Перейти к содержимому

Privacy Policy

Last updated: April 8, 2026

1. Data Controller

This website is operated by:

Andrei Klemenchenok, operating as FolkUp Largo José Afonso 19-20 RC, 2900-429 Setúbal, Portugal NIF: 312596928 Email: privacy@folkup.app

2. Data We Collect

2.1 Analytics (Self-Hosted)

We use Umami, a privacy-focused, self-hosted analytics platform. Umami:

  • Does not use cookies
  • Does not collect personally identifiable information (PII)
  • Does not track users across websites
  • Collects only: page URL, referrer, browser type, operating system, device type, country (from IP, not stored)
  • All data is aggregated and anonymous

2.2 Server Logs

Our web server may temporarily log:

  • IP address (for security purposes)
  • Request URL, timestamp, HTTP status code
  • User agent string

Server logs are retained for a maximum of 30 days and are used exclusively for security monitoring and troubleshooting.

2.3 Data We Do NOT Collect

  • We do not require user accounts or registration
  • We do not use advertising or marketing cookies
  • We do not use third-party tracking scripts
  • We do not collect personal information through forms or subscriptions

3. Data Protection Officer

We have not appointed a Data Protection Officer (DPO) as we do not meet the threshold under Article 37 GDPR (we do not engage in large-scale processing of personal data or special categories of data).

For data protection inquiries, contact: privacy@folkup.app

4. Legal Basis for Processing

Under Article 6 of the GDPR, we process data based on:

  • Legitimate interest (Art. 6(1)(f)) — for anonymous analytics and security monitoring. We have conducted a balancing test and determined that our minimal, anonymous data collection does not override the rights and freedoms of data subjects, given that no PII is collected or stored.

5. Content Creation — Processing of Third-Party Information

As part of our encyclopedia content creation, we may process publicly available information about individuals, companies, and organizations. This section explains how we handle such data.

5.1 What Information We Process

In the course of creating encyclopedia articles about retro-tech culture, we may collect and analyze:

  • Publicly available historical information about tech companies, products, and personalities
  • Published articles, interviews, and public contributions from the retro-tech era
  • Professional activities and achievements visible in public sources
  • Historical events and developments in technology and culture

We do not access private systems, hack accounts, use social engineering, or obtain data through deceptive means.

5.2 Legal Basis

We process this data under:

  • Legitimate interest (Art. 6(1)(f) GDPR) — for historical research, documentation, and educational purposes
  • Public interest — preserving historical knowledge about technology and culture
  • Academic freedom — research and educational activities

5.3 Protection Measures

  • Historical figures are referenced by name only when they were public personalities or when their contributions were publicly documented
  • We focus on publicly available historical information
  • We never publish private communications or data obtained through unauthorized access
  • Living individuals are referenced only when their contributions were publicly documented

5.4 Rights of Data Subjects

If you believe you are referenced in one of our articles, you have the right to:

  • Access the information we have published about you (Art. 15 GDPR)
  • Object to processing (Art. 21 GDPR)
  • Request correction of inaccurate information (Art. 16 GDPR)
  • Right of reply — we will publish your unedited response alongside our content

To exercise these rights, contact: privacy@folkup.app

We will respond within 30 days.

6. Automated Decision-Making

We do not engage in automated decision-making or profiling as defined in Article 22 GDPR. No decisions affecting you are made solely by automated means.

7. Cookies

This website does not use cookies. Our analytics solution (Umami) is cookie-free.

8. Third-Party Services

8.1 Ko-fi (Donations)

If you choose to support us via Ko-fi, your data is processed by Ko-fi according to their Privacy Policy. We do not receive or store your payment information.

8.2 GitHub

Our source code is hosted on GitHub. If you interact with our repositories, GitHub’s Privacy Statement applies.

9. International Data Transfers

Our server is located in the European Union. We do not transfer personal data outside the EU/EEA, except:

  • When you voluntarily use third-party services (Ko-fi, GitHub) that may process data in other jurisdictions
  • These services operate under Standard Contractual Clauses (SCCs) or equivalent safeguards

10. Data Retention

Data TypeRetention Period
Analytics (Umami)Aggregated, no PII stored
Server logsMaximum 30 days
Email correspondenceUntil purpose fulfilled, then deleted

11. Your Rights

Under the GDPR (Articles 15–22), you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data (“right to be forgotten”)
  • Restrict processing
  • Object to processing based on legitimate interest
  • Data portability — receive your data in a structured format
  • Withdraw consent at any time (where consent is the legal basis)

To exercise these rights, contact us at: privacy@folkup.app

12. Right to Complaint

You have the right to lodge a complaint with a supervisory authority. For Portugal:

CNPD — Comissão Nacional de Proteção de Dados

13. Security

We implement appropriate technical and organizational measures to protect your data, including:

  • HTTPS/TLS encryption for all traffic
  • Security headers (CSP, HSTS, X-Frame-Options)
  • Regular software updates
  • Access controls and monitoring

14. Children’s Privacy

This website is not directed at children under 16. We do not knowingly collect data from children.

15. Editorial AI Transparency

In accordance with EU AI Act Article 50, we disclose that:

  • Content creation may involve automated tools for research assistance, grammar checking, and translation support
  • All content is subject to human editorial review and fact-checking
  • No automated decision-making affects user rights or freedoms
  • Human editors retain final editorial control and responsibility for all published content
  • Content creation methodology is documented in our editorial workflow

16. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated “Last updated” date. We encourage you to review this page periodically.