Privacy Policy

A legal disclaimer

Owner / Data Controller: PolarisnNorth / N. D. Mulcahy (“I,” “me,” “my”)
Site: polarisnnorth.com (the “Site”) — a personal research portfolio and ongoing experimental case study. Not a business, not an LLC.

1) What this Site is (and isn’t)

This Site documents personal research, reflections, and experimental case studies about human–AI interaction. It is non-commercial and intended for learning and public interest. I do not sell personal data.

2) What I collect

I aim for data minimization. By default the Site may collect:

Basic technical logs: IP address, timestamps, URLs visited, referrer, and user-agent. Used for security, abuse prevention, and to understand traffic at a high level.

Cookies (minimal): Only what’s necessary to run the Site (e.g., session or preference cookies).

Voluntary submissions: If you email me or submit a form, I’ll receive what you send (name, email, message, attachments).

Embedded media & links: If you click out to third parties (e.g., YouTube, X, TikTok, GitHub), they may collect data under their policies.

Optional analytics (off by default)

If I enable privacy-preserving analytics (e.g., self-hosted, no cross-site tracking), it will be aggregate-only and cookie-light. I’ll note it here if turned on.

3) Special note on “experimental case study” content

Scope: Posts may include qualitative observations about technology, culture, or AI systems.

Human subjects: I do not publish identifiable info about private individuals without consent.

Redaction & minimization: When describing events, I aim to remove names, numbers, or locations unless clearly authorized or already public.

Takedowns: If you appear in content and want it edited or removed, contact me (see §11).

4) Why I collect data (legal bases)

Legitimate interests: Operate and secure the Site; prevent spam/abuse; measure basic traffic.

Consent: When you submit a form, opt into a newsletter, or accept optional features.

Legal obligations: If required to comply with applicable law or lawful requests.

5) How I use data

Run, protect, and improve the Site.

Respond to messages you send.

Maintain research notes and changelogs in aggregate or anonymized form.

6) Data sharing

I don’t sell your data. I may share limited data with:

Service providers (hosting, email) strictly to run the Site, under confidentiality.

Legal/Safety if required to comply with law or to protect rights, safety, or integrity of the Site.

7) Data retention

Server logs: up to 90 days by default (shorter if feasible).

Contact emails/forms: as long as needed to handle the conversation, then archived or deleted.

Backups: encrypted, rotated on a schedule; older snapshots are purged.

8) Security

I use reasonable safeguards (HTTPS, hardened hosting, least-privilege accounts). No system is perfect; please share any concerns (see §11).

9) Your choices & rights

Do not contact: Don’t use forms or email if you don’t want to share info.

Access/Deletion/Correction: Email me to request a copy, correction, or deletion of your personal data (subject to legal limits).

Opt-out of optional analytics: If enabled, I’ll provide an opt-out link or respect browser signals where supported.

10) Children’s privacy

This Site is not directed to children under 13 (or higher age where local law applies). I don’t knowingly collect their data.

11) Contact

Email: [your preferred contact email]

Postal (optional): [mailing address or “available on request”]

12) International visitors

Data may be processed in the United States. By using the Site, you understand your data may be transferred and processed there.

13) Changes to this policy

I’ll update this page when practices change. Material changes will be dated and summarized at the top.