Website Policy

An overview of how I run this website and how I treat my visitors and subscribers.


There are no advertisements, no paywalls, no affiliate links, and no sponsored posts (i.e. no shilling).


I don’t use AI to write my articles (there’s no point using it).

All work on this website is licensed under CC BY-SA 4.0 unless otherwise stated.

References are linked within the text.


Subscriber data is handled as per Buttondown’s privacy policy. Buttondown newsletter emails are sent sent via Postmark with tracking disabled.

You can use services like Addy or Simplelogin to mask your identity from me and Buttondown.

If I move my newsletter to a different service, all subscribers will have the choice to opt out of the move.


This website is hosted on alwaysdata, so all HTTP/S requests to this site are handled as per alwaysdata’s privacy policy.

There are no analytics and only {request}, {status}, {referer} are logged to my alwaysdata account for all HTTP/S requests to this site.

For example, if someone navigates from to, the following line is appended to the log file:

GET /policy HTTP/2.0, 200,

Log entries older than 7 days are wiped automatically.

Security headers

All HTTP/S requests to this site will respond with the following security headers.

Content-Security-Policy: default-src;
Referrer-Policy: strict-origin
Permissions-Policy: interest-cohort=()
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff


Feel free to ping me if this policy is unclear to you.