Privacy

Privacy Policy

We don't know what you type in your terminal. We don't want to know.

← chau7.sh v2026.03.11 Version française →

Short version

Zero cookies. Zero trackers. Zero forms. The only data in transit are Cloudflare's technical logs (your IP address, to prevent attacks), retained for 72 hours at most. You have rights. You can exercise them. That's it.

Scope

This policy covers the public chau7.sh website, a static showcase site with no user accounts, no payments, and no forms. Just pages to read and links to GitHub.

Who is the data controller?

Data controller: Aeptus SAS
Represented by: Christophe Henner, President
Registered office: 6 rue des Bateliers, 92110 Clichy, France
Privacy contact: [email protected]

Where does the data go?

Sub-processor: Cloudflare, Inc.
Location: Globally distributed servers, headquartered in San Francisco
Safeguards for transfers outside the EU: EU-US Data Privacy Framework certification + Standard Contractual Clauses (SCCs)

What we collect (and what we don't)

The chau7.sh website sets no cookies, uses no tracking tools, and collects no data through forms. No Google Analytics. No Facebook pixel. No “subscribe to our newsletter” popup. Nothing.

That said, when you visit any website, some technical data is automatically exchanged. Here is what Cloudflare (our host) processes on our behalf:

Data	Purpose	Retention
IP address	Protection against attacks (DDoS, bots)	72h max
HTTP headers	Delivering pages correctly	72h max
Timestamp	Security logging	72h max

Legal basis: legitimate interest (Article 6(1)(f) GDPR). Protecting a website against attacks is legitimate. No consent is required for that.

What about cookies?

We don't use any. Cloudflare may set a strictly necessary technical cookie (__cf_bm) for bot detection. This cookie is exempt from consent under Article 82 of the French Data Protection Act (loi Informatique et Libertés).

No banner. No popup. No giant “Accept All” next to a microscopic “Decline”. You're welcome.

Personal data and third parties

No personal data is shared with anyone else. Not sold, not traded, not whispered to an algorithm.

Your rights

The GDPR gives you superpowers. Here they are:

🔍

Access Know what data we hold about you (Art. 15)

✏️

Rectification Correct inaccurate data (Art. 16)

🗑️

Erasure Request deletion (Art. 17)

⏸️

Restriction Freeze processing (Art. 18)

📦

Portability Get your data back (Art. 20)

🛑

Objection Say no to processing (Art. 21)

To exercise any of these rights: [email protected]. We'll respond within 30 days.

What if we don't respond?

You can file a complaint with the CNIL. That's what they're there for, and they're good at it.

CNIL — Commission Nationale de l'Informatique et des Libertés, 3 place de Fontenoy, TSA 80715, 75334 Paris Cedex 07 — cnil.fr

Changes

This policy may be updated. The date at the top of the page is authoritative. If anything significant changes, we'll flag it on the site.

Your privacy is worth more than a sock. Even a GPU-accelerated one.