Privacy

I’m John Jackson, the individual who maintains johnridesa.bike. You can contact me through my contact form. This page explains what data I collect, how I store it, and what I do with it.

I’m just a person who maintains this personal website as a hobby. I have no interest in collecting your personal data. I don’t reading long privacy policy statements, but I do take privacy seriously. Because this site uses cookies and stores visitor logs, I’m providing the details of my data usage below:

Comments and contact forms

If you leave comments on this site or submit messages through the contact form, I collect the data shown in the form, your IP address, and browser user agent string to help spam detection.

Cookies

I use cookies to help track visitors on this site, their usage of this site, and their site access preferences.

If you leave a comment on this site, you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

Analytics

I use Jetpack services by Automattic, which includes analytics. They store some cookies and track how you use this site. You can read about how they use this data in the Automattic Privacy Policy and Jetpack Privacy Center.

I also self-host Matomo analytics software for the purpose of helping me understand how visitors use this site. Matomo collects non-personally-identifying information of the sort that web browsers and servers typically make available such as the browser type, language preference, referring site, and the date and time of each visitor request. This also collects anonymized Internet Protocol (IP) addresses. All of this data is stored on my server and I do not share it with anyone.

You can read more about how Matomo respects privacy here.

Tracking opt-out

Matomo only tracks visitors while they’re on this website. Below, you can opt-out of Matomo tracking. Visit Automattic’s Privacy Policy to read about your choices to control their analytics tracking.

Embedded content from other websites

Pages on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who I share your data with

Comments and contact forms are checked through Askimet, Automattic’s automated spam detection service. Comments, contact forms, and visitor analytics are all stored on this server, and I have no intention of sharing that data with a third party.

My email subscription service is provided by Automattic. By subscribing by email, they will have your email address and collect data on how you use their emails

How long I retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so I can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

Matomo analytics data is deleted after six months. Aggregate reports are retained indefinitely.

What rights you have over your data

If you have left comments, you can request to receive an exported file of the personal data I hold about you, including any data you have provided to me. You can also request that I erase any personal data I hold about you. Contact me for more information.

More about Jetpack…

Although I mentioned Jetpack earlier, it probably deserves some additional explanation. Jetpack’s privacy page is the canonical source for their policy, but I’ve copied the pertinent sections here for your convenience:

Contact Form

Data Used: If Akismet is enabled on the site, the contact form submission data — IP address, user agent, name, email address, website, and message — is submitted to the Akismet service (also owned by Automattic) for the sole purpose of spam checking. The actual submission data is stored in the database of the site on which it was submitted and is emailed directly to the owner of the form (i.e. the site author who published the page on which the contact form resides). This email will include the submitter’s IP address, timestamp, name, email address, website, and message.

Data Synced (?): Post and post meta data associated with a user’s contact form submission. If Akismet is enabled on the site, the IP address and user agent originally submitted with the comment are synced, as well, as they are stored in post meta.

Gravatar Hovercards

Data Used: This feature will send a hash of the user’s email address (if logged in to the site or WordPress.com — or if they submitted a comment on the site using their email address that is attached to an active Gravatar profile) to the Gravatar service (also owned by Automattic) in order to retrieve their profile image.

Likes

This feature is only accessible to users logged in to WordPress.com.

Data Used: In order to process a post like action, the following information is used: IP address, WordPress.com user ID, WordPress.com username, WordPress.com-connected site ID (on which the post was liked), post ID (of the post that was liked), user agent, timestamp of event, browser language, country code.

Activity Tracked: Post likes.

Protect

Data Used: In order to check login activity and potentially block fraudulent attempts, the following information is used: attempting user’s IP address, attempting user’s email address/username (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user.

Activity Tracked: Failed login attempts (these include IP address and user agent). We also set a cookie (jpp_math_pass) for 1 day to remember if/when a user has successfully completed a math captcha to prove that they’re a real human. Learn more about this cookie.

Data Synced (?): Failed login attempts, which contain the user’s IP address, attempted username or email address, and user agent information.

Sharing

Data Used: When sharing content via email (this option is only available if Akismet is active on the site), the following information is used: sharing party’s name and email address (if the user is logged in, this information will be pulled directly from their account), IP address (for spam checking), user agent (for spam checking), and email body/content. This content will be sent to Akismet (also owned by Automattic) so that a spam check can be performed. Additionally, if reCAPTCHA (by Google) is enabled by the site owner, the sharing party’s IP address will be shared with that service. You can find Google’s privacy policy here.

Subscriptions

Data Used: To initiate and process subscriptions, the following information is used: subscriber’s email address and the ID of the post or comment (depending on the specific subscription being processed). In the event of a new subscription being initiated, we also collect some basic server data, including all of the subscribing user’s HTTP request headers, the IP address from which the subscribing user is viewing the page, and the URI which was given in order to access the page (REQUEST_URI and DOCUMENT_URI). This server data used for the exclusive purpose of monitoring and preventing abuse and spam.

Activity Tracked: Functionality cookies are set for a duration of 347 days to remember a visitor’s blog and post subscription choices if, in fact, they have an active subscription.