GDPR

GDPR Statement — Mindless Chaos Chronicles (mindlesschaos.com)

Plain-English summary

• Mindless Chaos Chronicles collects the personal information needed to run the site (newsletter signup, comments, contact messages, optional donations, and usage data via analytics).
• We use that data to operate the site, send newsletters if you consent, respond to messages, process donations, and improve the site.
• You have rights under the EU General Data Protection Regulation (GDPR): access, correction, deletion, restriction, portability, object, and to withdraw consent.
• For our full Privacy Policy see: https://mindlesschaos.com/privacy/

If you want to make a GDPR request, please contact us via the contact page: https://mindlesschaos.com/contact-us/

1. Who is the data controller?

Controller: Mindless Chaos Chronicles
Website: https://mindlesschaos.com/
Contact for data protection/GDPR requests: https://mindlesschaos.com/contact-us/
Postal address: (provide a postal address here if you want it published)

2. Types of personal data we collect

• Identity and contact data: name and email address (from newsletter signups, comments, contact forms).
• Content you post: comments or other user‑generated content you submit.
• Technical and usage data: cookies and similar technologies, IP address, browser/device information, pages visited, referrers, and analytics data collected via Google services.
• Donation/transaction data: if you donate, we collect the information required to process that donation (see below for processors).

3. How we collect the data

• Directly from you when you subscribe, comment, use the contact form, or donate.
• Automatically via cookies and analytics (Google Site Kit).
• From third‑party processors we use (listed below).

4. Third‑party processors we use (as supplied by you)

• FluentCRM — newsletter and subscriber management (self‑hosted WordPress CRM storing subscriber data on the website and any integrated mail delivery services).
• Google Site Kit — provides site statistics and connects to Google services (e.g., Google Analytics, Search Console) for usage and performance data.

If you make donations or use other features that require payment, additional payment processors may be used; contact us for the exact provider(s).

5. Purposes and lawful bases for processing

• Newsletter: consent (you may withdraw consent by unsubscribing).
• Contact messages and comments: legitimate interest and/or performance of a service you requested (to respond/publish).
• Site analytics and performance: legitimate interest (to maintain, secure, and improve the site).
• Donations/payments: performance of a contract and compliance with legal obligations.

6. International transfers

Google services and other providers may process data outside the EEA (for example, in the United States). Where transfers occur, we rely on appropriate safeguards (e.g., provider contractual safeguards, Standard Contractual Clauses) or adequacy decisions where applicable.

7. Data retention

• Newsletter lists: retained until you unsubscribe or request deletion.
• Contact form messages: retained as needed to respond and for record‑keeping (typically up to 3 years unless you request deletion).
• Comments: retained until you request removal or the comment is deleted.
• Analytics: aggregated data kept to improve the site; individual-level data retained only as required by the analytics provider’s settings.
  We will delete or anonymize personal data once it is no longer necessary for the purpose collected, unless retention is required by law.

8. Your GDPR rights

You can:

• Request access to the personal data we hold about you.
• Request rectification of inaccurate or incomplete data.
• Request erasure (delete your data) where we have no lawful reason to retain it.
• Request restriction of processing.
• Request portability of your data in a machine‑readable format.
• Object to processing based on legitimate interests or to direct marketing.
• Withdraw consent at any time (for processing based on consent).
• Lodge a complaint with a supervisory authority.

To exercise any right, use the contact page: https://mindlesschaos.com/contact-us/ — include “GDPR request” and the action you want. We will respond within one month; if the request is complex we may extend by up to two further months and will inform you.

9. Cookies and tracking

We use cookies and tracking technologies. Google Site Kit integrates Google Analytics / Google services which may set cookies and process usage data. You can manage cookies via your browser settings and any cookie preference tools provided on the site. See our Privacy Policy for more detail: https://mindlesschaos.com/privacy/

10. Security

We implement reasonable technical and organizational measures to protect personal data from unauthorized access, alteration, disclosure, or destruction. No system is completely secure; in the unlikely event of a personal data breach affecting your rights, we will notify you and the relevant supervisory authority where required by law.

11. Children

This site is not for children under 16. We do not knowingly collect personal data from children under 16. If you believe we have data for a child under 16, contact us and we will promptly delete it.

12. Automated decision‑making

We do not carry out profiling or automated decision‑making that produces legal effects concerning you. If we ever implement such processing, we will provide the legally required information and safeguards.

13. Changes to this GDPR statement

We may update this statement. Material changes will be posted on the site and the “Updated” date will be changed.

Disclaimer: this is a GDPR statement tailored with the processors you provided (FluentCRM and Google Site Kit). It is not legal advice. If you require a legally reviewed policy, consult a qualified data protection lawyer.

👁 Views: 55