Your Privacy on HeavyDutyJournal.com

Cookie Details

What We Measure

We use analytics tools to understand:

• Most popular content and topics among heavy-duty professionals
• User journey patterns and content discovery methods
• Technical performance issues and optimization opportunities
• Geographic distribution of our audience (aggregated, non-personal)
• Newsletter engagement rates and content effectiveness

Analytics Tools We Use

• Google Analytics 4: Website traffic and user behavior analysis (with IP anonymization enabled)
• Server-Side Analytics: Performance monitoring and error tracking
• Email Analytics: Open rates and click tracking for newsletter optimization

Data is aggregated whenever possible to protect individual privacy while enabling service improvements.

Data We Collect for Contributors

• Account Information: Username, email, password (hashed), account creation date
• Profile Information: Display name, bio, photo, social links, areas of expertise
• Submission History: Articles submitted, publication status, editorial communications
• Activity Data: Login history, dashboard usage, content management actions
• Payment Information: For paid contributor arrangements (processed via Stripe)

Public Profile Visibility

When you create a contributor profile, the following may be publicly visible:

• Display name and author byline on published articles
• Professional biography and photo (if provided)
• Links to your website or professional profiles (if provided)
• List of your published articles on your author page

You can control profile visibility through your dashboard settings or by contacting support.

Comment Data

• Comment Content: The text of your comment and any links included
• Author Information: Name, email (not publicly displayed), website (optional)
• Metadata: IP address, browser user agent, timestamp
• Gravatar: If you use Gravatar, your profile image may be displayed

Comment Moderation

• Review Process: Comments may be held for moderation before publication
• Spam Detection: Automated systems help identify spam and inappropriate content
• Community Standards: Comments violating our guidelines may be edited or removed
• Human Review: Flagged comments are reviewed by human moderators

Our Advertising Approach

HeavyDutyJournal.com displays advertising to support our editorial operations. Here's how advertising affects your data:

Types of Advertising

• Direct-Sold Ads: Banner ads and sponsored content sold directly to industry advertisers
• Sponsored Articles: Clearly labeled paid content from industry partners
• Newsletter Sponsorships: Sponsored sections in our email newsletters

Data & Advertising

• No Personal Data Sale: We do not sell your personal information to advertisers
• Aggregated Reporting: Advertisers receive aggregated performance metrics only
• Contextual Targeting: Ads are primarily matched to content topics, not personal profiles
• Clear Labeling: All sponsored content is clearly disclosed per FTC guidelines

For detailed information about our advertising policies, see our Refund, Returns & Advertising Policy.

How We Use Automated Systems

• Content Moderation: Automated systems help identify spam, inappropriate content, or policy violations in comments and submissions
• Personalization: Algorithms suggest relevant articles based on your reading history and stated preferences
• Security: Automated monitoring for suspicious activity, fraud prevention, and threat detection
• Editorial Assistance: AI tools may assist with content formatting, SEO optimization, and basic editing
• Email Optimization: Send-time optimization and subject line testing

Your Rights Regarding Automated Decisions

• Human Review: Important decisions affecting your account or content are always reviewed by human moderators
• Right to Contest: You have the right to request human review of any automated decision that significantly affects you
• Transparency: We will explain the logic involved in automated decisions upon request

When We Share Your Information

We do not sell your personal information. We may share your data in these limited circumstances:

Service Providers

• Third-party vendors who help us operate our services (hosting, email, analytics, payments)
• These providers are contractually bound to protect your data and use it only for specified purposes

Legal Requirements

• When required by law, subpoena, court order, or government request
• To protect our rights, property, or safety, or that of our users or the public
• To investigate potential violations of our Terms of Use

Business Transfers

• In connection with a merger, acquisition, reorganization, or sale of assets
• You will be notified via email and/or prominent notice on our site of any change in ownership or uses of your personal information

With Your Consent

• When you explicitly authorize us to share specific information
• When you make information public through comments, articles, or profile settings

How Long We Keep Your Data

We retain your information only as long as necessary for the purposes described in this policy:

After retention periods expire, data is securely deleted or anonymized. You may request earlier deletion subject to legal and legitimate business requirements.

Our Response Process

• Detection & Assessment: Immediate investigation to determine scope, source, and impact of any breach
• Containment: Swift action to prevent further unauthorized access or data loss
• Regulatory Notification: Notification to relevant supervisory authorities within 72 hours where required by GDPR
• User Notification: Direct communication to affected users without undue delay when personal data is at high risk
• Documentation: Comprehensive recording of breach details, effects, and remedial actions
• Remediation: Implementation of additional security measures to prevent future incidents

What We'll Tell You

If your data is affected by a breach, our notification will include:

• Nature of the breach and types of data involved
• Likely consequences and risks
• Measures we've taken and are taking to address the breach
• Steps you can take to protect yourself
• Contact information for questions

Age Restrictions

HeavyDutyJournal.com is designed for industry professionals and is not directed at children.

• Minimum Age (US): You must be at least 13 years old to use our services (COPPA compliance)
• Minimum Age (EU/UK): You must be at least 16 years old, or the minimum age in your country if lower (GDPR compliance)
• Account Creation: You must be at least 18 years old to create a contributor account

If We Discover Child Data

• If we learn we've collected personal information from a child under the applicable minimum age without verified parental consent, we will delete that information promptly
• If you believe we have information from or about a child, please contact us immediately at [email protected]

Where Your Data May Be Processed

HeavyDutyJournal.com is based in the United States. If you access our services from outside the US, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate.

Transfer Safeguards

• Standard Contractual Clauses (SCCs): We use EU-approved SCCs for transfers from the EU/UK to the US
• Data Processing Agreements: All international service providers sign agreements ensuring adequate protection
• Privacy Shield Framework: Where applicable, we work with providers certified under relevant frameworks
• Adequacy Decisions: We rely on EU adequacy decisions where available for third-country transfers

Your Rights

If you're in the EU/UK, you have the right to:

• Request information about the safeguards we use for international transfers
• Obtain a copy of the Standard Contractual Clauses upon request
• Lodge a complaint with your local supervisory authority regarding international transfers

Do Not Sell/Share My Personal Information

Although we do not currently sell or share personal information for cross-context behavioral advertising, you may submit a "Do Not Sell or Share" request at any time:

• By Email: Send a request to [email protected] with "Do Not Sell" in the subject line
• By Contact Form: Submit via our contact page and select "Privacy Request"

How to Submit a Privacy Request

Request Methods

• Email: [email protected] with "Privacy Request" in the subject line
• Contact Form: Submit a request and select "Privacy Request" from the dropdown
• Account Settings: Some requests (data export, account deletion) can be initiated through your contributor dashboard

What to Include

• Your full name and email address associated with your account
• Specific description of your request (access, deletion, correction, etc.)
• Any additional information to help us locate your data

Verification Process

• We will verify your identity before processing requests to protect your privacy
• Verification may include confirming account ownership via email or providing additional information
• Authorized agents must provide written authorization from the data subject

Response Timeline

• Acknowledgment: Within 5 business days of receiving your request
• GDPR Requests: Completed within 30 days (extendable by 60 days for complex requests)
• CCPA/US State Requests: Completed within 45 days (extendable by 45 days if necessary)
• No Fee: We do not charge for reasonable privacy requests

Appeals Process

If we deny your request, you may appeal by:

• Responding to our denial with additional information or clarification
• Contacting us at [email protected] with "Privacy Appeal" in the subject
• Filing a complaint with your local data protection authority (EU/UK residents)

How We Update This Policy

• Regular Review: We review and update this policy periodically to reflect changes in our practices, technologies, or legal requirements
• Version Tracking: Each version is numbered and dated at the top of the policy
• Change Log: Material changes are summarized in update notices

How We Notify You

• Minor Changes: Updated "Last Updated" date and version number
• Material Changes: Email notification to registered users and/or prominent website notice
• Significant Changes: 30 days advance notice before changes affecting your rights take effect

Your Choices

• Continued use of our services after changes constitutes acceptance of the updated policy
• If you disagree with changes, you may close your account and request data deletion
• Previous versions of this policy are available upon request