aievals.co is a static reference site. The privacy footprint is small by design: no accounts, no comment system, no marketing pixels, and no advertising network. This page documents exactly what is collected, where it goes, and how long it lives.
Analytics handling
The site uses Google Analytics 4 for aggregate traffic measurement, and only when the deploy build is configured with a measurement ID. Specifically:
- The GA4 snippet ships in the JavaScript bundle only when
VITE_GA_MEASUREMENT_ID is set at build time. When the variable is empty or unset, no GA tag is injected and no measurement traffic leaves the browser.
- The configuration enables IP anonymization so the last octet of each IP is dropped before storage at Google.
- No Google Ads features (remarketing, advertising reporting features, user-ID joining) are enabled.
- No persistent user IDs, logged-in identifiers, or cross-site identity signals are sent.
- The data that is collected: page path, referrer, browser language, viewport size, anonymized IP, and a session cookie scoped to the property.
If you want to opt out, the standard Google Analytics opt-out browser add-on works, and so do uBlock Origin, Brave Shields, or any tracker-blocking extension. Blocking GA4 has no effect on site functionality.
The form on the contact page is wired to a small AWS Lambda function behind API Gateway. The flow is:
- The form data is validated client-side with zod and submitted as JSON over HTTPS to the API Gateway endpoint.
- The Lambda function (running in
ap-south-1) validates the payload again on the server, drops anything that fails the intent enum or the honeypot check, and assembles an email body.
- The function calls Amazon SES to deliver the email to the maintainer inbox tied to the domain.
- The payload is not persisted to a database. There is no DynamoDB table, no S3 bucket, no Postgres. Once the email is sent, the Lambda execution context ends and the data is gone from the application layer.
Operational logs (start time, status code, duration, error messages) are written to AWS CloudWatch, which retains Lambda logs for 30 days. These logs do not contain the message body or the sender email by default; they record only request metadata. After 30 days the logs are deleted by the retention policy.
The email itself lives in the maintainer's inbox until it is deleted manually. Treat the contents the way you would treat any other email: it is private, but it is not encrypted at rest beyond whatever the inbox provider does.
Third-party data
Aside from the GA4 measurement described above, the site does not embed third-party trackers, social media pixels, fingerprinting scripts, customer-data-platform tags, or session replay tools. There is no advertising. There is no affiliate tracking. Fonts and code-highlight assets ship from the site's own origin so no external CDN sees the request.
External links to vendor websites, papers, and tutorials are plain HTML anchors. Following them sends a referrer to the destination unless your browser is configured otherwise. The site has no control over what those destinations log.
If you believe content on aievals.co infringes a copyright you hold, email coffeewithom@gmail.com with: (1) identification of the work, (2) the URL of the allegedly infringing page on aievals.co, (3) your contact information, and (4) a statement under penalty of perjury that you are authorized to act on behalf of the copyright owner. The site operator will review and act within a reasonable time.
The same address handles general privacy questions, GDPR / CCPA requests for the limited data described above, and questions about this page.