BorisovAI

Privacy Policy

13.02.2026 · v2.1

Feedback System Data Collection

We collect feedback from users through our feedback systems on blog posts, projects, and discussion threads. This section describes what data we collect and your rights under GDPR.

What Data We Collect

  • Browser Fingerprint: A unique identifier derived from your browser characteristics (User-Agent, canvas fingerprinting, WebGL information) used for spam prevention and duplicate detection.
  • IP Address: Your internet protocol address, used for rate limiting and fraud prevention.
  • Email Address (optional): If you provide it, we store it to contact you about your feedback.
  • Feedback Message: The text content of your feedback (max 1000 characters).
  • Rating (optional): If applicable, a 1-5 star rating you provide.
  • User-Agent: Technical information about your browser and device, used for analytics and debugging.
  • Metadata: Locale preference and timestamp information.

Purpose of Data Collection

We collect this data for the following legitimate purposes:

  • Spam Prevention: Browser fingerprints and IP addresses help us identify and block spam feedback.
  • Rate Limiting: IP addresses are used to limit the number of feedbacks per user per hour.
  • Duplicate Detection: Browser fingerprints prevent the same user from submitting duplicate feedback on the same page.
  • Analytics: We analyze feedback to improve our content and services.
  • User Contact: If you provide an email, we may use it to follow up on your feedback with questions or updates.

Data Retention

All feedback data is automatically deleted after 90 days. This includes:

  • Browser fingerprints
  • IP addresses
  • Email addresses
  • Messages and ratings
  • User-Agent information

After 90 days, feedback records are permanently deleted from our database and cannot be recovered.

Your Rights (GDPR)

Under GDPR Article 15-20, you have the following rights:

  • Right of Access (Article 15): You can request to see all personal data we have collected about you.
  • Right to Erasure (Article 17): You can request deletion of your feedback data at any time by submitting your email address or browser fingerprint to our data deletion endpoint.
  • Right to Data Portability (Article 20): You can request your data in a portable format.
  • Right to Object (Article 21): You can object to our processing of your data.
  • Right to Rectification (Article 16): You can request correction of inaccurate data.

How to Request Data Deletion

To delete your feedback data immediately, you can use our data deletion API endpoint:

DELETE /api/feedbacks/my-data
Content-Type: application/json

{
  "email": "your-email@example.com"
}

Or provide your browser fingerprint:

{
  "browserFingerprint": "your-browser-fingerprint-hash"
}

You will receive a confirmation response with the number of feedback records deleted.

Legitimate Interest Basis

We process your data based on our legitimate interest in:

  • Preventing spam and fraud
  • Maintaining service availability and security
  • Improving our content and services based on user feedback

This legitimate interest is balanced against your privacy rights and does not override them. You can always request deletion of your data.

Data Security

We implement industry-standard security measures to protect your data:

  • Browser fingerprints and IP addresses are marked as private fields in our database.
  • Sensitive data is never returned in API responses.
  • All data is encrypted in transit over HTTPS.
  • Access to feedback data is restricted to authorized personnel only.

Questions or Concerns

If you have any questions about our feedback data collection practices or wish to exercise your GDPR rights, please contact our Data Protection Officer at: privacy@example.com