing Personal Data
We process personal data under the lawful bases of consent, legitimate interests, and where necessary, legal obligation. You may withdraw your consent at any time.

Who we share your data with

We do not sell, rent, or trade your personal data. We may share limited information with third-party service providers (such as spam detection tools, analytics platforms, and email delivery systems) strictly for the purpose of operating and improving the website. All third-party services are required to comply with data protection laws. We may be legally obliged to share information with law enforcement.

How long we retain your data

If you leave a comment, it and its metadata are kept indefinitely to automatically approve follow-up comments.
For registered users (if applicable), we store the information in your profile. You can view, edit, or delete your info at any time (except your username).

What rights you have over your data

You can request an export of your personal data, or ask us to erase it. This excludes any data we’re required to retain for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your contact information

We only use your contact info to respond to your queries or provide support. We do not send unsolicited messages or share your details.

Additional Information

How we protect your data:
We use industry-standard security measures to protect your data, including firewalls, SSL, and brute force protection. Your data is stored securely using encrypted servers and is only accessible to authorised administrators. We use reputable hosting and security services (e.g. Wordfence) to monitor and protect against data breaches, malicious access, or misuse.

What data breach procedures we have in place:
If a data breach occurs, we will notify affected users and relevant authorities within 72 hours, as required by GDPR.

What third parties we receive data from:
We may receive non-personal analytics from third-party tools like Google Analytics.

What automated decision making and/or profiling we do with user data:
None. We’re not that fancy.

Industry regulatory disclosure requirements:
None applicable at this time.

Suspicious Behaviour and Abuse Detection
We log technical data (e.g. IP address, URL access attempts, device/browser type, referral path, and timestamps) when unusual or suspicious activity is detected — particularly brute-force login attempts, repeated 404s, bot traffic, or link manipulation.

In cases of persistent abuse or targeted harassment, these logs may be retained longer, used to identify and trace offending IPs, and shared with legal authorities or cybersecurity investigators.

We don’t tolerate stalking, impersonation, or malicious use of this site. If you’re reading this with bad intentions, congratulations; you’re already logged.