Who we are
Our website address is: https://www.historyofresistance.org.
We are the Resistance Expo Collective.
What personal data we collect and why we collect it
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Obviously you will be supplying a valid email address which we will save so that we can reply to you.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
We don’t bother
Who we share your data with
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. Don’t expect an instant response, it’ll happen dreckley. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes. Of course you will never know if we have really erased it or just moved it somewhere where you can’t see it (the bottom of my sock drawer is the usual place).
Where we send your data
Visitor comments may be checked through an automated spam detection service. If we create a mailing list and you sign up to that then we may use a third party like MailChimp to manage sending emails.
Your contact information
We keep this (your name and email) in order to contact you about the project. We try not to loose it. It also enables you to opt to get notification of replies to your comments. If you don’t want us to have your contact details then don’t give them to us. (If you comment with a false name and email it is helpful if you opt-out of notifications, or undeliverable messages will bounce around the electric interweb until they lodge in some dark corner gathering dust – keep the interweb free and tidy!)
How we protect your data
It is stored in a database which can probably be hacked by a moderately competent agency. Posts you make are available to the public anyway. If you have an account on the site then your password is encrypted by standard techniques – but you should always assume that anything online can be stolen, and decrypted. Some government agencies probably have a back-door to the data that we are not aware of. Some non-government agencies probably have tools to brute force decrypt anything they really want. Always assume your online data is no more secure than the post-it with your password in your desk drawer.
What data breach procedures we have in place
None. We will recover the site from a backup if it is damaged or lost. Since the only information we hold about individuals is a name (which may be false), an email address (which may not be valid), possibly an encrypted password, and an IP address then we won’t bother to inform you if someone steals our data.
What third parties we receive data from
We don’t know in advance.
What automated decision making and/or profiling we do with user data
We really can’t be bothered with this.
Industry regulatory disclosure requirements
We are a private non-commercial anti-capitalist collective. We do not belong to any “industry” apart from the industry of being human and caring for our culture, friends and family.