This website is operated by Mayank Jain (mayankjain.io). I take your privacy seriously — especially because this site is about cybersecurity. I only collect what I need, I don't sell your data, and I explain everything clearly below.
1. Who This Policy Applies To
This Privacy Policy applies to all visitors of mayankjain.io — whether you are browsing content, downloading a free resource, or signing up to receive cybersecurity tips by email.
2. What Information I Collect
Information you give me directly
- Your name and email address when you sign up for cybersecurity tips or download a free resource
- Your phone number, if you choose to provide it (this is always optional)
Information collected automatically
- Analytics data — pages visited, time on site, device type, and approximate country/region (via Google Analytics). No personally identifiable information is collected here.
- Technical data — browser type, operating system, and IP address (processed by Netlify, the hosting provider). This is used for security and performance only.
- Cookies — small files placed on your device. See Section 5 for details.
3. Why I Collect This Information
I use the information I collect for the following purposes:
- To send you cybersecurity tips, guides, and educational content you signed up for
- To deliver free PDF resources you requested
- To understand what content is most useful (analytics)
- To maintain the security and performance of this website
- To comply with legal obligations
I do not use your information for advertising, profiling, or automated decision-making.
4. Legal Basis for Processing (GDPR)
If you are in the European Union or European Economic Area, the legal basis for processing your data is:
- Consent — when you sign up for email updates or download a resource, you explicitly agree to receive communications. You can withdraw consent at any time by clicking "Unsubscribe" in any email.
- Legitimate interests — for website security, analytics, and fraud prevention.
If you are in India, this policy is also designed to comply with the Digital Personal Data Protection (DPDP) Act, 2023.
5. Cookies
This website uses the following types of cookies:
- Strictly necessary cookies — required for the site to function. These cannot be disabled.
- Analytics cookies (Google Analytics) — help me understand how visitors use the site. These are only set with your consent.
- Preference cookies — remember your cookie choices.
You can manage or withdraw your cookie consent at any time using the cookie settings panel at the bottom of the page.
6. Email Marketing
Email communications are managed through Brevo (formerly Sendinblue). When you sign up:
- Your name and email are stored on Brevo's servers (located in the EU)
- Every email I send includes an unsubscribe link — you can opt out at any time
- I do not share your email address with any third parties for marketing purposes
7. Third-Party Services
This website uses the following third-party services, each with their own privacy policies:
8. Data Sharing and Selling
I do not sell, rent, or trade your personal data. I only share data with the third-party services listed above, to the minimum extent necessary to operate this website.
9. Data Retention
- Email subscriber data is retained as long as you remain subscribed. When you unsubscribe, your data is deleted within 30 days.
- Analytics data is retained for 26 months (Google Analytics default).
- Server logs are retained for up to 30 days for security purposes.
10. Your Rights
Depending on where you live, you may have the right to:
- Access the personal data I hold about you
- Correct inaccurate data
- Delete your data ("right to be forgotten")
- Object to or restrict processing
- Data portability — receive your data in a machine-readable format
- Withdraw consent at any time, without affecting prior processing
To exercise any of these rights, email me at mj@mayankjain.io. I will respond within 30 days.
11. Children's Privacy
This website is not directed at children under the age of 13. I do not knowingly collect personal data from children. If you believe a child has submitted data to this site, please contact me and I will delete it promptly.
12. Security
As a cybersecurity professional, I take data security seriously. This website uses HTTPS encryption (TLS), security headers (HSTS, CSP, X-Frame-Options), and follows security best practices. However, no transmission over the internet is 100% secure.
If you discover a security issue on this website, please report it responsibly at /.well-known/security.txt or email mj@mayankjain.io.
13. Changes to This Policy
I may update this Privacy Policy from time to time. When I do, I will update the "Last updated" date at the top of this page. Significant changes will be communicated by email to subscribers.