Privacy Policy

Introduction

At Fossilia, we unearth history’s buried tales while safeguarding your privacy with care. This Privacy Notice explains how we collect, use, share, and protect your personal data when you visit fossilia.world or engage with our services. Committed to transparency, we adhere to global privacy laws, including the General Data Protection Regulation (GDPR) in the European Union, the US CAN-SPAM Act, and applicable US state laws (e.g., California Consumer Privacy Act). Our goal is to ensure you trust us as you explore ancient stories.

Who We Are

Fossilia is a passion project curated by an MA student, hosted on WordPress.com, operated by Automattic Inc., which provides technical infrastructure for fossilia.world. When we say “Fossilia,” “we,” “us,” or “our,” we refer to this project, with Automattic acting as a data processor for certain functions (e.g., hosting, analytics). As the data controller, Fossilia is responsible for your personal data. For inquiries or to exercise your privacy rights, contact our designated privacy manager at privacy@fossilia.world.

Definitions

  • Personal Data: Information identifying a living individual, such as your name, email address, or IP address, alone or combined with other data.
  • Processing: Any action performed on personal data, including collection, storage, use, or disclosure.

Types of Personal Data We Collect

Fossilia collects minimal data to enhance your experience on fossilia.world, a non-commercial blog focused on archaeology and history.

Website Interaction

When you visit fossilia.world, we automatically collect data via WordPress.com’s tools to improve site performance and user experience:

  • Cookies and Tracking: First- and third-party cookies, pixels, and scripts collect anonymized data like page views, time spent, and device type (e.g., browser, operating system). This helps us understand how you navigate our site (e.g., which articles on Egyptian pyramids are popular). See Automattic’s Cookie Policy for details.
  • Device and Browser Data: We collect your IP address, approximate location (e.g., country), device type, and browser version to optimize site display and ensure security.
  • Analytics: WordPress.com provides aggregated, anonymized analytics (e.g., total visitors) to track site performance. No personally identifiable data is stored unless you interact further.

User Engagement

If you choose to engage with fossilia.world:

  • Comments: Posting a comment requires a name (or pseudonym) and email address, which may be publicly visible (name) or stored securely (email) for moderation. You can opt out by not commenting.
  • Newsletter (Optional): Signing up for our free newsletter requires an email address, collected via a WordPress.com plugin or third-party service (e.g., Mailchimp). We use this to send updates about new articles (e.g., “New Bog Body Find”).
  • Contact Form: Submitting inquiries via our contact form collects your name and email address for response purposes only.

Fossilia does not offer memberships, process payments, or collect billing data, as it operates on WordPress.com’s free plan.

How We Use Your Data

We use your personal data to:

  • Deliver and improve fossilia.world, ensuring articles load smoothly and match your interests (e.g., optimizing for mobile devices).
  • Respond to your comments or inquiries, fostering discussion about archaeology and history.
  • Send newsletters (if you opt in) with updates on recent posts or discoveries.
  • Analyze anonymized site usage (e.g., via WordPress.com analytics) to enhance content, like prioritizing Roman-era topics if popular.
  • Ensure security, detect fraud, or comply with legal obligations (e.g., GDPR requests). We process data based on your consent (e.g., cookies, newsletter) or legitimate interest (e.g., site functionality, analytics).

Sharing Your Data

Fossilia does not sell, trade, or share your personal data for profit. We share data only as necessary:

  • WordPress.com (Automattic): As our hosting provider, Automattic processes data (e.g., IP addresses, cookies) for site functionality, analytics, and security, per their Privacy Policy.
  • Third-Party Services: If you sign up for our newsletter, we may use a service like Mailchimp, sharing your email address solely to deliver updates, with strict instructions not to misuse it.
  • Legal Compliance: We may share data if required by law (e.g., court orders) or to protect Fossilia’s rights.

Data Retention

We retain personal data only as long as needed:

  • Comments: Stored indefinitely unless you request deletion, as they’re part of public posts.
  • Newsletter Emails: Kept until you unsubscribe, then deleted within 30 days.
  • Analytics/Cookies: Anonymized data is retained per WordPress.com’s policies (typically 1–3 years).
  • Legal Needs: Data required for compliance (e.g., GDPR requests) is kept for up to 7 years. You can request deletion of your data at any time (see “Your Rights” below).

Safety of Minors

Fossilia is intended for general audiences and does not knowingly collect data from minors under 16. If we learn of such data, we will delete it immediately. Contact us at privacy@fossilia.world if you believe this has occurred.

Your Privacy Rights

Under GDPR, US state laws (e.g., CCPA, Colorado Privacy Act), and other regulations, you may have rights to:

  • Access: Request a copy of your personal data (e.g., comments, newsletter email).
  • Correct: Update inaccurate data (e.g., email address).
  • Delete: Request removal of your data (e.g., comments), subject to legal exemptions.
  • Opt Out: Refuse cookies (via browser settings or WordPress.com’s cookie banner) or unsubscribe from newsletters.
  • Withdraw Consent: Revoke permission for data processing (e.g., newsletter).
  • Lodge a Complaint: Contact a supervisory authority (e.g., UK ICO at www.ico.org.uk) if concerns arise. To exercise these rights, email privacy@fossilia.world. We’ll respond to verified requests within 45 days (up to 90 days for complex cases), per applicable laws. For US state residents (e.g., California, Colorado), submit requests via email or the contact form at fossilia.world/contact. We process opt-out requests within 15 business days.

Data Security

Fossilia relies on WordPress.com’s robust security measures, including encryption, firewalls, and regular updates, to protect your data from unauthorized access, loss, or tampering. However, no online transmission is 100% secure. You’re responsible for safeguarding any account credentials (e.g., comment login passwords).

Third-Party Links

Fossilia.world may link to external sites (e.g., open-access journals like PLOS ONE). We’re not responsible for their privacy practices. Review their policies before sharing data.

Changes to This Notice

We may update this Privacy Notice to reflect legal or operational changes. Updates will be posted at fossilia.world/privacy, with the “Last Updated” date revised. Check periodically for changes.

Contact Us

For questions, rights requests, or concerns about this Privacy Notice, contact:

  • Email: privacy@fossilia.world
  • Mail: Fossilia Privacy Manager, [Your Address, e.g., a PO Box or academic institution address if applicable, to be added by you], United Kingdom
  • Phone: [Optional, add if desired; not required for a free blog]

For GDPR Article 27 representation in the EU:
[If you choose a representative, e.g., a service like Prighter, add details here. For a free blog, this is optional unless targeting EU users heavily.]

If you’re a resident of California, Colorado, Connecticut, Utah, or Virginia, submit privacy requests via privacy@fossilia.world. We welcome the chance to address concerns before you contact a supervisory authority.

By using fossilia.world, you agree to this Privacy Notice. Thank you for trusting Fossilia as we unearth history’s buried tales together.