Privacy policy

This Privacy Policy is meant to help you understand what information we collect, why we collect it, and how you can update, manage, export, and delete your information. We promise we never sell your data: never have, never will.

At Policymakr, we are committed to complying with GDPR, CCPA, PECR and other privacy regulations on our website and analytics system. The privacy of your data—and it is your data, not ours—matters a great deal to us.

User accounts

Currently, you can’t open an account at Policymakr, although you can subscribe to our newsletters. When Policymakr begins offering accounts, an email address will be required to create an account. That will be just so that you can log in and personalize your new account, and we can send you invoices, updates or other essential information. This, however, will only apply once Policymakr goes live.

Analytics data we collect

We use Plausible Analytics, an open-source project dedicated to making web analytics more privacy-friendly, to gather aggregated information about visitors to this site without collecting any personal data or personally identifiable information, without using cookies and while respecting their privacy. You may take a look at the Plausible data policy for details on the information we do collect about you.

Because the privacy of our website visitors is important to us, we do not track any individual people. When a visitor is on the website:

  • no personal information is collected;
  • no information such as cookies is stored in the browser;
  • no information is shared with, sent to or sold to third-parties;
  • no information is shared with advertising companies;
  • no information is mined and harvested for personal and behavioral trends;
  • no information is monetized.

We run the Plausible Analytics script to collect some anonymous usage data for statistical purposes. The goal is to track overall trends in our website traffic, it is not to track individual visitors. All the data is in aggregate only, including referral sources, top pages, visit duration, information from the devices (device type, operating system, country and browser) used during the visit. No personal data is collected.

Other external service providers

We use a select number of trusted external service providers for certain service offerings. These service providers are carefully selected and meet high data protection, data privacy and security standards.

We only share information with them that is required for the services offered and we contractually bind them to keep any information we share with them as confidential and to process personal data only according to our instructions.

Web host and data retention

This Website is hosted by Cloudflare, a company that provides content delivery network services, cloud cybersecurity, and DDoS mitigation. All of the data that we collect is kept fully secured, encrypted and hosted on 100% renewable energy powered server in San Francisco, CA, and other locations owned by Cloudflare. See the Cloudflare privacy policy for full details.


Emails you send using the contact form

When you write to us with a question or to ask for help, your message is processed by an email server operated on our behalf by Amazon SES, using our own domains. We keep that correspondence, which includes the email address, so that we have a history of past correspondences to reference if you reach out in the future. We use this data solely in connection with answering the queries we receive. See the Amazon AWS privacy policy for details.


Newsletters and email reports (should you choose to subscribe to them) are sent using Email Octopus, a UK-based company. We have entered into a comprehensive data processing agreement with Email Octopus to ensure that both open tracking and link tracking on all emails sent to you, which also transit through our dedicated Amazon SES servers, comply with:

  • double opt-in, ensuring you give explicit consent to being included in our email lists;

  • GDPR-compliant forms, in which you give explicit consent to being added t those lists.

See the Email Octopus privacy policy for full details.

We will retain your information as long as your account is active, as necessary to provide you with the services or as otherwise set forth in this policy.

Compliance with other legal obligations

We will also retain and use the above information as required for the purposes set out in this policy, and to the extent necessary to comply with our legal obligations, resolve disputes, enforce our agreements and protect Policymakr’s legal rights.

Access to your data

You have the right to access and edit your information at any time. On written request and subject to proof of identity, you can access any data pertaining to you that we hold at any time, using the contact form. You may all ask for any necessary corrections be made, where applicable, as authorized or required by law. And if you so request, all your data will be permanently and immediately deleted

California Civil Code Section §1798.83 permits users of the Site and/or Services who are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please send a message to us with ‘Request for California Privacy Information’ in the subject line or in the body of your message. We will provide the requested information to you in your email address in response.

If you wish to exercise any additional access rights provided to you under the GDPR, you may send a message to us or visit the European Commission’s page on Data Protection.

Changes and questions

We may update this policy as needed to comply with relevant regulations and reflect any new practices. Whenever we make a significant change to our policies, we will also announce them on the Policymakr Twitter account.

Contact us using the contact form if you have any questions, comments, or concerns about this privacy policy, your data, or your rights with respect to your information.