Who we are
We are Notes on Sitting. A meditation resource community/forum. Our website address is: https://notesonsitting.com.
What personal data we collect and why we collect it
We don’t require much from you. If you become a member we collect your email address, whatever username you choose, and your password. The password is encrypted. Obviously, any information you type into a post/comment/form is collected and stored. But, we do not ask for very sensitive personal information such as a ID number or credit card number. Never type sensitive personal information in a post/comment/form. We also collect visitor/member IP addresses. This is to help with analytics (where visitors are coming from) and to help with spam control.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you fill in a contact form we store (possibly forever) whatever information you submit. This means we will store your name and email on our secure servers. If your message has to do with site support and we feel like your question could help future visitors or members, we might share your question publicly but we will not tie your name to it and we never publicly display email addresses. Never submit super sensitive information in our contact form or any form on our site. We never need or will ask for credit card, date of birth, ID numbers, etc.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies eventually expire. If you log out of your account, the login cookies will be removed.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Due to our love for privacy we use a very minimal analytics system called Tiny Analytics. It only tracks how many visitors we receive and the top websites people are coming from. Our web host has other built in analytics tools which collect IP addresses, and general locations as well. This way if we wanted to we could see about how many people from each country around the world are visiting Notes on Sitting. It’s very basic analytical stuff which most websites use. We do not use a third party analytics tool. In other words, we do not use Google Analytics.
Who we share your data with
If you sign up or log in using our Google sign in button, some information is transferred between this site and Google. But, it is all transferred securely (over a https/SSL connection) and we never see your Google password or sensitive data. For more details around how Google Sign In works you would need to look at Google’s policies.
Also, every post is sent through Google’s Perspective API. This means that what you type into a post (no personally identifiable information or sensitive data, unless you type sensitive data into a post) is sent to a Google server and analyzed within milliseconds. This is done because Google’s Perspective API can help us to detect abuse or excessive profanity. Posts which are rude, or contain profanity are then flagged so that a moderator can take a look. This keeps Notes on Sitting a nicer place for everyone. You may read more about this API and how it handles privacy here: https://support.perspectiveapi.com/s/article/Your-data-and-privacy-with-Perspective-API
How long we retain your data
If you post or leave a comment, the post/comment and its metadata are retained indefinitely. We also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time. Website administrators can also see and edit that information. If you have any questions or have issues contact us.
What rights you have over your data
If you have an account on this site you may request the personal data we hold about you. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Posts may be checked through an automated spam detection service. This is mentioned above. We use Google’s Perspective API.
Get in touch with us here. As far as your contact information goes, if you have provided any, we will not share it.
How we protect your data
Data is transferred encrypted. Your password is encrypted/hashed. Our web host is a major web host who has many security features in place to protect your data. If you ever want more information just contact us.
What data breach procedures we have in place
If we learn about a data breach we will email all members.
Industry regulatory disclosure requirements
We operate out of the U.S., therefore if you need to file a compliant you may contact the U.S. FTC. https://www.ftc.gov