Privacy Policy
We practice what we teach.
This is a privacy education site. It would be hypocritical to track you while teaching you how to avoid being tracked.
The Short Version
- We don’t collect your data
- We don’t track you
- We don’t know who you are
- We don’t want to know
What We Don’t Collect
No Analytics Tracking
- No Google Analytics
- No Facebook Pixel
- No third-party tracking scripts
- No fingerprinting
No Tracking Cookies
- No tracking cookies
- No “essential” cookies that aren’t essential
- No third-party cookie nonsense
Note: If you authenticate with your DID (optional), a session cookie may be used to maintain your login. This is user-initiated, not tracking—and you can clear it anytime.
No Personal Data
- No registration required
- No email collection to access content
- No “sign up for updates” popups
- No data harvesting of any kind
No Third-Party Requests
- No external fonts (self-hosted or system fonts)
- No CDN dependencies that log requests
- Minimal external resources
- What loads stays between you and Cloudflare
What We Do Use
Cloudflare Pages Hosting
Our site is hosted on Cloudflare Pages. Cloudflare may collect:
- Basic server logs (IP addresses, timestamps)
- DDoS protection data
We don’t access or analyze this data. See Cloudflare’s Privacy Policy for their practices.
IPFS for Document Hosting
Foundational documents are available via IPFS. When you fetch from IPFS:
- Your request goes to IPFS nodes, not us
- We can’t see who accesses IPFS-hosted content
- Content is verified by cryptographic hash, not by trusting us
Authentication (Coming Soon)
We’re building DID-based authentication for optional features like course completion credentials.
How DID Auth Works
- No usernames or passwords - You authenticate with your cryptographic keys
- No email required - Your DID is your identity
- No central database - We verify signatures, not stored credentials
- You control your identity - We can’t revoke, modify, or track it
What This Means
When you authenticate:
- You prove you control a DID (cryptographic signature)
- We verify the signature
- We issue a Verifiable Credential to your DID
- We don’t store your personal information
Your identity, your keys, your control.
Contact & Donations
If You Contact Us
- SimpleX: End-to-end encrypted, no user IDs, we can’t identify you
- Email: We see your email address, encrypted if you use GPG
- We don’t keep logs of conversations unless you ask us to
If You Donate
- Monero: Completely private - we literally can’t know who donated
- Bitcoin: Pseudonymous - we see a wallet address, not your identity
- No donor tracking - We don’t maintain donor lists or send receipts unless requested
Data We Could Theoretically Access
Let’s be transparent about what’s technically possible:
| Data | Can We Access? | Do We? |
|---|---|---|
| Cloudflare server logs | Theoretically | No |
| Your IP address | Via Cloudflare | No |
| Your browser/device | No | No |
| Your location | No | No |
| Your identity | No | No |
| Your learning progress | No | No |
| Which lessons you read | No | No |
We’ve architected the site to minimize what we could know, not just what we choose to know.
Your Rights
Since we don’t collect data, there’s nothing to:
- Request access to
- Request deletion of
- Request correction of
- Opt out of
The best privacy policy is not collecting data in the first place.
Children’s Privacy
We don’t knowingly collect data from anyone, including children. Since we collect no data, COPPA compliance is inherent.
Changes to This Policy
If our practices change, we’ll update this page. Major changes will be noted with dates.
We will never:
- Add tracking without prominent disclosure
- Sell or share data (we have none to sell)
- Require personal information to access free content
Last updated: 2025-12-31
Questions?
Privacy questions? Contact us via SimpleX for maximum privacy.
— Eric Hughes, A Cypherpunk's Manifesto (1993)