Privacy, by design

Minimal data, clear controls, and transparent practices. You stay in control of your information.

What we collect

We only collect what is necessary to run the site securely.

Account data
OAuth via NextAuth
Messages
Contact & replies
Essential cookies
Authentication only

How we handle your data

  1. Collect

    You sign in via OAuth or submit a message.

  2. Store securely

    Data stored with secure cookies and server-side protections.

  3. Retention

    Messages may be anonymized after the configured window (default 365 days).

  4. Your controls

    Export your data, anonymize messages, or delete your account at any time.

Manage your data
Export a copy of your data, anonymize message content, or delete your account entirely.

  • Export downloads a readable JSON file of your account and messages.

  • Anonymize replaces personal fields in messages and clears sessions.

  • Delete removes your account and linked data. This can’t be undone.

Tip: the export is JSON. Open in any editor or viewer.

Legal details
Key information required for transparency and your rights.

This portfolio offers optional authentication via OAuth providers (e.g. GitHub, Google) using NextAuth, plus a contact/messages feature. We collect only what is needed to provide and secure these features.

What we collect

  • Account data from OAuth sign‑in (name, email, avatar) via NextAuth
  • Contact/messages you submit (name, email, subject, content)

Security Monitoring

We send notifications about account access (including IP addresses, device information, browser details, and timestamps) to account holders for security purposes. This helps protect your account and detect unauthorized access attempts.

Why we collect it

To respond to inquiries, authenticate you, prevent abuse, and operate the site.

How long we keep it

Messages may be anonymized after the configured retention window (default 365 days) by an automated job. You can request export, anonymization, or deletion of your data at any time while signed in.

Your rights

  • Access and export your data while signed in
  • Delete your account or anonymize your data at any time

Controller & ICO

Data controller: Mr Constantin‑Emilian Tivlica. ICO registration number: ZB603220 (United Kingdom).

Complaints

If you have concerns about our use of your personal data, you can contact us or make a complaint to the UK ICO: https://ico.org.uk/make-a-complaint/.

Contact

For privacy requests, contact: contact@conn.digital