Privacy Policy

Who We Are
Our website address is: https://blog.obahlouli.com.

Comments
When visitors leave comments on the site, we collect the data from the comments form, the visitor’s IP address, and browser user agent string to help with spam detection. An anonymized string from your email (a hash) may be sent to the Gravatar service to check if you use it. The Gravatar privacy policy can be found here. After approval of your comment, your profile picture becomes visible next to your comment.

Media
If you upload images to the website, avoid uploading images that contain embedded location data (EXIF GPS). Visitors can download and extract this location data from images on the site.

Cookies
When you leave a comment, you can opt-in to save your name, email, and website in cookies. These cookies last for one year and save you from re-entering your details for future comments.
A temporary cookie is set when visiting the login page to check if your browser accepts cookies. This cookie contains no personal data and is deleted when you close your browser.
Login cookies last two days, and screen options cookies last a year. If you select “Remember Me”, your login will persist for two weeks. Logging out removes the login cookies.
If you edit or publish an article, an additional cookie is stored in your browser, containing the post ID of the article. It expires after one day.

Embedded Content
Articles may include embedded content (e.g., videos, images). Embedded content from other websites behaves as though you visited those websites directly. These websites may collect data, use cookies, embed additional third-party tracking, and monitor your interaction with their content.

Who We Share Your Data With
If you request a password reset, your IP address will be included in the reset email.

How Long We Retain Your Data
Comments and their metadata are retained indefinitely to automatically recognize and approve follow-up comments.
For registered users, we store personal information provided in their profile. Users can view, edit, or delete their information (except their username). Website administrators can also view and edit user information.

Your Data Protection Rights (GDPR)
If you are a resident of the European Economic Area (EEA), you have specific rights under the General Data Protection Regulation (GDPR) regarding your personal data. These rights include:

1. Right to Access – You can request a copy of the personal data we hold about you.
2. Right to Rectification – You have the right to request corrections to any inaccurate or incomplete data we hold about you.
3. Right to Erasure – You can request that we delete your personal data, except where we are required to retain it for legal or regulatory purposes.
4. Right to Restrict Processing – You can request that we temporarily or permanently stop processing your data.
5. Right to Object to Processing – You have the right to object to us processing your personal data for marketing purposes or other legitimate interests.
6. Right to Data Portability – You can request that we transfer your data to another organization or to you, in a structured, commonly used format.

To exercise any of these rights, please contact us at [your contact information].

Legal Basis for Processing Personal Data (GDPR)
We process personal data based on the following legal grounds under the GDPR:

• Consent – When you provide consent for us to process your data.
• Contractual Necessity – To perform a contract with you or to take steps at your request before entering into a contract.
• Legal Obligations – To comply with our legal obligations.
• Legitimate Interests – To fulfill our legitimate business interests that are not overridden by your data protection rights.

Where Your Data is Sent
Visitor comments may be checked through an automated spam detection service.