Privacy policy

This policy describes what data we collect, why, and what control you have over it. We follow GDPR (EU) and CCPA (California) standards as our minimum bar — even for visitors outside those jurisdictions.

01 — SummaryThe short version

If you don't read another section, read this one:

• We do not sell your personal data to anyone — ever.
• We use cookies for analytics (Google Analytics) and to track affiliate clicks so we get paid when you buy through our links.
• We don't run third-party ad networks — there are no display ads on this site.
• You can opt out of analytics and ask us to delete your data at any time by emailing privacy@tuto.digital.
• If you sign up for our newsletter, we use Mailchimp; you can unsubscribe with one click in any email.

02 — DataWhat we collect

Automatically when you visit

• Standard server logs — IP address (anonymized after 30 days), browser, device, referrer URL, pages visited. Retained 12 months for security and fraud prevention.
• Analytics — Google Analytics 4 collects page views, session duration, country (city-level), device type. IP anonymization is enabled.
• Affiliate click tracking — when you click a link to a merchant, our server records the click (with anonymized identifiers) so we can be credited if you make a purchase.

When you contact us or subscribe

• Email address — for newsletter subscriptions or replies to support questions.
• Name (optional) — only if you provide it via contact form.
• Message content — what you write to us.

What we don't collect

• Payment details — purchases happen on the merchant's site, not ours.
• Government IDs, phone numbers, addresses.
• Anything from minors under 16 (see Section 09).

03 — UseHow we use your data

We use the data above for these specific purposes, and no others:

1. Site operations — keeping the site fast, secure, and reachable.
2. Performance analysis — understanding which articles readers find useful, which CTAs convert, what to write next.
3. Affiliate revenue — tracking which links result in purchases so we receive commissions.
4. Communication — answering questions you send us, delivering the newsletter you signed up for.
5. Fraud prevention — detecting and blocking abuse, bots, scrapers.

04 — AffiliatesAffiliate click tracking

When you click a link to a merchant (Hostinger, NordVPN, etc.), three things happen:

1. Our server logs the click for our analytics.
2. You're redirected to the merchant, with a tracking parameter (e.g. ?ref=tutodigital) appended.
3. The merchant drops their own cookie on your browser; if you purchase within their cookie window (typically 30 days), we get a commission.

This commission costs you nothing — it comes from the merchant's marketing budget, not from a markup on your purchase.

05 — CookiesCookies & tracking technologies

We use the following cookies. See our Cookie Policy for the full list with retention periods.

• Essential (always on) — session, security, language preference
• Analytics (opt-in) — Google Analytics 4 with IP anonymization
• Affiliate (opt-in) — click attribution for merchant partners

You can refuse non-essential cookies via the consent banner on first visit, or change your choice anytime in the footer ("Cookie preferences").

06 — SharingWho we share data with

We share data only with these processors, each bound by a Data Processing Agreement (DPA):

• Hostinger — web hosting (Lithuania/EU)
• Cloudflare — CDN, DDoS protection (US, DPF certified)
• Google — Analytics 4 (US, DPF certified)
• Mailchimp — newsletter delivery, only if you subscribe (US, DPF certified)
• Affiliate networks — Impact, ShareASale, CJ — only the anonymized click identifier needed for attribution

We do not sell your data. We do not share data with advertisers, data brokers, or any third party outside this list.

07 — RightsYour rights under GDPR & CCPA

Regardless of where you live, you have these rights:

• Access — request a copy of the data we hold about you
• Correction — ask us to fix anything inaccurate
• Deletion ("right to be forgotten") — ask us to delete your data
• Portability — receive your data in a machine-readable format
• Opt-out — refuse analytics, affiliate tracking, or marketing communications
• Complain — to your local data protection authority (in Türkiye: KVKK; in EU: your national DPA)

To exercise any of these, email privacy@tuto.digital. We respond within 30 days, free of charge.

08 — RetentionHow long we keep data

• Server logs — 12 months, then deleted
• Analytics data — 14 months (Google Analytics default)
• Newsletter subscriptions — until you unsubscribe
• Contact form messages — 24 months after the last reply
• Affiliate click logs — 90 days after the last related conversion

09 — ChildrenChildren's privacy

tuto.digital is intended for adult readers (16+). We do not knowingly collect data from anyone under 16. If you believe a child has provided us with personal information, please contact us and we will delete it immediately.

10 — Changes & contactUpdates to this policy

We may update this policy occasionally — for example, when adding a new analytics tool or merchant. Material changes are announced via a notice at the top of the homepage for 30 days, and via email to newsletter subscribers.

The version history is published transparently — write to us if you'd like to see a previous version.