This is the personal website of Maarten Brinkerink. The website address is: https://www.maartenbrinkerink.net.
With the information on this privacy page, I aim to be transparant about the personal data I collect with this website.
As a principle, I only collect personal data for functional components that enhance the user experience of this website and/or let me effectively manage and operate this website. I don’t sell your personal data to third parties, nor do I monetize it in any other way!
I apply the same principle to the cookies that this website sets by default. These are only of functional and analytical nature (no tracking!). However, be mindful that the embedded content that features on this website may still result in third-party tracking (more on this below).
Finally, I ‘ve made an effort to only work with technology and services provided by companies with a good track record when it comes to privacy and security. This is why I’ve built my website using the open source CMS WordPress and use some additional plugins by Automattic.
What personal data I collect and why I collect it
When visitors leave comments on this website I collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection (using Akismet, see more below).
If you leave a comment on this website you may also opt-in to saving your name, email address and website in cookies. This is for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
I collect these visitor comments to provide a better user experience to my visitors, by giving them an option to enter into a conversation around the content of this website (with me and/or other visitors of this website). It also provides me with an opportunity to constantly improve the content of this website, based on visitor comments, and to establish a connection with my visitors through the conversations these comments afford.
Leaving a comment is an optional feature for visitors of this website. Making use of this voluntary functionality on this website is interpreted as freely given, specific, informed, and unambiguous agreement to the processing of the data supplied by the visitor.
When visitors contact me through the various contact forms (using Jetpack, see below) on this website I collect the data shown in the contact form.
I collect these visitor contact form entries to provide a better user experience to my visitors, by giving them an easy option to contact me directly through this website. It also provides me with a manageable workflow to process correspondence with my visitors.
Using a contact form to contact me through this website is an optional feature for visitors of this website. Making use of this voluntary functionality on this website is interpreted as freely given, specific, informed, and unambiguous agreement to the processing of the data supplied by the visitor.
I use Jetpack (see more below) to monitor the traffic generated by visitors of this website. Jetpack tracks and retains the following information about visitors to this website:
- Post and page views
- video plays
- outbound link clicks
- referring URLs and search engine terms
As part of collating the above information, Jetpack uses data like IP address, user agent, visiting URL, referring URL, timestamp of event, browser language, and country code. However, none of this information is available to me. Furthermore, the logs, in which this information is stored by Jetpack, are only retained for 28 days.
I use visitor analytics to gain insight in how my website performs and to learn where I can improve the content and/or user experience for my visitors.
Embedded content from other websites
Articles on this website may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
I recommend visitors of this website to manage their cookie settings with a browser add-on like Privacy Badger by Electronic Frontier Foundation. This allows visitors of this website to block these third-party trackers.
Who I share your data with
This website uses the services of Akismet by Automattic (through the Akismet Anti-Spam WordPress plugin) to reduce spam. See their Privacy Statement to learn how your comment data is processed. Read more about how Akismet complies with the GDPR principles here.
This website uses the services of Jetpack by Automattic (through the Jetpack WordPress plugin) to integrate contact forms and to monitor website traffic. Read more about how Jetpack complies with the GDPR principles here.
How long I retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so I can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
If you send a contact form entry, the entry and its metadata are retained indefinitely. This is so I can keep a record of my correspondence with visitors of this website.
What rights you have over your data
If you have left comments or sent contact form entries, you can request to receive an exported file of the personal data I hold about you, including any data you have provided to me. You can also request that I erase any personal data we hold about you. This does not include any data I am obliged to keep for administrative, legal, or security purposes.
To submit these types of data subject requests, please use the contact form on this page.
How I protect your data
All traffic between this website and its visitors runs securely over HTTPS, using a certificate that is authenticated by Let’s Encrypt.
I run automatic security updates for the WordPress instance and plugins I use to run this website.
Access to the backend of this website is secured with 2-Step Verification.
What data breach procedures we have in place
In the case of a personal data breach, I will (as instructed by Article 33 of the GDPR) notify the personal data breach to the supervisory authority competent, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons.