This privacy policy describes the minimal data practices for optiond.org ("the Site"). The Site is a static informational page with no user accounts, no forms, and no embedded third‑party analytics scripts.
Scope: This policy applies only to the root domain optiond.org. Future subdomains / tools may publish their own supplemental policies if their data practices differ. Refer also to the Terms of Use and Accessibility Statement.
We intentionally collect no personal information directly through the Site. We do not set cookies, perform client‑side tracking, fingerprint browsers, or embed advertising networks.
The Site contains no input forms and does not request or accept user‑submitted data. If you choose to contact us via external links (e.g., GitHub or LinkedIn), any information you provide there is governed by the respective platform's privacy policies.
The HTML served does not run third‑party analytics or advertising scripts. The Site is delivered through Microsoft Azure Static Web Apps fronted by Azure Front Door (edge caching + security). Standard edge / origin infrastructure events may produce transient logs used for performance, reliability, and abuse mitigation. These may include:
Edge/CDN and origin logs retained by Azure are kept for up to 30 days for operational and security purposes (caching efficiency, DDoS / WAF filtering, diagnosing faults) and are not combined to build behavioral profiles. We do not receive enhanced geolocation beyond what appears in standard IP-based logs. If retention or processing scope changes, this policy will be updated.
The Site sets no cookies and uses no localStorage, sessionStorage, or other persistent browser storage for tracking or personalization.
Infrastructure: Microsoft Azure (Static Web Apps + Front Door) provides hosting, global edge caching, TLS termination, basic firewall / WAF, and DDoS protections. Azure may process the technical request data described in Section 3 as a processor to deliver the Site.
External Links: The Site links to GitHub and LinkedIn. Visiting those platforms or interacting with their content is subject to their own privacy practices. We do not embed their widgets, iframes, or scripts on this page.
We do not sell, rent, or trade personal data. Transient infrastructure logs (if any) are accessible only to: (a) authorized maintainers operating the Site; and (b) Microsoft (Azure) as the hosting / edge delivery provider acting as a processor. We do not intentionally disclose data to third parties beyond this operational necessity unless required by applicable law or to protect the integrity and security of the service.
The Site is static content. We follow minimal-attack-surface principles. If any logs are retained, reasonable safeguards (access control, least privilege) are expected to apply at the infrastructure layer.
Because we do not intentionally collect or store personal data through the Site, there is typically nothing to access, correct, or delete. If you believe logs or other data have been improperly retained, you may contact us (see Section 11) and we will review reasonable requests consistent with applicable law.
The Site is general‑audience content and not directed to children. No personal data about children is knowingly collected.
Material changes will be reflected by updating the "Last updated" date. Substantive alterations to data practices (e.g., adding analytics, forms, or accounts) will prompt a revised version before or at deployment.
For privacy inquiries, email privacy@optiond.org (a role-based inbox) or use the contact links in the Site footer (e.g., GitHub or LinkedIn). Please do not send sensitive personal information; we discourage transmitting any unnecessary personal data.
This policy reflects the current repository (single static HTML file with inline CSS and a short JavaScript snippet) and deployment architecture (Azure Static Web Apps + Azure Front Door). Edge caching, TLS termination, threat detection, and DDoS/WAF filtering performed by Azure are incidental processing necessary to deliver the Site securely and efficiently.
Hosting & Regions: Content is deployed from a primary Azure region (East US) and cached globally at Azure Front Door edge locations.
Telemetry & Monitoring: No Application Insights, Log Analytics workspaces, or custom telemetry collectors are enabled.
Logs & Retention: Infrastructure request and security logs (edge/origin) are retained by Azure for up to 30 days then automatically expire per Azure platform defaults.
IP Handling: Full IP addresses appear in transient infrastructure logs only; no additional enrichment or fingerprinting is applied; we do not persist or export these logs locally.
If you later introduce: