Privacy Policy
Last updated: 12 June 2026. This Privacy Policy explains what personal data astrohusky.com (“this site”, “we”) processes, why, on what legal basis, and the rights you have under the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). It applies to visitors, registered members, commenters, and newsletter subscribers.
1. Controller
The controller responsible for processing your data is:
Nirmal Jangid
Plauer Straße 10
19395 Plau am See, Germany
Email: nirmaljangid@gmail.com
Full contact details are in the Legal Notice (Impressum).
2. Overview of what we collect
- Server logs — every visitor (IP, timestamp, page, referrer, user agent).
- Member accounts — if you register: email, chosen username/display name, and (for password accounts) a salted password hash.
- Social login — if you sign in with Google, GitHub, or Facebook: your name, email, profile picture, and the provider’s user ID.
- Comments — your name, email, optional website, the comment text, your IP address, and browser user agent.
- Newsletter — if you subscribe: your email address (processed by Mailchimp).
- Avatars — Gravatar may be queried using a hash of your email to display your avatar next to comments.
3. Hosting & server logs
This site is hosted by Hostinger International Ltd. (Lithuania/EU). When you load a page, the host automatically records standard access-log data: your IP address, the date and time, the requested page, the referring page, and your browser/operating-system identifier. This is used solely to deliver the site and to detect and defend against technical attacks. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a secure, functioning website). Logs are retained only as long as necessary for security and are then deleted.
4. Member accounts & registration
You may create an account to comment and participate. We store your email, display name, and (for email/password accounts) a one-way salted hash of your password — never the password itself. New accounts are manually reviewed and approved before they can post, to prevent spam and abuse. Legal basis: Art. 6(1)(b) GDPR (performance of the user agreement you accept on sign-up) and Art. 6(1)(a) (your consent). You can delete your account at any time by emailing us; see Section 11.
5. Social login (Google, GitHub, Facebook)
If you choose “Sign in with Google / GitHub / Facebook”, you are redirected to that provider, authenticate there, and the provider returns a limited profile to us — typically your name, email address, profile picture URL, and a unique provider user ID. We use this only to create or match your account. We do not post anything to your social accounts and request only the minimum scope (email + basic profile).
These providers are independent controllers for the data you hold with them, and processing happens partly in the United States:
- Google — Google Ireland Ltd. / Google LLC. Privacy policy.
- GitHub — GitHub B.V. / GitHub Inc. (Microsoft). Privacy statement.
- Facebook — Meta Platforms Ireland Ltd. Privacy policy.
Legal basis: Art. 6(1)(a) GDPR (your explicit consent, given when you click the social-login button and accept this policy). See Section 9 on international transfers.
6. Comments
When you leave a comment we store the name and email you provide (or, if logged in, your account details), the comment content, your IP address, and your browser user agent. The IP and user agent are used for spam detection and abuse prevention. Comments are moderated and only published after approval. An anti-spam check is performed by Akismet (Automattic Inc., USA), which receives the comment metadata for classification. Legal basis: Art. 6(1)(a) GDPR (consent, via the checkbox on the comment form) and Art. 6(1)(f) (legitimate interest in spam prevention).
7. Avatars (Gravatar)
When comments are displayed, a hashed (pseudonymised) version of your email address may be sent to the Gravatar service (Automattic Inc., USA) to show your avatar. The Gravatar privacy policy applies. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a consistent comment presentation). You can avoid this by using an email not registered with Gravatar.
8. Newsletter (Mailchimp)
If you subscribe to the newsletter, your email address is stored and processed by Intuit Mailchimp (The Rocket Science Group LLC, USA) on our behalf to send occasional updates. Subscription uses double opt-in: you must confirm via a link before any newsletter is sent. You can unsubscribe at any time via the link in every email. Mailchimp’s privacy statement applies. Legal basis: Art. 6(1)(a) GDPR (your consent).
9. International data transfers
Some processors above (Google, GitHub/Microsoft, Meta, Automattic/Akismet/Gravatar, Mailchimp/Intuit) are based in the United States. Transfers rely on the EU–US Data Privacy Framework and/or the European Commission’s Standard Contractual Clauses. Despite these safeguards, US authorities may in principle access data, and the level of protection may not equal the EU’s. By using social login or the newsletter you consent to this transfer (Art. 49(1)(a) GDPR).
10. Fonts
This site loads web fonts from Google Fonts (fonts.googleapis.com) and rsms.me (the Inter typeface). When a font loads, your IP address is transmitted to the provider. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in legible, consistent presentation).
11. Cookies
This site sets no advertising or analytics cookies and runs no tracking pixels. Cookies are used only for: (a) keeping you logged in (strictly necessary — no consent required), (b) remembering your name/email on the comment form if you opt in, and (c) the social-login handshake. Third-party providers you actively use (social login, Gravatar) may set their own cookies under their policies.
12. Retention
- Server logs: short-term, deleted by the host on a rolling basis.
- Account data: until you delete your account or request erasure.
- Comments: until you or we delete them; approved comments remain visible while published.
- Newsletter: until you unsubscribe.
13. Your rights
Under the GDPR you have the right to: access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), data portability (Art. 20), and objection (Art. 21). Where processing is based on consent, you may withdraw it at any time with future effect (Art. 7(3)). To exercise any of these, email nirmaljangid@gmail.com. You also have the right to lodge a complaint with a supervisory authority (Art. 77); in Germany this is the data-protection authority of your federal state.
14. Changes
This policy may be updated as the site evolves. The “last updated” date above always reflects the current version. Material changes affecting registered members will be communicated by email or an on-site notice.