Privacy Policy
This is version 1.3 of the Privacy Policy, as published on 29th Sept 2021.
Table of Contents
In General
We do not track you. We try our best to minimise the data we gather. We use free and open tools whenever possible and we do not share your data with third parties except as compelled by law. Unless prevented from doing so by law or court order we will make a reasonable effort to notify users of any disclosure of their information.
We are not responsible for and do not have control over the privacy practices of third-party sites that appear as links on this site. We encourage users to read the privacy policies of any website visited via links from our website.
No Cookies
We do not use any cookies.
Data Collection
For each of our services we answer questions below on the data processing.
Figular Website
| Question | Answer |
|---|---|
| What is the service? | Users visiting the website |
| What data is processed? | (1) IP address (2) ‘Referer’ (wikipedia.org) - the address of the web page you visited before our website (3) ‘User-agent string’ (wikipedia.org) - the content varies depending on your browser but typically might contain information on your browser, system, platform and extensions (4) The URL you visited on our website (5) The date and time of your visit. |
| Why is the data processed? | We collect a minimum of data to ensure the website functions correctly and to understand how the site is used. Our only data source are the logs written by apache server (apache.org) as configured by our hosting provider Gandi (gandi.net). These logs collect the information your browser sends when you use our website. |
| What legal permission do we have according to Article 6 of GDPR? | Legitimate Interest |
| Who has access? | System Adminstrators at Figular and in exceptional cases our web host Gandi (gandi.net). |
| What is our Data retention policy? | We retain the first three fields (IP address, referer and user-agent) in the logs for 7 days to combat abuse and diagnose technical problems, after that those fields are deleted. All data is deleted after 28 days. |
Figular API
| Question | Answer |
|---|---|
| What is the service? | Users request a rendering through our website or directly from our API at https://api.figular.com. |
| What data is processed? | (1) IP address (2) ‘User-agent string’ (wikipedia.org) - the content varies depending on your browser but typically might contain information on your browser, system, platform and extensions (3) The URL you visited on our website (4) The date and time of your visit. |
| Why is the data processed? | We collect data to ensure the api functions correctly and to understand how it is used. Our data sources are the logs written by our web servers. These logs collect the information your browser/api client sends when you use the api. Our infrastructure provider can read these but say they would ask for our authorisation before doing so. |
| What legal permission do we have according to Article 6 of GDPR? | Legitimate Interest |
| Who has access? | System Adminstrators at Figular and in exceptional cases our infrastructure host. |
| What is our Data retention policy? | Retention time currently varies depending on disk usage and it’s difficult to be specific. We recognise this is not satisfactory and will improve. We can say that no data can survive two releases of the api. |
Email sign ups
| Question | Answer |
|---|---|
| What is the service? | Communicating with our audience via email. |
| What data is processed? | Email address |
| Why is the data processed? | To manage email communication with our audience and keep them informed. |
| What legal permission do we have according to Article 6 of GDPR? | Consent - given when a person emails us to subscribe. |
| Who has access? | Figular employees only. |
| What is our Data retention policy? | Consent can be revoked at any time as detailed at sign up and on every email. |
Attribution
This policy is derived from:
- The Privacy Policy (small-tech.org) of the Small Technology Foundation (small-tech.org) which is licensed under the Creative Commons Attribution-ShareAlike 4.0 International (creativecommons.org).
- The Privacy Policy (eff.org) of the Electronic Frontier Foundation (eff.org) which is licensed under the Creative Commons Attribution 3.0 United States License (creativecommons.org).
- Our data collection tables are inspired by the FSFE’s Records of processing activities
Licenses
Everything we create is free and open source.
All content on the Figular website, excluding our trademarks and unless otherwise stated, is licensed under the Creative Commons Attribution-ShareAlike 4.0 International (creativecommons.org).
Feedback
Please contact us with any feedback, data rectification or erasure requests by email: data.protection@figular.com.
Changes to this policy
If anything in this policy changes the differences will be noted below.
- Updated 3rd Nov 2021 to version 1.4. Added a section on data collection in the forthcoming API.
- Updated 29th Sept 2021 to version 1.3. Reformatted the data collection table into one for each service. A single table was too wide under our latest theme’s styles as it no longer provides horizontal scrolling.
- Updated 4th March 2021 to version 1.2. Added provision to inform users if we are compelled to disclose their personal data.
- Updated 2nd March 2021 to version 1.1:
- Provided a new email address for data protection requests.
- New data collection table added and previous information on Analytics reformatted into it. Minor grammatical changes were made for clarity.
- Added another row to the data collection table regarding the new email subscriptions feature.