Privacy Policy
Last Updated: [13th March 2025]
1. Who We Are
Our official website is accessible at: https://allenboxes.com
2. Comments
When visitors post comments, we collect:
• Data displayed in the comment form
• Visitor’s IP address
• Browser user agent string for spam detection
A hashed/anonymized string generated from your email address may be provided to Gravatar to verify service usage. Gravatar’s privacy policy is available at: https://automattic.com/privacy/. Approved comments display your Gravatar profile picture publicly.
3. Media Uploads
We advise against uploading images with embedded location data (EXIF GPS). Visitors may download and extract geolocation information from website images.
4. Cookies
| Cookie Type | Duration | Purpose |
|---|---|---|
| Comment Convenience | 1 year | Saves name, email, and website for future comments |
| Browser Check | Session | Temporary cookie to verify cookie acceptance |
| Login Session | 2 days | Maintains authentication credentials |
| Display Preferences | 1 year | Remembers screen display options |
| “Remember Me” | 14 days | Extends login persistence |
| Post Editing | 24 hours | Tracks recently edited article ID |
5. Embedded Content
Articles may contain embedded content (videos, images, etc.) behaving identically to visiting the source website. Third-party platforms may:
• Collect data
• Use cookies
• Employ tracking technologies
• Monitor interactions (including logged-in users)
6. Data Sharing
Your IP address will be included in password reset emails for security verification.
7. Data Retention
• Comments & metadata: Indefinite retention for automated approval of follow-up comments
• User profiles: Persistent storage until account deletion (users may edit all information except usernames)
8. Your Rights
Registered users may:
① Request exported personal data (including all provided information)
② Request data erasure (excludes legally mandated retention)
9. Data Transfers
Visitor comments undergo automated screening via spam detection services.
Technical Notes & Compliance Considerations:
- GDPR Alignment: Ensure cookie consent banners are implemented for EU visitors
- Geolocation Warning: Bolden media upload disclaimer for visual prominence
- Third-Party Disclosures: Maintain updated links to external privacy policies (e.g., Gravatar)
- Data Access Protocol: Establish 72-hour SLA for user data requests
- Security Protocols: Encrypt password reset communications (recommend TLS 1.3+)
For full compliance, consult legal counsel to address jurisdiction-specific requirements.