Privacy Policy

Who we are

Our website address is: https://agardenforall.com.

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Contact forms

If you contact us using any of the forms on our site, the contact form submission data — IP address, user agent, name, email address, website, and message — is submitted to the Akismet service (owned by Automattic) for the sole purpose of spam checking.

The actual submission data is stored in the database of this site and is emailed directly to the owner of this site. This email includes your IP address, timestamp, name, email address, website and message.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

Functionality cookies, like when you subscribe to our blog posts, are set for a duration of 347 days to remember a visitor’s blog and post subscription choices if, in fact, they have an active subscription.

To opt out of Google’s use of cookies on our site, visiting the Google Advertising Opt-Out page.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

We track analytics using both WordPress site stats and Google Analytics.

For the WordPress stats, the following data is used: your IP address, user agent, visiting URL, referring URL, timestamp of event, browser language, and country code. We do not have direct access to any of this information, however. For example, we can see that a specific post has 285 views, but cannot see which specific users/accounts viewed that post. Stats logs — containing visitor IP addresses — are retained by Automattic for 28 days and are used for the sole purpose of powering this feature.

To learn more about how Google Analytics collects and processes data, visit “How Google uses data when you use our partners’ sites or apps” at google.com/policies/privacy/partners. You may opt-out of Google Analytics by visiting the Google Analytics Opt-Out page.

Security Logs

The IP address of visitors, user ID of logged in users, and username of login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 30 days.

Akismet

We collect information about visitors who comment on Sites that use our Akismet anti-spam service. The information we collect depends on how the User sets up Akismet for the Site, but typically includes the commenter’s IP address, user agent, referrer, and Site URL (along with other information directly provided by the commenter such as their name, username, email address, and the comment itself).

Who we share your data with

This site is scanned for potential malware and vulnerabilities by Sucuri’s SiteCheck. We do not send personal information to Sucuri; however, Sucuri could find personal information posted publicly (such as in comments) during their scan. For more details, please see Sucuri’s privacy policy at https://sucuri.net/privacy.

We also use MailChimp to manage our blog subscriber newsletter, reporter outreach, and occasional marketing campaigns. You can learn more about how MailChimp handles your information by reading their Privacy Policy at https://mailchimp.com/legal/privacy/.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Security logs are retained for 30 days.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

This web site uses a third party service to manage administrative tasks. If you leave a comment, submit personal information via a contact form, or otherwise exchange personal details with us, it is possible that we may use this service to manage that data. Please visit the iThemes Privacy Policy for more information regarding the way they handle their data.

This site is part of a network of sites that protect against distributed brute force attacks. To enable this protection, the IP address of visitors attempting to log into the site is shared with a service provided by ithemes.com. For privacy policy details, please see the iThemes Privacy Policy.

Your contact information

If you have questions or concerns regarding this Privacy Policy, you should contact Kathy Diemer at Kathy@agardenforall.com.

Additional information

How we protect your data

Everyone with administrative access to our website is required to use strong passwords and to keep their passwords private and secure.

What data breach procedures we have in place

This site is regularly monitored for site hacks and data breaches by Wordfence Security and iThemes Security. In the event of a breach, the site owner is automatically informed by these tools.

If, in assessing the extent of the breach, personal information is compromised, we will notify identifiable site visitors of the breach and remediation efforts.

What third parties we receive data from

We do not receive data from third-party sources.

A Garden for All