Privacy Policy

Last Updated: 11th November 2004

1. Introduction

Welcome to WillowCMS.app (“we,” “our,” or “us”). We are committed to protecting your privacy and personal data. This privacy policy explains how we collect, use, and protect your information when you use our website.

2. Who We Are

We operate WillowCMS, hosted in London, United Kingdom through Linode. For privacy-related questions, please contact [email protected].

3. Data Protection Officer

Our Data Protection Officer can be contacted at [email protected].

4. Information We Collect

4.1 Account Information (if account creation is enabled):

  • Email address
  • Username
  • Password (stored in encrypted format)
  • Account creation date

4.2 Comments (if enabled):

  • Comment content
  • Date and time of submission

4.3 Cookies and Similar Technologies:

Essential Cookies (necessary for website functionality):

  • consent_cookie: Stores your cookie preferences (expires after 1 year)
  • csrfToken: Security token (expires after 30 days)
  • PHPSESSID: Session management (expires after 30 days)

Optional Cookies:

  • Analytics Cookies: Google Analytics (only if you consent)
  • Functional Cookies: Currently not in use, but may be implemented in future for features such as remembering your preferred language with which to view the site
  • Marketing Cookies: Facebook SDK and Facebook share button (only if you consent)
  • YouTube Consent: Stores your preference for loading YouTube videos (stored in localStorage)

4.4 Embedded Content:

  • YouTube Videos: Our website may include embedded YouTube videos. These videos do not load automatically. Instead, a placeholder image is shown until you explicitly consent to load the video. When you consent to load a video:
    • YouTube’s privacy-enhanced mode is used (youtube-nocookie.com)
    • Your consent preference is stored in your browser’s localStorage
    • YouTube may set cookies and collect data according to their privacy policy
    • You can revoke consent by clearing your browser’s localStorage

5. How We Use Your Information

We use your information for:

  • Account management (if account registrations are enabled)
  • Website functionality
  • Comment moderation (using Anthropic AI, if comments are enabled)
  • Analytics (using Google Analytics, if consented)
  • Marketing (using Facebook SDK and share button, if consented)
  • Communication regarding your account (password resets, account confirmation)
  • Displaying embedded content (YouTube videos, if consented)

6. Legal Basis for Processing (GDPR)

We process your data under the following legal bases:

  • Contractual necessity (account management)
  • Consent (Google analytics, Facebook, YouTube)
  • Legitimate interests (security, comment moderation)

7. Data Sharing

We share data with:

  • Google Analytics (only with your consent)
  • Anthropic AI (for comment moderation only)
  • Apple iCloud (for email delivery)
  • Facebook (for the share button, only with your consent)
  • YouTube (for embedded video content, only with your consent)

We do not sell your personal data to any third parties.

8. Data Storage and Security

All data is stored in London, UK through Linode. Daily backups are maintained within the same location.

9. Your Rights

You have the right to:

  • Access your personal data
  • Correct your personal data
  • Delete your account and data
  • Withdraw cookie consent (except for essential cookies)
  • Request your data via email to [email protected]

10. Cookie Management

You can manage your cookie preferences through your account settings at any time. Essential cookies cannot be disabled as they are required for website functionality.

11. Data Retention

  • Account data is deleted immediately upon account deletion
  • Server backups are maintained for 24 hours
  • Cookie retention varies by type (as detailed in section 4.3)

12. Age Restrictions

While anyone can visit the website, you must be 18 or older to create an account. Account registration is currently disabled.

13. Automated Decision Making

We use Anthropic AI for automated comment moderation. No other automated decision-making or profiling is performed.

14. Data Breach Procedures

In the event of a data breach, we will notify affected users and relevant authorities within 72 hours of discovery, as required by GDPR.

15. Changes to This Policy

We review this privacy policy monthly. Any changes will be posted on this page with an updated revision date.

16. Additional Information

We do not:

  • Store user activity logs beyond Google Analytics (if consented)
  • Collect device or location information beyond Google Analytics
  • Send marketing communications
  • Process payments
  • Share data with any other third parties

17. Contact Information

For any privacy-related queries, please contact: [email protected]

Featured posts

Recent posts

Elsewhere

  1. GitHub