The European Union is introducing the General Data Protection Regulation (GDPR), which impacts every single citizen of the European Union and how their personal data is stored. As someone who hosts multiple websites for multiple different people (not for profit), including my own, I act as both a data processor and data controller in the terms of GDPR. It is important to understand the following information:
- What, how and why is data collected?
- Where, how and for how long is data stored?
- How can I see a copy of or delete data that is stored?
- How can I contact someone for more information?
What, how and why data is collected?
When you browse to a website, no personally identifiable information is collected or stored by my web servers as it is defined under GDPR. This includes things such as:
- Your name
- Email addresses
- Telephone Numbers
- Home or Office Addresses
- Internet Protocol Addresses
There are three third-party vendors that I use to provide my services. Vultr Holdings provide the Compute Instances for the websites (the web servers), Amazon Web Services provide a CloudFront service for content delivery and Google provide the analytics – none of these third-party vendors collect personally identifiable information in the context of providing my web services.
No personally identifiable information is collected by any of my sites. We don’t collect IP Addresses in logging.
Where, how and for how long is data stored?
All of our web servers are located in London, in the United Kingdom. Services provided by Amazon Web Services (CloudFront) are distributed across the globe in the form of cached content. More information on where CloudFront operates can be found here. Google provide analytics which are also distributed, and more information can be found here. Because we don’t collect personally identifiable information, there is no limit on how long data is stored.
All of our web servers are located in London, UK.
How can I see a copy of or delete data that is stored?
As we don’t collect any personally identifiable information, we don’t allow people to request access to the data stored.
How can I contact someone for more information?
If you have any questions, queries or comments, please send them to firstname.lastname@example.org.