Ivan Diuldia

Privacy Policy

Effective date: May 12, 2026
Website: https://ivan.diuldia.com/
Controller: Ivan Diuldia (“we”, “us”, “our”)
Contact: ivan@diuldia.com

This Privacy Policy explains how we collect, use, and protect information when you use this website and any applications, tools, or services that are hosted on or linked from this domain (collectively, the “Services”), including projects such as HeartBit.

1. Scope

This Policy applies to:

  • The blog and website content available at this domain.
  • Any web pages, authentication flows, APIs, and app-related pages hosted on this domain.
  • Any app or project that references this domain for sign-in, support, legal pages, or documentation.

2. Information We Collect

Depending on how you use the Services, we may collect:

a) Information you provide directly

  • Contact details (for example, email) when you contact us.
  • Information you submit in forms, comments, or support requests.

b) Automatically collected data

  • IP address, browser type, operating system, referring URLs.
  • Device and usage data (pages visited, actions taken, timestamps).
  • Error and diagnostic logs to improve stability and security.

c) Authentication data (if you sign in with Google or another provider)

  • Basic account information such as name, email address, and profile identifier, depending on scopes you approve.
  • We request only the minimum access needed for sign-in and core functionality.

We do not sell personal data.

3. Cookies and Similar Technologies

We use cookies and similar technologies for:

  • Essential website functionality.
  • Security and fraud prevention.
  • Preferences (for example, remembering settings).
  • Analytics and performance measurement (where enabled).

You can control cookies through your browser settings. Disabling some cookies may affect functionality.

4. How We Use Information

We use collected information to:

  • Provide and maintain the website and related apps.
  • Authenticate users and manage account access.
  • Respond to messages and support requests.
  • Improve performance, reliability, and user experience.
  • Detect, prevent, and address abuse or security issues.
  • Comply with legal obligations.

5. Legal Bases (EEA/UK, where applicable)

Where GDPR/UK GDPR applies, we process data under one or more legal bases:

  • Performance of a contract (providing requested services).
  • Legitimate interests (security, maintenance, product improvement).
  • Consent (where required, for example non-essential cookies).
  • Legal obligation.

6. Sharing of Information

We may share information with:

  • Hosting, infrastructure, analytics, and email/service providers that process data on our behalf.
  • Authentication providers (for example, Google) as needed for sign-in.
  • Authorities, when required by law or to protect rights, safety, and security.

We require service providers to handle data appropriately and only for relevant purposes.

7. Data Retention

We keep personal data only as long as needed for the purposes in this Policy, including legal, accounting, and security requirements. Retention periods vary by data type and use case.

8. International Data Transfers

Your data may be processed in countries outside your own. Where required, we use appropriate safeguards for cross-border transfers.

9. Security

We implement reasonable technical and organizational measures to protect data. However, no method of transmission or storage is completely secure.

10. Your Rights

Depending on your location, you may have rights to:

  • Access your personal data.
  • Correct inaccurate data.
  • Request deletion.
  • Restrict or object to processing.
  • Data portability.
  • Withdraw consent (where processing is based on consent).

To exercise rights, contact: ivan@diuldia.com

11. Children’s Privacy

The Services are not directed to children under 16 in the Netherlands (or the minimum age in your jurisdiction), and we do not knowingly collect personal data from children without a lawful basis.

12. Third-Party Links and Services

The website and apps may link to third-party services. Their privacy practices are governed by their own policies, not this one.

13. App-Specific Notes (including HeartBit and future apps)

Apps or experiments hosted under this domain may have additional, app-specific privacy details (for example, data categories, permissions, retention, or integrations). When available, those details supplement this Policy and do not replace it unless explicitly stated.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version on this page with a revised effective date.

15. Contact

If you have privacy questions or requests, contact: ivan@diuldia.com