Privacy & Confidentiality
Most privacy policies are written for regulators. This one is written for our actual visitors — people who may be targeted by hostile states, whose browsing and messages could carry real-world consequences. The policy is therefore simple to state: we collect as little as possible, track as little as possible, share nothing for profit, and handle what you send us as if someone dangerous wanted to read it.
Last reviewed: 5 July 2026 · Educational information — not legal advice.
What we collect — and what we deliberately do not
Reading this site requires no account, no registration, and no cookie consent theatre, because there is nothing to consent to: we run no advertising trackers, no social-media pixels, no fingerprinting, and no third-party marketing scripts. Our hosting provider generates standard, short-lived technical logs (such as IP addresses) to run and secure the service, and we may use privacy-respecting, aggregate analytics that count page visits without building profiles of individuals. We do not buy data about you, enrich what we have, or combine it with outside sources. The only meaningful personal information we ever hold is what you choose to send us.
What happens when you contact us
Messages sent by email, WhatsApp, or the confidential assessment come directly to us and are used for exactly one purpose: responding to you and, where you ask, pointing you to the right path — DIY, toolkit, consulting, or an attorney referral. They are not added to marketing lists (we run none), not shared with advertisers (we have none), and not disclosed to third parties except as described below. Send only what is needed: we do not require your full case file to give directions, and we will ask before you send sensitive documents.
When we would share information
Three narrow cases. If you ask for a Tier 3 attorney referral, we share what you approve with the specific attorney, and nothing before your go-ahead. We use ordinary service providers — hosting, email — that process data technically on our behalf under their own security obligations. And like anyone, we could be subject to valid legal compulsion; we would resist overbroad demands and, unless legally barred, tell you. We never sell, rent, or trade personal information, and “never” is not marketing language here — it is the entire point of the site’s independence.
Retention and deletion
Correspondence is kept only as long as it is useful for helping you or required for ordinary business records, then deleted. You may at any time ask us to delete your messages and assessment details, and we will do so and confirm, subject only to records we are legally required to keep. If you want a conversation to be transient from the start, say so — we can work that way.
Practical guidance for at-risk visitors
Your own operational security matters more than any policy of ours. If your risk is serious: use a personal device the adversary state has never had access to; prefer an email account created outside that state’s providers; be aware that WhatsApp exposes a phone number, so use a number you control and are content to reveal; and remember that your network operator or a shared computer can observe that you visited this site even though the connection is encrypted. If someone else — a family member, an assistant — contacts us for you, we will take care, but we will also never confirm to an unverified third party that you have been in touch.
Your rights and how to exercise them
Wherever you are, we honour the substance of modern data-protection rights: ask us what we hold about you, ask for a copy, ask for correction, or ask for deletion, via the contact page. There is no bureaucracy to it — an email suffices — and we respond promptly. If this policy changes materially, the change will be visible here with an updated review date, not slipped in silently.
Frequently asked questions
Do you use advertising or tracking cookies?
No. No ad networks, no social pixels, no fingerprinting, no marketing scripts. At most, standard technical hosting logs and privacy-respecting aggregate analytics that count visits without profiling individuals.
Is the confidential assessment actually confidential?
It comes directly to us, is used only to respond and route you, is shared with no one without your approval (an attorney referral happens only when you ask), and is deleted on request. “Confidential” here means our handling — it is not a legal privilege, since we are not a law firm.
Can you guarantee a hostile state cannot see that I visited?
No website can. The connection is encrypted, but your network operator, device, or a shared computer can reveal that you visited. If your risk is serious, use a clean device and connection you control — the guidance above is written for exactly this.
How do I get my data deleted?
Email or message us via the contact page and ask. We delete your correspondence and assessment details, confirm it to you, and retain only what law requires — which for most visitors is nothing.