Privacy policy and disclaimer – David Andrew Finer

About this site and disclaimer

This website facilitates the delivery of records produced by and/or pertinent to the site administrator as a private individual. The website currently presents or links to research begun during the site administrator’s PhD and media coverage of that research during the site administrator’s PhD. Revisions to papers after graduation were made in the site administrator’s capacity as a private individual or by his coauthors, and the views presented or linked to by this website do not necessarily reflect those of any party by whom he has been employed or an affiliate thereof, nor has any employer or affiliate thereof verified the accuracy of the information presented or linked to. The site administrator is currently based in the United States but does not control or know the locations of the systems that will process visitor data, including potentially personally identifiable information like IP addresses. For any questions about this site, visitor data or visitor privacy, you may contact the site administrator at <davidandrewfinerdotcom [AT] gmail.com>. This site’s privacy policy may change at any time, but the site administrator’s strong desire not to collect, to handle, to use, to store or to share visitors’ personally identifiable information will not. This privacy policy was written in good faith but may contain unintentional errors, omissions and imprecisions.

Why a privacy policy?

The terms of service of Google Analytics, the extraterritoriality of GDPR and the possibility that the site administrator’s first working paper might raise concerns about what he might do with Internet traffic.

Which personal data are collected and why they are collected

Site administrator

No visitor without admin permissions can create an account, upload content, post a comment, submit a form or otherwise provide through website operations information beyond that associated with the browsing of content that the site administrator has made available. The site administrator does not want benign visitors’ personally identifiable information, seeks to avoid its receipt and, except where a potential attack has been identified, has not opted to obtain access to the IP addresses required for basic site functionality. Any message to the site administrator by any means will be understood as indicating the sender’s active consent for the site administrator to collect, to handle, to use and to store all of the message contents and metadata that he receives. Personally identifiable information in messages will not be shared with third parties unless there is a compelling legal, administrative or security purpose, but personally identifiable information in messages should be limited to the absolute minimum required.

Web hosting

This is a WordPress-based site hosted by HostGator.com Web Hosting, and basic site functionality entails their processing of visitor information such as IP addresses. HostGator.com Web Hosting’s privacy policy may be obtained here, and questions about their collection, handling, use, storage and sharing of visitor data should be directed to privacy@endurance.com. WordPress.org’s privacy policy may be obtained here.

Site defence

Defiant Inc.’s Wordfence provides protection of this website against attack, including analysis of IP addresses. Defiant’s privacy policy may be obtained here, and questions about their collection, handling, use, storage and sharing of visitor data can be directed to privacy@defiant.com. Wordfence provides details of potential attacks on this site that include times and IP addresses. The site administrator has not enabled Wordfence’s logging of all traffic and has zero intention of doing so.

Analytics

This site employs Google Analytics via MonsterInsights to provide insights into site usage, and Google and Monster Insights may process and store visit data. Analytics data include visit durations, arrival times, pages viewed, whether visits may be return visits and inferences of cities from IP addresses. Whilst Google may process IP addresses, they are not included among the analytics available to the site administrator. Analytics data free of personally identifiable information may be subjected to further processing and analysis. This site employs the MonsterInsights EU Compliance add-on to facilitate GDPR compliance, and details are provided here. The EU Compliance add-on enables Google Analytics’s IP Anonymization feature, which changes the final IPv4 octet and the final 80 bits of an IPv6 address to zeros before the IP address is ever written to disk. All Google Analytics data sharing settings are off. For more information about the implications of this site’s use of Google Analytics, please consult Google’s privacy policy here and its page “How Google uses data when you use our partners’ sites or apps” here. Monster Insights LLC’s privacy policy is available here.

Cookies

How long your data are retained

Details of potential attacks, including IP addresses, may be held indefinitely. The site administrator does not want to retain any other potentially personally identifiable information associated with site visits and will seek its deletion if it is discovered. The content and metadata of messages sent to the administrator by any means may be held indefinitely.

With whom your data are shared

The site administrator will never share visitors’ personally identifiable information to which he has access with a third party without explicit permission except where there is a compelling legal, administrative or security purpose. The site administrator is keenly aware of the difference between an absence of personally identifiable information and the inability to infer identities, and, consequently, only broad patterns in analytics data and low-resolution data may be shared with third parties.

External links

This website contains links to other websites. The pages “CV” and “JMP” contain embedded PDF files stored on Google Drive, and viewing those files is equivalent to visiting an external site. The site administrator is not responsible for material delivered by other websites or for other websites’ activities with bearing on visitor privacy and data protection. Concerned visitors are advised to contact the administrator of an external site prior to connecting to it.

What rights you have over your data

With the exception of details of potential attacks, the site administrator does not hold even potentially personally identifiable information associated with visits like IP addresses. Consequently, visit data are generally not linked to personally identifiable information that can be associated with you. If you believe that your IP address and visit timestamp may be linked to a potential attack identified by Wordfence, and you would like to exercise your rights under GDPR or CCPA, you may contact the site administrator with sufficient details that you may be positively identified with the potential attacker. Regarding data held by HostGator.com Web Hosting, Defiant, WordPress.org, Cookiebot, Google or Monster Insights, please consult their privacy policies or contact them.

How your data are protected

With the exception of potential attacks identified by Wordfence, browsing data available to the site administrator are not linked to personally identifiable information. The site administrator has implemented security measures to guard against attacks that might result in the exposure of visitors’ IP addresses and Email communications.