My website represents a collection of my thoughts rather than the product of some corporate entity or institution. As such, there is no advertising on the site, so much of the standard privacy issues do not affect the site. This is a simple privacy policy to explain what information my website does collect, and what it does with it.
Information Provided by You
Newsletter: When you sign up to receive The Mirandolan newsletter, you provide your name and email address, which are used solely for the delivery of the newsletter to your inbox. No third party receives this information. There is an unsubscribe link on every edition of the newsletter, which you are of course free to click.
Payments: For paid subscribers to the newsletter, you will provide your name, the sum involved, and payment card information. This information will only be used to process your payment. You can cancel your subscription at any time.
Communications: If you contact me via email, either by writing to me directly or by replying to the automated email newsletter, I will receive your email address and any other information you choose to provide.
Bookshop.org and Amazon.com Affiliate Program: The Mirandolan participates in the Bookshop.org and Amazon.com affiliate programs, so that whenever you buy a book from a link on this website, I receive a small commission, a commission that goes into funding my extensive biblioexpenses.
Automatically Collected Information
Usage Information: This website exists thanks to the publishing platform WordPress, which includes a statistical analytics feature to help publishers understand how their readers use their websites. This means that anonymized information of the pages my readers visit and the times of those visits are represented in these statistics. WordPress may add other features to their analytics at any time, which will be available to me as a publisher, though I don’t actually look at these statistics.
What the Website Does with Your Information
I use your information solely to communicate with you if you have opted in to receive the newsletter, to facilitate payments, and to better understand how you use the site in order to improve it. I don’t share your information with any “third parties,” though it does live — securely — within the external services that deliver the email newsletter (MailChimp) and process payments (PayPal).
California Online Privacy Protection Act Notice
(1) This website does not track users, who interact with its website across the web, and therefore does not use “do not track” signals.
(2) This website does not authorize the collection of personally identifiable information from users on the website for third party use through advertising technologies.
GDPR and CCPA Compliance
This website seeks to fully comply with the European Union’s General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other laws and regulations protecting consumer privacy. As such, you have the following rights on this website:
- Right to be forgotten: You may cancel your account at any time. If you wish your data to be permanently deleted, you may contact us at info@josephnoko.com and it will be deleted within 72 hours.
- Right to object: I do not participate in any data science projects on user data, nor shall I ever do so. If this changes, which it will not, then you of course will be informed of this before I go over to the dark side. In that event you may remove your contact data from any such project by emailing me at info@josephnoko.com with the subject line “Opt Out of Data Science”.
- Right to access and rectification: You can contact me at info@josephnoko.com at any time to access copies of all user data I have retained regarding you. I will remove, update, or change any personal information about you from the servers immediately upon your request.
- Right of portability: I only retain your name and email address. Nevertheless, I will provide that information to you upon your request.
- Right of restriction: You can make a request for restriction or suppression of your personal data through the contact information at the end of this privacy policy.
Without prejudice to any other administrative or judicial remedy, if located in the European Union, you shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.
In addition to the above, an “unsubscribe” option is automatically included in the footer of every The Mirandolan newsletter. This allows you to easily unsubscribe from the newsletter. In the event you unsubscribe, we will immediately stop sending you the newsletter. Please note that unsubscribing from the newsletter with the newsletter’s “unsubscribe” button does not cancel your account. In order to do so, please log in at josephnoko.com and cancel your account.
Non-Discrimination
This website will not discriminate against you for exercising any of your GDPR, CCPA, or other consumer privacy rights. Unless permitted by law, the website will not:
- Deny you goods or services.
- Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
- Provide you a different level or quality of goods or services.
- Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.
However, the nature of the services provided by me, a membership website, and newsletter, will require basic information including an active account and your email address in order for those services to be provided. Should you opt out entirely, those services will not be available to you.
Statement of Rights and Choices with the CCPA
The CCPA provides consumers (California residents) with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.
Below is a summary of information collected by category.
| Category | Collected |
|---|---|
| A. Identifiers. | YES |
| B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)). | YES |
| C. Protected classification characteristics under California or federal law. | NO |
| D. Commercial information. | YES |
| E. Biometric information. | NO |
| F. Internet or other similar network activity. | YES |
| G. Geolocation data. | YES |
| H. Sensory data. | NO |
| I. Professional or employment-related information. | NO |
| J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)). | NO |
| K. Inferences drawn from other personal information. | YES |
Disclosure of Personal Information for a Business Purpose
In the course of business, I may disclose the following categories of personal information for a business purpose to the service providers described earlier in this Privacy Policy:
- Category A: Identifiers.
- Category B: California Customer Records personal information categories.
- Category D: Commercial information.
- Category F: Internet or other similar network activity.
- Category G: Geolocation data.
- Category K: Inferences drawn from other personal information.
Access to Specific Information and Data Portability Rights
You have the right to request that the website discloses certain information to you about the collection and use of your personal information over the last 12 months. Once I receive and confirm your verifiable consumer request, I will disclose to you:
- The categories of personal information collected about you.
- The categories of sources for the personal information collected about you.
- My business or commercial purpose for collecting or selling that personal information.
- The categories of third parties with whom I share that personal information.
- The specific pieces of personal information the website collects about you (also called a data portability request).
- If the website sold or disclosed your personal information for a business purpose, two separate lists disclosing:
- sales, identifying the personal information categories that each category of recipient purchased; and
- disclosures for a business purpose, identifying the personal information categories that each category of recipient obtained.
Deletion Request Rights
You have the right to request that I delete any of your personal information that the website collected from you and retained, subject to certain exceptions. Once that request has been received and your verifiable consumer request confirmed, I will delete (and direct our service providers to delete) your personal information, unless an exception applies.
Your deletion request may be denied if retaining the information is necessary for me or its service provider(s) to:
- Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
- Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
- Debug products to identify and repair errors that impair existing intended functionality.
- Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 seq.).
- Comply with a legal obligation.
- Make other internal and lawful uses of that information that are compatible with the context in which you provided it.
Exercising Access, Data Portability, and Deletion Rights
To exercise the access, data portability, and deletion rights described above, please submit a verifiable consumer request to us by either:
- Email at: info@josephnoko.com
Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child. You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:
- Provide sufficient information that allows me to reasonably verify you are the person about whom the website collected personal information or an authorized representative.
- Describe your request with sufficient detail that allows me to properly understand, evaluate, and respond to it.
I cannot respond to your request or provide you with personal information if I cannot verify your identity or authority to make the request and confirm the personal information relates to you. Making a verifiable consumer request does not require you to create an account with me. I will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.
Response Timing and Format
I endeavour to respond to a verifiable consumer request within thirty (30) days of its receipt. If we require more time (up to 90 days), I will inform you of the reason and extension period in writing.
If you have an account with me, I will deliver its written response to that account. If you do not have an account with me, I will deliver its written response by mail or electronically, at your option.
Any disclosures I provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. The response I provide will also explain the reasons I cannot comply with a request, if applicable. For data portability requests, I will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
I do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If I determine that the request warrants a fee, I will tell you why it made that decision and provide you with a cost estimate before completing your request.
Other
Data Transfers: As this website is based in the United States, if you visit the website from another country, your data may be transferred to the United States and other countries that may not have the same data protection laws as the country in which you initially provided information.
Data Security: I do everything I can to make the website and your information as secure as possible. However, this is the Internet — no security measures can be completely secure for reasons far beyond any one person’s intent and control. I too, along with my entire website and any data related to it, can be on the receiving end of some cyberattack at any given moment.
Data Retention Policy: Data will only be retained until you request that I delete it pursuant to this privacy policy.
Children’s Privacy: Protecting the privacy of young children is especially important. For that reason, I do not knowingly collect or solicit personal information from anyone under the age of 18 or knowingly allow such persons to register with the Website or Newsletter. If you are under 18, please do not send any information about yourself to me, including your name, address, telephone number, or email address. No one under age 18 is allowed to provide any personal information to or on the website. In the event that I learn that I have collected personal information from a child under age 18 without verification of parental consent, I will delete that information as quickly as possible. If you believe that I might have any information from or about a child under 18, please contact me.