Long story short, Europe has a new law regarding personal data. You can read about its long-term impact on this Wired article.
But in simple terms, it means two things:
- We have to explain what we do with the data we collect.
- And we have to give people the right to be forgotten.
Now, we walk a fine line here. We’re constantly in a catch-22. On one hand, we do use all these products from the large corporations, like the Amazon platform, gmail delivery, Google Analytics. They are tools that open up immense possibilities and can make a small business rival larger ones.
But on the other hand, they do not respect your privacy. And we know that. Now, under the GDPR, these same corporations like Facebook and Google need to abide by these laws for their European customers.
You may not be located in the EU, but it doesn’t matter. These are laws and rights that should be enforced globally, and we plan to adhere to them.
So, here it is:
- With the email data we collect, we simply use them to provide you best with our new products on the shop that you use. For example, if you’re a Kobo shopper, you’ll get an extra email telling you about some sale going on that might interest you. The mailing service does track opens and clicks per email. That’s all. We don’t have your name, we don’t have your buying habits, we don’t even know if you went through with buying the thing.
- The mailing service we use is called Mailerlite. It’s located in the EU so all GDPR laws are followed by them as well. The service tracks opens, locations, click activity of every email subscriber. Your right-to-be-forgotten is valued and you can use it directly with them.
- With the customer data on our shop, we simply use them to complete the transaction, which is delivering you the digital files of the products you purchased.
For now the purchase asks for too much personal information, we will soon limit that to the bare essentials.Our Checkout process now asks for just the email and username.
- The right-to-be-forgotten can be used at any time, you can simply email us at firstname.lastname@example.org and request to be purged from all databases.
- We do not use DRM so your habits cannot be tracked by us or the corporations that we are partnered with.
- This website uses Google Analytics that can anonymously track a lot of data about you, even things like screen resolution and operating system. There’s no real way to turn this off and we just use the service to see from which country people come from. (Update April 2018. GA has complied to GDPR and has offered a tool with which we can delete all stored data about a user.)
- The outgoing affiliate links to stores such as Amazon contain a 7-day tracking cookie that does track your buying habits and gives all your customer information to Amazon. We have no access to that data. You can avoid that by browsing on the store by yourself through a search of your own and locating the product.
- The payment gateway Paypal does not send your personal data or credit card details to us when you complete a purchase through the store. That said, they do track everything you do themselves and you should contact them if you want to know more.
- The Facebook Oauth login is there for ease of use. It connects a user and allows him/her to login with us. The connection doesn’t transfer personal details to us from your Facebook profile. But Facebook tracks all such activity, so again, take it up with them.
That’s all up to the point of writing this post, we’ll update it with others as they come up.