Last updated:
Privacy & Cookies
This page explains how we collect, use, and protect personal information across our sites: mamollenkopf.com, graviscape.net, graviscape.com, and themindjackmurders.net (“the Sites”).
Who we are
These Sites are operated by M.A. Mollenkopf (“we,” “us”). You can reach us at mamollenkopf@graviscape.net.
What we collect
Newsletter signup (optional)
- Email address – collected when you submit the signup form.
- Log info – IP address, user-agent, and timestamp at signup/confirm/unsubscribe, used for security and audit.
We use a double opt-in process: you must click a confirmation link sent to your email before you’re subscribed.
Short comment form (optional)
- Comment text – short, plain-text only.
- Log info – IP address, user-agent, referer, and timestamp, used to prevent abuse and spam.
Server logs
Our web server records standard access/error logs (e.g., IP address, requested URL, user-agent, timestamps) for reliability and security.
Cookies
We use a strictly necessary cookie to protect our forms from forgery (CSRF). This cookie does not track you and is required for the forms to work.
csrf_commentandcsrf_sub(essential) – set when you load the comment or newsletter pages to enable secure submissions.
We do not currently use analytics or advertising cookies. If that changes, you will be able to choose your preferences here.
Note: Essential cookies do not require consent under EU/UK rules, but we still provide transparency and controls if non-essential cookies are added later.
How we use information
- To send the newsletter you requested (only after confirmation).
- To respond to short comments or messages (if applicable).
- To secure, monitor, and improve the Sites (rate-limiting, abuse prevention, troubleshooting).
- To comply with legal obligations and enforce our policies.
Legal bases (EU/UK)
- Consent – for sending you the newsletter (double opt-in), which you can withdraw at any time.
- Legitimate interests – to protect the Sites from abuse and maintain reliable service (e.g., security logging, CSRF).
- Legal obligation – where necessary to comply with applicable laws.
Sharing
We do not sell your personal information. We may share limited data with service providers solely to operate the Sites (for example, our email provider to send confirmation and newsletter emails). We may disclose information if required by law or to protect our rights and users.
Basic web hosting and networking are provided by our infrastructure provider. These providers process limited data on our behalf under their own privacy and security practices.
Data retention
- Newsletter data – retained while you are subscribed. If you unsubscribe, your status is set to “UNSUB,” and we retain minimal records (email, timestamps) to honor opt-out and prevent re-adding without consent.
- Comment entries & logs – retained for a reasonable period for security/audit; we periodically review and prune.
- Server logs – retained per operational needs and then deleted.
Your choices & rights
- Newsletter: every newsletter email contains an Unsubscribe link that immediately removes you.
- Access/Deletion (EU/UK/US where applicable): you can request a copy or deletion of your personal data (subject to exceptions) by emailing mamollenkopf@graviscape.net.
- Consent withdrawal: you can withdraw newsletter consent anytime by unsubscribing.
Security
We use industry-standard measures appropriate for a small publisher site: TLS (HTTPS), CSRF tokens, basic rate-limiting, input validation, and server hardening practices. However, no system is perfectly secure. If you believe your data has been exposed, please contact us immediately.
International transfers
Our Web Server and email services may process data in the United States or other locations. By using the Sites, you understand your information may be transferred to and processed in those regions.
Changes
We may update this page to reflect changes in our practices or legal requirements. We’ll adjust the “Last updated” date above when we do.