Privacy Policy

Last updated: 11 February 2026

This Privacy Policy explains what information is processed when you use this website and how it is used. It is written to satisfy transparency requirements under data protection laws (including the EU GDPR).

If anything here is unclear, contact: [email protected].

Who controls your data What data is processed Why it is processed Legal bases Cookies & local storage Recipients & sharing International transfers Retention Your rights Security Changes Contact

1. Who controls your data

Controller: Roman Pirshtuk (individual), Warsaw, Poland.

Contact: [email protected]

2. What data is processed

2.1 Data you actively provide

  • Messages you send via email or other contact methods (content of your message and your contact details).

2.2 Data processed automatically when you use the website

When your browser requests pages and resources from the website, certain technical data is typically processed by servers and network components to deliver the site.

  • Basic request/connection data: date/time of request, requested URL/path, response status, referrer (if provided by your browser), and user-agent string.
  • IP address: your IP address is received by network/server components in order to deliver content. Depending on configuration, it may be stored in access logs for a limited period.

2.3 Interaction and usage metrics (first-party)

The website may send small event requests to count how often certain UI elements are used. These events are used to improve content and UX.

3. Why the data is processed

  • To provide the website: serve pages and assets, maintain availability, prevent abuse, and troubleshoot errors.
  • To keep the service secure: detect malicious traffic, rate-limit abuse, and investigate incidents.
  • To understand aggregate usage: count interactions and understand which parts of the site are useful.
  • To communicate with you: respond if you contact me by email.

Where the GDPR applies, processing must rely on a legal basis. Common bases used here are:

  • Legitimate interests (Art. 6(1)(f) GDPR)
  • Consent (Art. 6(1)(a) GDPR)
  • Contract / pre-contract steps (Art. 6(1)(b) GDPR)
  • Legal obligations (Art. 6(1)(c) GDPR)

5. Cookies & local storage

5.1 Cookies

This website is designed to work without setting analytics cookies.

5.2 Local storage

The website may store a single preference locally to remember your selected theme (light/dark). This preference is stored on your device and can be cleared via your browser settings.

6. Recipients & sharing

I do not sell your personal data. Data may be processed by service providers that help operate the website:

  • Hosting / infrastructure provider(s): servers and networking used to deliver the site.
  • Reverse proxy / CDN / tunneling provider(s): may process IP addresses and request metadata to route traffic and provide security.

Access is limited to what is necessary to provide the service. Providers may act as “processors” under the GDPR.

7. International transfers

Depending on the providers used, data may be processed in the EU/EEA and potentially in other countries.

8. How long data is kept

  • Server/security logs: typically retained for a limited period (30 days) unless needed longer to investigate incidents.
  • Interaction metrics: raw event data may be retained for a limited time (up to 90 days) and then aggregated.
  • Aggregated statistics: may be stored longer because they are not intended to identify individuals.
  • Email communications: retained as long as needed to respond and for reasonable record-keeping.

9. Your rights

If the GDPR applies to you, you may have rights including:

  • Right to access your personal data
  • Right to rectification
  • Right to restriction of processing
  • Right to data portability (where applicable)
  • Right to object (especially where processing is based on legitimate interests)
  • Right to withdraw consent (if processing is based on consent)
  • Right to lodge a complaint with a supervisory authority

10. Opt-out and preferences

If interaction metrics are enabled, you can request an opt-out by contacting me at [email protected].

11. Security

Reasonable technical and organizational measures are used to protect the website and processed data, including access controls and limiting retention. No method of transmission or storage is 100% secure; however, the site is designed to minimize data and avoid unnecessary identifiers.

12. Changes to this policy

This policy may be updated from time to time. The “Last updated” date at the top indicates when changes were made. If changes are material, I may add a clear notice on the website.

13. Contact

Email: [email protected]