Who we are
This site (toomanyopinions.com) is operated by Sabin L., an independent founder ("we", "us"). Contact: hello@toomanyopinions.com.
What we collect
- Newsletter email — when you subscribe, stored to send you the weekly letter.
- Cookie consent record — your choice, an anonymous browser ID, a hashed IP, and user-agent string, kept as proof of consent.
- Account data — only for admin users (email + password hash, managed by our backend provider).
- Server logs — standard request logs (IP, path, timestamp) retained for security and debugging.
Why we process it (legal basis under GDPR)
- Consent (Art. 6(1)(a)) — non-essential cookies and the newsletter.
- Legitimate interest (Art. 6(1)(f)) — site security, fraud prevention, and basic operations.
- Legal obligation (Art. 6(1)(c)) — keeping a consent log to demonstrate compliance.
How long we keep it
- Newsletter email: until you unsubscribe.
- Consent records: 24 months from collection.
- Server logs: 30 days.
Who we share it with
We share data only with processors that help us run the site: our backend host (Supabase / Lovable Cloud) and email delivery provider. We do not sell personal data.
Your rights
Under GDPR you have the right to access, rectify, erase, restrict, port, or object to processing of your data, and to withdraw consent at any time. To exercise these rights, email hello@toomanyopinions.com. You also have the right to lodge a complaint with your national data protection authority.
International transfers
Some processors are based outside the EEA. Where this is the case, we rely on Standard Contractual Clauses or equivalent safeguards.
Changes
We'll update the "last updated" date above when this policy changes materially.