Privacy Policy

Last updated: May 1, 2026

This Privacy Policy explains how personal data is collected, used, and protected when visitors use EricWeaver.com or contact the site through its web form. The site is operated in accordance with the EU General Data Protection Regulation (GDPR) and related applicable laws.

EricWeaver.com is a personal website operated by an individual, not a company.

1. Data controller

For the purposes of the GDPR, the data controller is:

Name: Eric Weaver
Website: EricWeaver.com – https://ericweaver.com
Email (for privacy and data-protection matters): administratorius@ericweaver.com
Correspondence address (for mail relating to this website and data-protection matters):

PO Box 1016
Chania 73101
Greece

This correspondence address is provided for official communications and data-protection requests and is not a physical office or place for in-person visits.

No Data Protection Officer has been appointed because none is legally required for this website.

2. Personal data collected

The site may collect and process the following categories of personal data, depending on how it is used.

Contact form data

When a visitor uses the contact form, the site collects the information submitted by the visitor, which may include:

• Name
• Email address
• Any other personal data included voluntarily in the message

Technical and usage data

When a visitor accesses the site, the hosting environment and website systems may automatically collect technical information such as:

• IP address
• Browser type and version
• Device and operating system information
• Referrer URL
• Date and time of access
• Pages viewed and general interaction data

Analytics data

The site uses the following analytics tools:

• Independent Analytics as the primary analytics tool; this plugin stores analytics data within the WordPress installation and is designed to avoid sending visitor data to external analytics services.
• Jetpack Stats as a backup or secondary statistics tool; Jetpack Stats provides traffic and content performance data through Automattic’s infrastructure.

Independent Analytics is intended to operate in a privacy-friendly manner using locally stored reporting data rather than third-party behavioral profiling. Jetpack Stats may process visitor usage data such as pageviews, referrers, approximate location, and device information in order to generate site statistics.

Cookies and similar technologies

The site seeks to minimize the use of cookies and similar tracking technologies.

• WordPress and hosting-related components may use strictly necessary cookies for security, login sessions, and core site functionality.
• Independent Analytics is intended to be used in a cookieless, privacy-friendly configuration.
• Jetpack Stats may use cookies or similar identifiers depending on configuration and service behavior.

The site does not intentionally collect special categories of personal data, such as health data, religious beliefs, political opinions, or other sensitive personal information, through the website.

3. Purposes and legal bases

Personal data is processed only where there is a lawful basis under the GDPR.

Responding to inquiries

• Purpose: To read, manage, and respond to messages sent through the contact form.
• Data used: Name, email address, and message contents.
• Legal basis: Article 6(1)(b) GDPR where the inquiry relates to requested services or pre-contractual steps, and Article 6(1)(f) GDPR where processing is necessary for legitimate interests in managing communications.

Operating and securing the site

• Purpose: To maintain website availability, reliability, security, and integrity, including the prevention of misuse and malicious activity.
• Data used: Server logs, IP address, security-related information, and essential cookies.
• Legal basis: Article 6(1)(f) GDPR, based on legitimate interests in operating a secure website.

Measuring site usage

• Purpose: To understand how visitors use the site, evaluate content performance, and improve structure and usability.
• Data used: Aggregated or limited analytics information such as pageviews, referrers, countries, devices, and similar site-usage data.
• Legal basis: Article 6(1)(f) GDPR, based on legitimate interests in understanding and improving site performance in a privacy-conscious manner.

Visitors are not required to provide personal data simply to browse the site, but without contact details it may not be possible to respond to a submitted inquiry.

4. Cookies

Cookies are small text files placed on a visitor’s device by the browser. This site uses only limited cookies and similar technologies necessary for site operation and, where applicable, basic analytics.

The categories of cookies or similar technologies that may be used are:

• Strictly necessary cookies for core WordPress functionality, site security, and technical operation.
• Analytics-related cookies or identifiers used by Jetpack Stats, if active in the current configuration.

Independent Analytics is intended to be configured without cookies. Visitors can manage or delete cookies through their browser settings, although some site functions may be affected if essential cookies are blocked.

5. Retention

Personal data is retained only for as long as necessary for the purposes described in this Privacy Policy or as required by law.

• Contact form submissions: retained for up to 1 year from the last relevant communication, unless a longer retention period is necessary to establish, exercise, or defend legal claims.
• Technical logs and security data: retained for a limited period appropriate for maintenance, troubleshooting, and incident response, and generally not longer than necessary for those purposes.
• Analytics data: retained only as reasonably necessary to review trends and improve the website, subject to the retention settings and capabilities of Independent Analytics and Jetpack Stats.

When data is no longer needed, it will be deleted or anonymized where feasible.

6. Hosting, processors, and data sharing

The site is hosted by Hostinger, a provider based in the European Union. Personal data may be processed by service providers that support the operation of the site, but personal data is not sold, rented, or traded.

Relevant service providers may include:

• Hostinger, for website hosting and related infrastructure services.
• The email provider used to receive and send communications from the contact form.
• Independent Analytics, operating within the WordPress site environment for local analytics reporting.
• Automattic / Jetpack, for Jetpack Stats functionality and related service processing.

These providers process data only as necessary for their roles and are subject to applicable contractual, technical, and legal safeguards.

If personal data is transferred outside the European Economic Area, appropriate safeguards such as Standard Contractual Clauses or other lawful transfer mechanisms will be used where required.

7. Security

Appropriate technical and organizational measures are used to protect personal data against unauthorized access, disclosure, alteration, or destruction. These measures may include HTTPS/TLS encryption, restricted administrative access, password protection, software updates, and prudent plugin and hosting security practices.

No online system can be guaranteed to be completely secure, but reasonable steps are taken to reduce risk and protect the data processed through the site.

8. Your rights

Under the GDPR, individuals may have the following rights, subject to applicable conditions and limitations:

• The right to be informed about how personal data is processed
• The right of access to personal data
• The right to rectification of inaccurate or incomplete data
• The right to erasure in certain circumstances
• The right to restrict processing in certain circumstances
• The right to data portability where applicable
• The right to object to processing based on legitimate interests
• The right to withdraw consent at any time where processing is based on consent

Rights requests may be sent to privacy@ericweaver.com. Proof of identity may be requested before a response is provided where appropriate.

9. Complaints

If a visitor believes that personal data has been processed unlawfully, a complaint may be lodged with a competent supervisory authority in the EU. This may include the Hellenic Data Protection Authority in Greece, the Lithuanian supervisory authority, or the authority in the visitor’s place of residence or place of the alleged infringement.

10. Third-party links and embedded content

The site may contain links to third-party websites or embedded content. Those third parties operate under their own terms and privacy policies, and this site is not responsible for their content, practices, or policies.

11. Children

This site is not directed to children under the age of 16, and no knowing collection of children’s personal data is intended. If personal data from a child is believed to have been submitted, contact should be made using the address below so appropriate deletion steps can be taken where required.

12. Changes to this policy

This Privacy Policy may be updated from time to time to reflect changes in law, technology, service providers, or website practices. The “Last updated” date at the top of this page will be revised when material changes are made.

13. Contact

Questions, concerns, and data-protection requests relating to this Privacy Policy or the processing of personal data may be sent to:

Email (preferred): privacy@ericweaver.com
Correspondence address for data-protection matters:
PO Box 1016
Chania 73101
Greece

Electronic contact is generally the fastest way to receive a response, but formal written requests may also be sent to the correspondence address above.