This Privacy Policy explains how Global Vantage AB ("we", "us", "our") collects, uses, and protects your personal data when you use nere.nu (the "Service"). We comply with the EU General Data Protection Regulation (GDPR).

1. Data Controller

Global Vantage AB
Contact: [email protected]

2. What Data We Collect

2.1 Automatically Collected

• Anonymized IP address (SHA-256 hashed, not stored in plain text) — used only for rate limiting and abuse prevention
• Technical data: browser user-agent, referring page, approximate page load time
• Status check data: which domains you check (aggregated, not linked to you personally)

2.2 Data You Provide

• Email address — if you create an account or subscribe to "notify when back up" alerts
• Display name — if you create an account or post comments
• Comments — text you post on status pages
• Watchlist sites — domains you add to your personal monitoring list

2.3 What We Do NOT Collect

• We do NOT use tracking cookies
• We do NOT share your data with advertising networks
• We do NOT sell your data to third parties
• We do NOT build profiles for targeted advertising

3. Analytics (Matomo)

We use Matomo Analytics in cookie-less mode (no cookies, no cross-site tracking). Matomo runs on our own servers — data is NOT shared with Google or other third parties.

Collected analytics data: page views, referrers, browser type, approximate location (country-level only). This data is aggregated and anonymized.

You can opt out entirely by enabling Do Not Track in your browser — we respect DNT signals.

4. Legal Basis for Processing (GDPR Art. 6)

• Legitimate interest — for rate limiting, abuse prevention, and analytics in aggregated form
• Contract performance — when you register an account or subscribe to alerts
• Consent — explicit opt-in for email/push notifications

5. Data Retention

• Status check records: 30 days, then automatically deleted
• IP hashes: retained for as long as associated check data
• Accounts: until you delete your account
• Alert subscriptions: deleted immediately after the alert is sent (one-shot)
• Analytics data: 13 months maximum

6. Your GDPR Rights

Under GDPR, you have the right to:

• Access — request a copy of your personal data
• Rectification — correct inaccurate data
• Erasure ("right to be forgotten") — request deletion of your data
• Restriction — limit how we process your data
• Portability — receive your data in a structured, machine-readable format
• Object — object to processing based on legitimate interest
• Withdraw consent — at any time, without affecting prior lawful processing

To exercise these rights, email us at [email protected]. We respond within 30 days.

7. Third-Party Services

We use the following third parties to operate the Service:

• Cloudflare — CDN and DDoS protection. Cloudflare may process your IP address as part of routing. Cloudflare Privacy Policy
• Anthropic — we use the Claude API to generate blog content and site descriptions. No user data is sent — only aggregated site data.
• Fastmail — email delivery for account verification and alerts.
• Google AdSense (if/when enabled) — for displaying ads. AdSense may use cookies. See Google's Privacy Policy. You can opt out at Ad Settings.

8. Data Security

We implement appropriate technical and organizational measures: TLS encryption for all traffic, password hashing with bcrypt, SHA-256 IP hashing, secure session tokens, and regular security updates.

9. Data Transfers Outside EU/EEA

Some of our third-party providers (Cloudflare, Anthropic, Google) may process data outside the EU. These transfers are protected by EU Standard Contractual Clauses and/or adequacy decisions.

10. Children's Privacy

Our service is not directed at children under 13. We do not knowingly collect data from children.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be noted at the top of this page. Continued use of the Service after changes constitutes acceptance.

12. Complaints

If you have concerns about our data practices, please contact us first at [email protected]. You also have the right to lodge a complaint with your national data protection authority (in Sweden: Integritetsskyddsmyndigheten, IMY).

13. Contact

Global Vantage AB
Email: [email protected]