Home About Portfolio Blog Contact Login

< Privacy Policy />

Last Updated: 6th May, 2026  ·  patrickmeki.com

Back to Home

1. Introduction

This Privacy Policy explains how Patrick Meki ("I", "me", "my") collects, uses, and protects information when you visit patrickmeki.com (the "Website"). By using this Website, you agree to the collection and use of information as described in this policy.

2. Information I Collect

a) Newsletter Subscriptions
When you subscribe to the Let's Defend newsletter, I collect your email address and, optionally, your name. This information is used solely to send you cybersecurity insights, blog updates, and research content.

b) Blog Comments
When you leave a comment on a blog post, I collect your name and the content of your comment. Comments are publicly visible on the Website.

c) Contact Form
When you submit the contact form, I collect your name, email address, and message. This information is used only to respond to your enquiry and is not stored in a database.

d) Page Analytics
I collect anonymised page visit data including the page path, page title, approximate time spent on page, referrer URL, and browser user agent. This data is used to understand how visitors use the Website and to improve content. No personally identifiable information is required to record a page view.

e) Like and Share Interactions
When you like a blog post or portfolio project, I record the interaction. For authenticated users, this is linked to your account. For anonymous visitors, it is tracked via a session identifier stored in a cookie.

f) Cookies and Session Data
The Website uses the following cookies:

Cookie Purpose Duration
sessionid Tracks your session for likes, rate limiting, and login state Browser session or 14 days (if "Remember Me" selected)
csrftoken Protects forms against cross-site request forgery attacks 1 year

The Website also uses localStorage to remember your dark/light theme preference. This data never leaves your device and is not transmitted to any server.

g) User Accounts
If you have a registered account, I store your username, email address, profile information (bio, avatar, social links, role), and certifications you add to your profile.

3. How I Use Your Information

  • To deliver the Let's Defend newsletter to subscribers
  • To display comments publicly on blog posts
  • To respond to contact form enquiries
  • To track anonymous engagement (likes, shares, page views) for content improvement
  • To maintain your login session and account preferences
  • To protect the Website from spam and abuse through rate limiting

4. Data Retention

  • Newsletter subscriptions: Your email address is retained until you unsubscribe. You can unsubscribe at any time via the link in any newsletter email.
  • Blog comments: Comments and their metadata are retained indefinitely to maintain the integrity of discussions.
  • Page analytics: Analytics data is retained indefinitely in aggregated form for trend analysis.
  • Contact form messages: Messages are delivered to my email inbox and are not stored in the Website's database.
  • User accounts: Account data is retained for as long as the account is active. You may request deletion at any time.

5. Your Rights

You have the right to:

  • Request a copy of the personal data I hold about you
  • Request correction of inaccurate data
  • Request deletion of your personal data (subject to legal or security obligations)
  • Unsubscribe from the newsletter at any time via the unsubscribe link in any email

To exercise any of these rights, contact me at partymeki@gmail.com.

6. Third-Party Services

The Website uses the following third-party services:

  • Gmail (Google SMTP): Used to send newsletter emails and contact form notifications. Google's privacy policy applies to email transmission.
  • Google Fonts & Font Awesome (CDN): Used to load fonts and icons. These services may log your IP address when loading assets.
  • Bootstrap JS (jsDelivr CDN): Used for UI components. jsDelivr may log request metadata.
  • Chart.js (jsDelivr CDN): Used on the analytics dashboard.
  • Quill.js (CDN): Used for the comment editor on blog posts.

None of these third parties receive your personal data beyond what is technically necessary for asset delivery.

7. Security

I implement reasonable technical measures to protect your personal data, including CSRF protection on all forms, rate limiting on interactive endpoints, and session-based authentication. However, no method of transmission over the internet is 100% secure.

8. Children's Privacy

This Website is not directed at children under the age of 13. I do not knowingly collect personal data from children.

9. Changes to This Policy

I may update this Privacy Policy from time to time. The "Last Updated" date at the top of this page will reflect any changes. Continued use of the Website after changes constitutes acceptance of the updated policy.

10. Contact

For any questions regarding this Privacy Policy:

Terms & Conditions Home