Privacy Policy

This website is operated by JamesRBRTS, LLC ("the Company," "we," "us," or "our"). This Privacy Policy ("Policy") applies solely to jamesrbrts.com and its subdomains (the "Site"). We are committed to protecting your privacy. This Policy explains what information we collect, how we use it, and the choices available to you. By using this Site, you agree to the terms of this Policy.

1. Information We Collect

A. Information You Provide

• If you contact us by email or through other channels, we will receive the information you choose to share (e.g., your name, email address, and the content of your message).
• The Site also displays a WeChat QR code. Scanning this code is a user-initiated action. Any information you share via WeChat is governed by your WeChat privacy settings; we only receive information if you initiate contact.

B. Information Collected Automatically

a. We collect limited information about how the Site is used. This includes:

• Basic technical data such as device type, referrer category (e.g., search/direct/social/other), and performance metrics.
• Page or content identifiers (e.g., /experience or outbound link categories).
• General device platform type (e.g., web, desktop, mobile, tablet).
• Coarse country-level location signals, which may be derived from headers (where available), browser language, or IP-based geolocation (see Section 3 and Section 5). Unknowns may be recorded as ZZ.
• Privacy-preserving engagement metrics, such as time on page, scroll depth, theme mode (light, dark, system), viewport size ranges, feature usage, and error types.

b. Important Notes about IP Addresses and Identifiers

• The Site does not use advertising cookies or third-party marketing trackers.
• We do not use cookies for analytics, and we do not attempt to build cross-site profiles.
• By default, we do not store your full IP address in our analytics event properties.
• However, our hosting and observability providers may receive and process IP addresses as part of standard web requests and security telemetry. In limited circumstances, we may enable IP-based geolocation enrichment for analytics events to improve reliability and protect the Site from abuse (e.g., rate-limiting). When enabled, we aim to minimize retention and access, and we do not use IP addresses for advertising or cross-site tracking.
• We respect Do Not Track / Global Privacy Control signals (see Section 1.B.c).

c. Do Not Track / Global Privacy Control

• Our Site honors browser-based privacy signals where supported, including Do Not Track ("DNT") and Global Privacy Control ("GPC").
• If your browser sends a DNT or GPC signal, we do not send analytics events from your device. This does not prevent standard server logs and security telemetry from being processed by our hosting and infrastructure providers.
• Note: Not all browsers implement these signals consistently, and some signals may be unavailable depending on your browser settings and device.

2. Cookies and Local Storage

The Site uses client-side storage in a limited and transparent manner:

A. Functional Cookie

Name: theme

• Purpose: Preserves your chosen display preference (light, dark, or system) across visits.
• Values: light, dark, system
• Retention: Up to 12 months
• Notes: Marked Secure (when served over HTTPS) and SameSite=Lax. Considered strictly necessary for user experience.

B. Local Storage

• The Site may mirror your theme preference in localStorage to prevent visual inconsistencies during load.
• No identifiers or behavioral data are stored.

C. Authentication & Security Cookies

• If you access a restricted/admin environment, we may set strictly necessary authentication and security cookies to manage sign-in and protect the site.

D. No Advertising or Tracking Cookies

• We do not use marketing, retargeting, or cross-site tracking mechanisms.
• No third-party widgets (e.g., “like” or “share” buttons) are used that set external cookies.

3. How We Use Information

We process collected information to:

• Operate, secure, and improve the Site’s performance and reliability.
• Respond to inquiries you send us.
• Measure aggregated usage trends and feature adoption across devices and regions.
• Facilitate optional connections through external platforms you choose to use (e.g., WeChat, LinkedIn, GitHub).

We do not sell, rent, or trade personal information.

4. Legal Bases for Processing

For individuals in the European Economic Area (EEA) or the United Kingdom:

• Site operations and security: Legitimate interests (maintaining a functional and secure website).
• Direct communications: Consent (you choose to initiate contact).
• Compliance with law: Legal obligation (responding to lawful requests).

5. Sharing and Transfers

We share limited data with service providers that support Site operations, including Microsoft Azure (hosting and infrastructure) and related monitoring/telemetry services used for performance, security, and reliability. These providers may process data in the United States or other jurisdictions. Where applicable, we rely on appropriate safeguards, such as Standard Contractual Clauses. We may also disclose information to comply with legal obligations, respond to lawful requests, protect rights and safety, prevent fraud or abuse, or enforce our Terms of Use.

6. Data Retention

• Messages and correspondence: Retained as long as reasonably necessary to respond and for limited recordkeeping, then securely deleted or archived.
• Analytics data: Retained for operational purposes, generally no longer than 24 months. Non-identifiable summaries may be retained thereafter.
• Operational logs and security telemetry: retained only as long as necessary for security, reliability, and abuse prevention, subject to provider defaults and our configuration.

7. Security

We employ appropriate technical and organizational safeguards (including HTTPS and access controls) to protect collected information. However, no method of transmission or storage is fully secure. Use of the Site is at your own risk.

8. Third-Party Links and Logos

This Site contains links to external platforms (e.g., LinkedIn, X, Instagram, GitHub, Hugging Face, Substack). Your use of these platforms is governed by their respective terms and privacy policies. We are not responsible for their practices.

9. Your Rights

Depending on your jurisdiction, you may have rights under applicable data-protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA/CPRA). These may include rights to:

• Access the personal information we hold about you.
• Request correction or deletion of your data.
• Withdraw consent to communications you previously requested.
• Object to or restrict certain processing activities.
• Lodge a complaint with your supervisory authority.

California residents: We do not “sell” or “share” personal information as defined by the CCPA/CPRA, nor do we use sensitive personal information for the purpose of inferring characteristics.

10. Children’s Privacy

The Site is not directed to children under 13 years of age (or the minimum age of consent in your jurisdiction). We do not knowingly collect personal information from children.

11. Relationship to Terms of Use

This Privacy Policy is incorporated into and forms part of our Terms of Use. By using our Site, you agree not only to this Privacy Policy but also to our Terms of Use, which govern your overall use of the Site, including intellectual property, limitations of liability, and other important provisions.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised effective date.

13. Contact Us

JamesRBRTS, LLC

• For privacy inquiries: privacy@jamesrbrts.com
• For general compliance inquiries: corporate@jamesrbrts.com

If required by applicable law, additional contact details (such as a mailing address or designated representative) will be provided upon request.