Privacy Policy

Effective Date: January 15, 2024
Last Updated: January 15, 2024

This Privacy Policy describes how andrewkoski.com ("we," "us," or "our") collects, uses, and protects your personal information when you visit our website or interact with our services.

Information We Collect

Information You Provide Directly

We collect information you voluntarily provide to us, including:

  • Contact Information: Name, email address, and message content when you use our contact form
  • Newsletter Subscriptions: Email address when you subscribe to our newsletter
  • Communication Records: Records of your communications with us

Information Collected Automatically

When you visit our website, we automatically collect certain information:

  • Usage Data: Pages visited, time spent on pages, click patterns, and navigation paths
  • Device Information: Browser type, operating system, device type, and screen resolution
  • Technical Data: IP address, referrer URLs, and access times
  • Performance Metrics: Core Web Vitals and page load performance data

Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Remember your preferences and settings
  • Analyze website usage and performance
  • Provide personalized content recommendations
  • Ensure website security and functionality

You can control cookie settings through your browser preferences.

How We Use Your Information

We use the collected information for the following purposes:

Primary Uses

  • Communication: Respond to your inquiries and provide customer support
  • Newsletter Delivery: Send you travel updates, crypto insights, and blog notifications (with your consent)
  • Website Improvement: Analyze usage patterns to enhance user experience
  • Content Personalization: Recommend relevant articles and content

Analytics and Performance

  • Performance Monitoring: Track Core Web Vitals and optimize website speed
  • Usage Analytics: Understand visitor behavior and popular content
  • Error Tracking: Identify and resolve technical issues
  • Security Monitoring: Detect and prevent malicious activities

Legal Basis for Processing

We process your personal information based on:

  • Consent: For newsletter subscriptions and optional communications
  • Legitimate Interest: For website analytics, security, and improvement
  • Contract Performance: When responding to your inquiries or requests
  • Legal Compliance: To meet applicable legal and regulatory requirements

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share information in the following limited circumstances:

Service Providers

We work with trusted third-party service providers who assist us in:

  • Email Delivery: SendGrid for transactional emails and newsletters
  • Analytics: Vercel Analytics for website performance monitoring
  • Security: Cloudflare Turnstile for spam protection
  • Hosting: Vercel for website hosting and content delivery

These providers are contractually bound to protect your information and use it only for specified purposes.

Legal Requirements

We may disclose information when required by law or to:

  • Comply with legal processes or government requests
  • Protect our rights, property, or safety
  • Prevent fraud or security threats
  • Enforce our terms of service

Data Security

We implement comprehensive security measures to protect your personal information:

Technical Safeguards

  • Encryption: All data transmission uses HTTPS/TLS encryption
  • Access Controls: Restricted access to personal information on a need-to-know basis
  • Regular Updates: Timely security patches and system updates
  • Monitoring: Continuous monitoring for security threats and vulnerabilities

Organizational Measures

  • Staff Training: Regular privacy and security training for team members
  • Data Minimization: Collection and retention of only necessary information
  • Incident Response: Established procedures for security incident management
  • Regular Audits: Periodic security assessments and compliance reviews

Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

Access and Control

  • Access: Request a copy of the personal information we hold about you
  • Correction: Update or correct inaccurate personal information
  • Deletion: Request deletion of your personal information (subject to legal requirements)
  • Portability: Receive your data in a structured, machine-readable format

Communication Preferences

  • Newsletter Unsubscribe: Opt out of newsletters using the unsubscribe link or contact us
  • Marketing Communications: Opt out of promotional communications at any time
  • Cookie Management: Control cookie preferences through your browser settings

Exercising Your Rights

To exercise these rights, please contact us using the information provided in the "Contact Us" section below. We will respond to your request within 30 days.

Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

  • Contact Form Submissions: Retained for 2 years for customer service purposes
  • Newsletter Subscriptions: Retained until you unsubscribe or request deletion
  • Analytics Data: Aggregated and anonymized data may be retained indefinitely
  • Legal Requirements: Some data may be retained longer to comply with legal obligations

International Data Transfers

Our website is hosted on Vercel's global infrastructure. Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers.

Children's Privacy

Our website is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will:

  • Post the updated policy on this page
  • Update the "Last Updated" date at the top of this policy
  • Notify you of material changes via email (if you've subscribed to our newsletter)
  • Provide prominent notice on our website for significant changes

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: [Contact form on andrewkoski.com]
Website: andrewkoski.com/contact

We are committed to addressing your privacy concerns promptly and transparently.

Compliance Information

This Privacy Policy is designed to comply with applicable privacy laws, including:

  • General Data Protection Regulation (GDPR) for EU residents
  • California Consumer Privacy Act (CCPA) for California residents
  • Other applicable regional privacy regulations

This Privacy Policy was last updated on January 15, 2024. Please review this policy periodically for any changes.

Swipe down or tap to close