Privacy Policy

Last updated: May 2026

whiz.pub is committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights regarding that data.

1. What we collect

  • Account information: Email address. Authentication is handled via one-time codes sent to your email — we do not store passwords.
  • Blog content: Posts, pages, and media you publish through the Service.
  • Blog settings: Display name, description, theme preferences, custom domain configuration, and related metadata.
  • Session data: Authentication tokens for maintaining your logged-in session on the dashboard.
  • Server logs: IP addresses and request metadata for security monitoring and abuse prevention. These logs are retained for a limited period and are not used for tracking or profiling.

2. What we do not collect

  • No tracking pixels, analytics scripts, or fingerprinting on public reader pages.
  • No third-party JavaScript on public reader pages (unless you explicitly add custom head HTML to your own blog).
  • No advertising or ad-related tracking of any kind.
  • No selling, renting, or sharing of your data with third parties for marketing purposes.
  • No behavioral profiling or cross-site tracking.

3. How we use your data

  • Service operation: To create and maintain your account, host your blog, and serve your published content.
  • Transactional emails: To send login and verification codes and domain verification confirmations. We do not send marketing emails.
  • Security: To detect abuse, enforce rate limits, and protect the platform and its users.

4. Third-party services

  • Email delivery: Transactional emails are sent through a third-party email service. Only your email address and the email content are shared for delivery purposes.
  • CDN and hosting: Published blog content is cached and served through content delivery infrastructure to provide fast page loads worldwide.

We do not share your data with any other third-party services.

5. Data storage and security

Your data is stored on servers with encrypted connections (TLS in transit). API keys are stored as hashed values. Authentication uses one-time codes sent to your email — no passwords are stored. We take reasonable measures to protect your data, but no system is completely secure.

6. Cookies

The dashboard uses session cookies (httpOnly, secure) for authentication. Public reader pages do not set cookies. We do not use advertising or tracking cookies.

7. Data retention

Your data is retained for as long as your account is active. Server logs are retained for a limited period for security purposes and then automatically deleted.

8. Data deletion

You can delete your account at any time from your account settings. When you delete your account, all associated data — including posts, settings, custom domain configuration, and cached content — is permanently and irreversibly removed.

9. Your rights

  • Access: You can view all your data through the dashboard or API at any time.
  • Export: You can export all your posts in multiple formats (Markdown, Jekyll, Hugo, Ghost, WordPress).
  • Deletion: You can delete individual posts or your entire account at any time.
  • Correction: You can update your blog settings, content, and account information at any time.

10. Children's privacy

whiz.pub is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected such information, we will take steps to delete it.

11. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page indicates when the most recent changes were made. Material changes will be communicated via email to the address associated with your account.

12. Contact

Questions about this Privacy Policy? Contact us at hello@whiz.pub.