Privacy Policy

Contents

1. Summary — the short version

We know privacy policies are long. Here is what you actually need to know about Legit Lads in plain English. The rest of this document is the formal detail required for legal compliance.

• We publish articles. When you read them, we log standard technical data (IP, browser, pages viewed) and use cookies for analytics and newsletter delivery.
• We never sell your personal information. Full stop.
• If you subscribe to our newsletter, we store your email with MailPoet to send you the emails you asked for. You can unsubscribe from any email with one click.
• If you submit a contributor post, we use the details you provide to evaluate, edit, and (if accepted) publish your work with the attribution you choose.
• We use Google services (Analytics, Site Kit, Search Console) to understand how the site is used. You can opt out via our cookie banner or browser settings.
• We do not knowingly collect information from children under 13. Our content is written for adult readers.
• You have rights — access, correction, deletion, portability, objection. Email privacy@legitlads.com and we will respond within 30 days.

2. Who we are

Legit Lads ("we," "us," or "our") operates the website legitlads.com and its subdomains, including our calculators and tools at legitlads.com/hub. In this policy, "you" means any person who visits our site, subscribes to our communications, submits content, or otherwise interacts with us.

This policy is written to comply with:

• The EU General Data Protection Regulation (GDPR)
• The UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018
• The California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA / CPRA)
• India's Digital Personal Data Protection Act, 2023 (DPDP Act)
• Applicable data-protection laws in other jurisdictions where our readers reside

3. Scope of this policy

This policy applies to personal information we collect through:

• The legitlads.com website and any regional or subject-specific subdomains we operate
• Our newsletters and email communications (delivered via MailPoet)
• The calculators, converters, analyzers, and developer tools at LegitLads Hub (legitlads.com/hub)
• Our contributor submission form and editorial review process
• Your interactions with us on social media platforms we maintain

It does not cover third-party websites that we link to. When you click an external link, the privacy practices of that site apply, not ours.

4. Information we collect

We collect different categories of information depending on how you interact with us. The table below summarizes what we collect, why, and how long we keep it.

4.1 Information you give us

• Email address — when you subscribe to our newsletter via MailPoet.
• Contributor details — name, email, bio, profile image, social handles, and the content you submit for publication.
• Comment details — name, email, and comment text if you leave a comment on an article (not all posts have comments enabled).
• Correspondence — if you email us directly, we keep a record of that correspondence.

4.2 Information we collect automatically

• Log data — IP address, browser user-agent, operating system, referrer URL, request timestamps, HTTP status codes. This is standard server-level logging used for security and diagnostics.
• Analytics data — pages viewed, session duration, approximate geographic location (country/region, inferred from IP), device category, and the path you took through the site.
• Performance data — page load metrics (Core Web Vitals) to help us improve site speed.
• Cookies — see §8 for full details.

4.3 Information we do NOT collect

5. How we collect information

We collect information through three primary channels:

6. How we use your information

We use the information we collect for specific, limited purposes:

• To operate the site — serve pages, maintain performance, prevent abuse, defend against attacks.
• To improve the site — understand which articles resonate, which layouts work, where readers drop off, which tools are popular.
• To send communications you requested — newsletters, reply to your emails, respond to submission inquiries.
• To evaluate contributor submissions — review content for fit, verify author identity, manage the editorial process, credit accepted work.
• To show trending content — display "Most Read" sections based on aggregated, non-personal view counts.
• To comply with legal obligations — respond to lawful requests from regulators or law enforcement where required.
• To enforce our terms — detect and prevent spam, fraud, or abuse of our services.

We will not use your information for purposes materially different from those listed above without telling you first and, where required, obtaining your consent.

7. Legal bases for processing (GDPR)

If you are located in the European Economic Area or the United Kingdom, the GDPR requires us to have a lawful basis for each type of processing. Our bases are as follows:

Where we rely on legitimate interests, we have performed a balancing test and concluded that our interests do not override your fundamental rights. You have the right to object to processing based on legitimate interests — see §13.

8. Cookies and similar technologies

A cookie is a small text file stored on your device when you visit a website. Similar technologies include local storage, session storage, and pixels. We use the following categories:

8.4 Managing cookies

You can change your cookie preferences at any time by clicking "Cookie Settings" in our site footer, or by clearing cookies in your browser. Blocking all cookies may cause some features (including comments and newsletter signup) to stop working.

For detailed browser instructions, see the help pages for Chrome, Firefox, Safari, Edge, or your browser of choice.

9. Third-party services we use

We rely on a small number of third-party service providers to operate Legit Lads. Each one has its own privacy policy; we have linked to them below.

When we integrate these services, we enter into data-processing agreements where required and configure them to collect only the minimum data necessary.

10. How we share your information

• Service providers — companies that help us run the site (hosting, analytics, email delivery) under contract and only for the specific purpose we engaged them for.
• Legal compliance — if required by subpoena, court order, or other lawful request from a government authority, or to protect our rights and the safety of our users.
• Business transfers — if Legit Lads is acquired, merged, or its assets are sold, your information may be transferred to the acquiring entity under the same privacy commitments described here.
• With your consent — in any other situation where you have explicitly agreed to the sharing.
• Aggregated, de-identified data — we may publish or share statistics that cannot reasonably be used to identify you (e.g., "Posts in our Money Moves category were read by 120,000 people last month").

11. International data transfers

Legit Lads operates globally. Our service providers are located in multiple countries, including the United States, India, and the European Union. When your personal information is transferred outside the country where you reside, we rely on appropriate safeguards:

• EU Standard Contractual Clauses (SCCs) or UK International Data Transfer Addendum where applicable
• Adequacy decisions where the destination country is recognized as providing equivalent protection
• Other legally recognized transfer mechanisms under GDPR, UK GDPR, and applicable laws

If you want details of the specific safeguards in place for a transfer affecting your data, contact privacy@legitlads.com.

12. Data retention

We keep personal information only as long as we need it for the purposes described in this policy, or as required by law. Specifically:

• Newsletter subscribers: until you unsubscribe, plus 30 days for audit logs.
• Comments: indefinitely unless you request deletion.
• Contributor submissions: see §20 for detailed retention of accepted vs declined submissions.
• Server logs: typically 30–90 days, longer only for security incidents under investigation.
• Analytics data: up to 26 months, aligned with Google Analytics default.
• Backups: rolling 30–60 day retention; deleted information persists in backups for that window before being fully purged.

13. Your rights

Depending on where you live, you have some or all of the following rights with respect to your personal information:

14. How to exercise your rights

Email privacy@legitlads.com with your request. Please include:

• The right you want to exercise
• Enough information for us to identify the data you are asking about (usually the email address associated with our site)
• Any relevant detail that helps us act on the request

We will respond within 30 days. If your request is complex or we receive a high volume of requests, we may extend this period by a further 60 days, and we will tell you why.

We may need to verify your identity before acting on a request, particularly for access or deletion. We will request only the minimum information needed for verification.

You will not be charged for exercising your rights except in cases of manifestly unfounded or excessive requests, as allowed by law.

15. Security

We take the security of personal information seriously. Technical and organizational measures we apply include:

• 🔒 TLS/HTTPS encryption on all connections to legitlads.com
• 🛡️ Encrypted storage at the hosting-provider level (Hostinger and Vercel)
• 👤 Access controls: only authorized personnel can access editorial and administrative systems
• 🔑 Strong authentication on WordPress admin and GraphQL endpoints
• 🔄 Regular security updates to WordPress, plugins, and dependencies
• ⚔️ Web Application Firewall and DDoS protection at the edge
• 💾 Automated daily backups with a defined retention window
• 🚨 Incident-response procedures in the event of a suspected breach

No security measure is perfect. If you believe your account or information has been compromised, contact us immediately at privacy@legitlads.com.

16. Children's privacy

Legit Lads is not directed at children under 13, and we do not knowingly collect personal information from children under 13 (or under 16 in jurisdictions where that is the applicable age). If you believe a child has provided us with personal information, please email privacy@legitlads.com and we will delete it.

17. Do Not Track signals

Some browsers transmit a "Do Not Track" (DNT) signal. Because there is no universal industry agreement on how to interpret DNT, we currently do not respond to DNT signals. We do, however, honor the Global Privacy Control (GPC) signal for California residents as an opt-out of the "sale" or "sharing" of personal information, to the extent the CCPA applies to our processing.

18. California privacy rights (CCPA / CPRA)

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act, gives you the following additional rights:

• Right to know — what personal information we have collected about you, its sources, and how it has been used or shared.
• Right to delete — personal information we hold, subject to statutory exceptions.
• Right to correct — inaccurate personal information we hold about you.
• Right to opt out of sale or sharing — we do not sell or share personal information as those terms are defined under the CCPA/CPRA, but you can signal a preference via Global Privacy Control.
• Right to limit use of sensitive personal information — we do not collect sensitive personal information within the meaning of the CPRA.
• Right to non-discrimination — we will not discriminate against you for exercising your rights.

To exercise any CCPA/CPRA right, email privacy@legitlads.com. An authorized agent may submit requests on your behalf with signed permission from you.

19. UK and EEA residents (UK GDPR / GDPR)

In addition to the rights described in §13, EU and UK residents have the right to lodge a complaint with a supervisory authority:

• EU residents: your national data-protection authority. A list is available at edpb.europa.eu.
• UK residents: the Information Commissioner's Office (ICO) — ico.org.uk.

For the purposes of EU/UK GDPR, Legit Lads is the data controller for personal information we collect through legitlads.com.

20. Contributor submissions

If you submit an article or other content to Legit Lads through our contributor form:

• Accepted submissions: we retain your name, attribution details, bio, and submitted content indefinitely as part of the published editorial record. You may request your attribution be anonymized; we will consider each request case by case.
• Declined submissions: we keep your submission and contact details for up to 12 months to track our editorial pipeline, then delete them unless you ask us to delete sooner.
• Contact details: only the editorial team and administrators have access. We will not share them with third parties for marketing purposes.
• Attribution: published work carries the name and bio you provided unless we agree otherwise in writing.

21. LegitLads Hub (tools)

The calculators, converters, and analyzers at legitlads.com/hub are designed to run in your browser. Specifically:

• Calculations are performed client-side whenever technically possible.
• We do not store the inputs you enter into a calculator beyond anonymous, aggregated usage counts (e.g., how many times a tool was used in a day).
• Tools that require server processing (for example, SSL/TLS analysis) will state this clearly; in those cases we process only what you submit and discard it after the result is returned.
• No tool requires you to log in, provide an email, or share personally identifying information to function.

Use of the tools is subject to our Terms of Service.

22. Automated decisions & AI processing

We do not make any decisions about you that produce legal or similarly significant effects using solely automated processing. Specifically:

• We do not use your data to train public AI or machine-learning models.
• We may use AI-assisted tools internally (e.g., for editorial drafting, spam detection, or image generation for featured images). A human editor reviews all content before publication.
• Spam filtering on comments and contributor submissions may involve automated scoring. You can always request human review by emailing privacy@legitlads.com.

23. Changes to this policy

We may update this policy from time to time. When we do:

• We will update the "Last updated" date at the top.
• For material changes, we will post a notice on the site homepage for at least 14 days.
• If we materially change how we use personal information we already collected from you, we will notify you directly (for example, by email for newsletter subscribers) and, where required, seek your fresh consent.

We encourage you to review this page periodically to stay informed.

24. Contact us

For any question, request, or complaint about privacy at Legit Lads, please contact:

We aim to respond to privacy-related emails within 30 days. Please mark your email with "Privacy request" in the subject line so it reaches the right team quickly.

© 2026 Legit Lads. All rights reserved.

Privacy Policy · Version 1.0 · Last updated 21 April 2026