Being-as-Trust

Privacy Policy

Last updated: December 22, 2025

1. What We Collect

We collect only what's necessary to provide our services. No tracking pixels. No advertising networks. No data brokers.

1.1 Session Data

When you log in, we create a session to maintain your authenticated state:

  • Session identifier (random token)
  • Authentication timestamp
  • Last activity timestamp

1.2 Page Views

We collect minimal analytics to understand how our content serves you:

  • Page URL visited
  • Referrer (how you arrived)
  • Approximate location (country-level, derived from IP)
  • Device type (mobile/desktop)
  • Browser family (e.g., Chrome, Safari—not fingerprinting)

We do not use cookies for analytics. We do not track you across sites.

1.3 User Profile

If you create an account, we store:

  • Email address (for authentication)
  • Display name (optional)
  • Avatar URL (if you set one)
  • Account creation date
  • Consent preferences (analytics opt-out status)

2. Why We Collect It

2.1 Authentication

Session data allows you to stay logged in and access your account across our properties.

2.2 Personalization

Your profile data enables personalized experiences like progress tracking on createsomething.ltd (Philosophy).

2.3 Service Improvement

Aggregate page view data helps us understand which content resonates and where to focus our efforts. We never sell this data or use it for advertising.

3. How Long We Keep It

Session data 7 days Auto-expires, forces re-authentication
Page view analytics 90 days Then permanently deleted
User profile Until deletion You control when it's removed

After retention periods expire, data is permanently deleted—not archived, not anonymized for later use. Deleted means deleted.

4. Third Parties

We use one third-party provider:

Cloudflare

Infrastructure, security, and content delivery. Cloudflare processes requests to serve our websites but does not have access to your user data or analytics.

Cloudflare Privacy Policy →

We do not use:

  • Google Analytics or any Google services
  • Meta/Facebook Pixel or any Meta services
  • Third-party advertising networks
  • Data brokers or data enrichment services
  • Social login providers (we use our own identity system)

5. Your Rights

You have full control over your data. These rights apply to all users, regardless of location:

5.1 Access

Request a complete copy of all data we hold about you. We'll provide it in a machine-readable format (JSON) within 30 days.

5.2 Export

Download your data at any time from your account settings. No request needed—it's self-service.

5.3 Deletion

Request permanent deletion of your account and all associated data. We process deletion requests within 30 days. Once deleted, data cannot be recovered.

5.4 Correction

Update your profile information at any time through your account settings.

5.5 Opt-Out

Opt out of analytics collection from your account settings. Your choice is stored in your profile and respected across all CREATE SOMETHING properties.

6. Contact for Privacy Requests

For any privacy-related requests or questions:

Email: [email protected]

Response time: Within 5 business days

For automated requests (access, export, deletion), use the self-service options in your account settings—they're faster than email.

7. Legal Compliance

This policy is designed to comply with:

  • GDPR (European Union)
  • CCPA/CPRA (California, USA)
  • PIPEDA (Canada)

We apply these protections to all users, regardless of jurisdiction. Privacy shouldn't depend on where you live.

8. Changes to This Policy

We'll notify you of significant changes via email (if you have an account) and update the "Last updated" date. Minor clarifications don't require notification but are reflected in the date.

Last updated: December 22, 2025

By using createsomething.ltd, you acknowledge that you've read and understood this Privacy Policy.