Privacy notice
Plain-English summary of what we collect, why, and how to walk away.
What we collect
If you sign up to the mailing list, we store the email address you submit and the User-Agent string of your browser. We never store your raw IP address. Instead, we keep a salted one-way hash of it (HMAC-SHA256 with a secret salt) so we can throttle abusive signup attempts without retaining anything that can be traced back to a person — the original IP cannot be recovered from the hash.
Otherwise, the site uses self-hosted Umami for page-view analytics. Umami is cookieless and anonymized: it doesn't set cookies, doesn't fingerprint, and doesn't link visits to a person.
Why
The mailing list is for sending you new research briefs when they ship. Nothing else. We don't sell, share, or rent it; we don't run ads.
How long
Your email stays on the list until you unsubscribe. Every email we send includes a one-click unsubscribe link, which deletes your row from our database. User-Agent is nulled out 30 days after signup. Unconfirmed signups are deleted after 7 days if you don't click the confirmation link.
Unsubscribe
Every email we send carries a one-click unsubscribe link. Clicking it deletes your row from our database — there's nothing left for us to hold onto.