How long do you keep my data?

ViewTracker page views are kept indefinitely (no IP stored). Sentry error data: 90 days. Server logs: 90 days. If you consent to Google Analytics: 14 months. If you consent to AdSense: up to 30 months.

What third parties have access to my data?

Always active: Vercel (Hosting), Sentry (Error Monitoring), GitHub (Giscus Comments). Consent-gated: Google (Analytics & AdSense, only if you opt in). Each has their own privacy policies.

How do I download my data?

Visit our Data Requests page at /legal/data-requests to submit a data portability request. We will provide your data in a machine-readable format within 30 days.

Can I delete my data?

Yes, you have the right to erasure under GDPR. Submit a deletion request via our Data Requests page, and we will delete your personal data within 30 days.

Where is my data processed?

Your data may be transferred to and processed in the United States by our service providers. We use Standard Contractual Clauses to ensure adequate protection.

How do I contact you about privacy?

Email us at privacy@gladlabs.ai with any privacy questions. We aim to respond within 30 days per GDPR requirements.

Privacy Policy

Last Updated: March 31, 2026

1. Introduction

Glad Labs ("we," "us," "our") respects your privacy. This policy explains what data we collect when you visit gladlabs.io, how we use it, and your rights regarding that data. We keep it straightforward because privacy policies shouldn't require a law degree to understand.

2. Legal Basis for Processing (GDPR)

Under the GDPR, we process your personal data based on the following legal bases:

Consent (Article 6(1)(a)): Google Analytics and AdSense are only loaded after you explicitly opt in via our cookie banner
Contract Performance (Article 6(1)(b)): Essential cookies and website functionality necessary to serve content
Legal Obligation (Article 6(1)(c)): Security logs, fraud prevention, and legal compliance
Legitimate Interest (Article 6(1)(f)): First-party analytics (ViewTracker), error monitoring (Sentry), and site optimization

3. Information We Collect

We collect minimal data. Here's exactly what and why:

3.1 Always-Active Data Collection

ViewTracker (First-Party Analytics): Our own lightweight analytics system records page path, post slug, referrer URL, and user-agent string for each page view. No IP addresses are stored. This data stays in our database and is never shared with third parties. Legal basis: Legitimate Interest (Article 6(1)(f)).
Sentry (Error Monitoring): Sentry captures error data including IP addresses, browser information, and stack traces when something breaks. This helps us fix bugs fast. Legal basis: Legitimate Interest (Article 6(1)(f)).
Server Logs: Our hosting provider (Vercel) automatically logs IP addresses, browser type, and pages visited for security and operational purposes.

3.2 Consent-Gated Data Collection

The following services are only activated if you explicitly consent via our cookie banner:

Google Analytics 4: If you consent to analytics cookies, GA4 collects usage data including pages visited, time spent, and interactions. If you reject analytics, the GA script is never loaded.
Google AdSense: If you consent to advertising cookies, AdSense may serve ads and set cookies for personalization. If you reject advertising, the AdSense script is never loaded.

3.3 Third-Party Services

Giscus (Comments): Our blog uses Giscus, a commenting system powered by GitHub Discussions. When you comment, you authenticate via GitHub. Your GitHub username, avatar, and comment content are stored on GitHub's servers. Giscus does not use cookies or track you beyond the comment interaction.

4. How We Use Your Information

We use collected data to:

Understand which content performs well (first-party analytics)
Fix errors and improve site reliability (Sentry)
Ensure security and prevent abuse (server logs)
Comply with legal obligations

Google Analytics and AdSense are only active if you consent. If you reject those categories, we collect zero third-party tracking data.

5. Information Sharing & Disclosure

We do NOT sell, trade, or rent your personal information. Period. We share data only with:

Service Providers: Vercel (hosting), Sentry (error monitoring), GitHub (comments) — only the data necessary for them to provide their services.
Google (consent-gated): If you opt in to analytics and/or advertising, Google receives interaction data per their privacy policy.
Legal Compliance: If required by law or to prevent fraud.

6. Cookies

We use minimal cookies. Essential cookies are required for the site to function. We do not use third-party advertising or tracking cookies. See our Cookie Policy for full details.

7. Your Privacy Rights

You have the right to:

Access: Request a copy of the data we hold about you
Deletion: Request that we delete your data
Portability: Receive your data in a portable, machine-readable format
Rectification: Correct inaccurate data
Restriction: Limit how we process your data
Objection: Object to processing based on legitimate interest
Withdraw Consent: Where consent is the legal basis, withdraw it at any time

Exercise these rights via our Data Request page or by emailing privacy@gladlabs.ai.

8. Data Security

We use appropriate technical and organizational measures to protect your data. Our infrastructure runs on Vercel and Railway with HTTPS everywhere. That said, no system is 100% secure — we're honest about that.

9. Data Retention

We keep data only as long as necessary:

ViewTracker Data: Page view analytics (path, slug, referrer, user-agent) are retained indefinitely in aggregated form. No IP addresses are stored.
Google Analytics Data: If consented, retained for up to 14 months by Google.
Google AdSense Data: If consented, advertising cookies retained for up to 30 months.
Sentry Error Data: Error reports are retained for 90 days.
Server Logs: IP addresses and access logs are retained for 90 days.
Cookie Preferences: Stored in your browser until you clear them.

10. Data Processors & Third Parties

The following third parties may process your data:

Company	Service	Data Processed	Privacy Policy
Google LLC	Analytics & AdSense (consent-gated)	Pages visited, interactions, ad personalization	View Policy
Vercel Inc	Hosting	Server logs, IP addresses	View Policy
Sentry (Functional Software Inc)	Error Monitoring	IP, browser info, error data	View Policy
GitHub Inc	Comments (Giscus)	GitHub username, avatar, comments	View Policy

11. International Data Transfers

Your data may be processed in the United States by our service providers (Vercel, Sentry, and Google if you consent). These transfers are protected by Standard Contractual Clauses (SCCs) where applicable.

12. Automated Decision Making

We do not use automated decision-making or profiling that produces legal or similarly significant effects about you.

13. Children's Privacy

We do not knowingly collect personal information from children under 13 (or 16 in the EU). If we learn we've collected data from a child under these ages, we'll delete it promptly. Parents: if you believe your child's information was collected, contact us at privacy@gladlabs.ai.

14. Third-Party Links

Our site links to external websites. We're not responsible for their privacy practices. Check their policies before sharing personal information.

15. Contact Us

Questions about privacy? Get in touch:

Glad Labs, LLC
Privacy Email: privacy@gladlabs.ai
General Email: hello@gladlabs.io
Data Requests: Submit a request

Response Time: We respond to all privacy inquiries within 30 days as required by GDPR. If you're not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.

16. Policy Updates

We may update this policy. Changes get posted here with an updated date. Continued use of the site means you accept the current version.