Privacy Policy


Effective date: 01/01/2023

1. Introduction

Welcome to Wife Whispering.

Thomas (“The Toolsmith”, “I”, “me” or “my”) operates https://www.wife-whispering.com, https://expat.wife-whispering.com, and any other related (Expat) Wife Whispering sites (hereinafter referred to as “Service”).

My Privacy Policy (“Policy”) governs your visit to https://wife-whispering.com and related sites, and explains how I collect, safeguard and disclose information that results from your use of my Service.

I use (the absolute minimum of) your data to provide and improve my Service. By using my Service, you agree to the collection and use of information in accordance with this Policy. Unless otherwise defined in this Privacy Policy, the terms used in this Privacy Policy have the same meanings as in my 👉Terms and Conditions.

My Terms and Conditions (“Terms”) govern all use of my Service and together with the Privacy Policy constitutes your agreement with me (“Agreement”).

2. Definitions

SERVICE means the https://wife-whispering.com website, and all related development and application sites.

PERSONAL DATA means data about a living individual who can be identified from those data (or from those and other information either in my possession or likely to come into our possession).

USAGE DATA is data collected automatically either generated by the use of my Service or from my Service infrastructure itself (for example, the duration of a page visit).

COOKIES are small files stored on your device (computer or mobile device). I don't actually set any, but let's see who's paying attention.

DATA CONTROLLER means a natural or legal person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are, or are to be, processed. For the purpose of this Privacy Policy, I am a Data Controller of your data.

DATA PROCESSORS (OR SERVICE PROVIDERS) means any natural or legal person who processes the data on behalf of the Data Controller. I may use the services of various Service Providers in order to process your data more effectively. (I don't, currently; but I do hand you off to a third-party calendar service for scheduling and we'll use one out of a variety of video calling solutions after that.  Prolly good to be aware of that.)

DATA SUBJECT is any living, conscious individual who is the subject of Personal Data.

THE USER is the individual using my Service. The User corresponds to the Data Subject, who is the subject of Personal Data. You.

3. Information Collection and Use

I collect several different types of information for various purposes to provide and improve my Service to you.

4. Types of Data Collected

Personal Data
While using our Service, I may ask you to provide me with certain personally identifiable information that can be used to contact or identify you (“Personal Data”). Personally identifiable information may include, but is not limited to your:

(a) Email address

(b) First name and last name

I may use your Personal Data to contact you with newsletters, marketing or promotional materials and other information that may be of interest to you. You may opt out of receiving any, or all, of these communications from me by telling me so by email, at [my first name at this domain].

Usage Data

I may also collect information that your browser sends whenever you visit my Service or when you access my Service by or through a mobile device (“Usage Data”).

This Usage Data may include information such as your computer's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of my Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

When you access my Service with a mobile device, this Usage Data may include information such as the type of mobile device you use, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data.

(If any of the preceding two paragraphs is news to you, then my Privacy Policy is the least of your worries; do trust me on this.)

Location Data

I do not use or store information about your location (“Location Data”), other than what MaxMind may believe your location to be based on the IP address you appear to be using my services from.  It's none of my business, and other than banning malicious players as per my Terms, I can't see myself caring.

Tracking Cookies Data

I do not use cookies, nor similar tracking technologies to track the activity on my Service.

Let me repeat this.

My clients value discretion. Access my services through a VPN, have a chat to determine how we are going to work together, then conduct our business off-line and with a minimized, so as to be non-existent, data footprint.  I do retain the IP address your connection appears to originate from so the geek in me can occasionally parse the web server logs or troubleshoot an issue, but it is of no use to me to track, categorise, store, data-fy, or aggregate any of the data that might otherwise be.  

I am not embedding any tracking or advertisement on these pages, and you should be shocked if I was to try and ram advertisement down your throat, right when you are deciding that I am an individual of the caliber and moral integrity you wish to conduct sensitive, meaningful business with. Sheesh.

That said! When you do fill in the form to schedule our Discovery Call using the third-party provider's web site, there is a link to adjust their "Cookie settings" in the lower left-hand corner of their form window. (Currently it is, and subject to change like everything.)  Avail yourself of the options hidden behind that link, if you feel thusly compelled.

Other Data

Through your use of my Service, I may also be exposed to the following information: sex, age, date of birth, place of birth, address, telephone numbers, and other data.

Let's be clear: when you fill in the Discovery Call details at the third-party scheduling provider, there is going to be a non-trivial bit of personal information that I am asking you to share.  I am asking these questions in order to prepare to the best of my abilities, to field the most useful Discovery call with you that I possibly can.  I do not know how the scheduling provider handles these data points; and if you must keep things from prying eyes at that point of your journey, then I'd rather that you take liberties with your name and email address, and correct those during the call itself. Just make sure you provide an email address that can receive the meeting link.

5. Use of Data

I may use the collected data for various purposes:

(a) to provide and maintain my Service;

(b) to monitor the usage of my Service;

(c) to detect, prevent and address technical issues;

(d) to fulfill any other purpose for which you provide it;

(e) to provide you with news, special offers and general information about other goods, services and events which I offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information;

(f) in any other way I may describe when you provide the information;

(g) for any other purpose with your consent.

6. Retention of Data

I will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. I will retain and use your Personal Data to the extent necessary to comply with my legal obligations (for example, if I am required to retain your data to comply with applicable laws), resolve disputes, and enforce any legal agreements and policies.

I will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period, except when this data is used to strengthen the security or to improve the functionality of my Service, or where I am legally obligated to retain this data for longer time periods.  It's not ideal, and the entities creating such legal requirements are typically challenged by this very technology.

7. Transfer of Data

Your information, including Personal Data, may be transferred to – and maintained on – computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.
Matter of fact, this server is currently located in the EU and may relocate to Southeast Asia at some point.  Shouldn't matter, as I collect and retain the absolute minimun that I can get away with, but .. yeah, be aware.

If you are located outside of the Southeast Asia and choose to provide information to me, please note that I must transfer the data, including Personal Data, to Southeast Asia, and process it there, after it has likely crossed the web and email servers attached to this domain, which are located in the EU. 

Let's go through this one again.  When you visit these pages from anywhere on the globe, your apparent originating IP address, user agent string and other such Usage Data will be stored in the logs on the server providing this Service, physically located in the EU.  I may then hop onto the machine remotely to parse the web server logs from Australasia or Southeast Asia, or wherever I may happen to be located at that time. At that moment, your Usage Data will materialize on my laptop in the form of physical state changes of its nonvolatile storage SSD, or as an ephemeral record in its volatile RAM.

Likewise, when you fill in the form for our Discovery Call, the data that you submit is handled by, and visible to the third-party scheduling provider; additionally, said provider will have access to their own set of Usage Data originating from you (as in, your IP address, user agent, and so forth).  The data you submit in the Discovery Call form will be sent to my email address in an un-encrypted, plain-text format, though we can hope and cross our fingers that they will at least utilize transport layer security from their MX to mine. 

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to such transfer.

I will take all reasonable steps necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to any organization or country except those stated above, unless there are adequate controls in place ensuring the security of your data and personal information.

8. Disclosure of Data

I may be required to disclose personal information that I collect, or that you provide:

(a) Disclosure for Law Enforcement:
Under certain circumstances, I may be compelled to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities.

(b) Business Transaction.
If I find myself involved in a merger, acquisition or asset sale, your Personal Data may be transferred. Fat chance of that, but if I was to re-brand somewhere far in the future, I would bring my valued clientèle with me... after notifying them of this move far in advance, and with a prominent option to opt out of such a transfer. 

(c) Other cases. I may disclose your information also:

(i) to nobody.

No but seriously! Not only am I emphatically NOT in the business of "monetizing my client data", I am in its complete and utterly opposite business, where safegaurding and not disseminating any of my client data, ever, is so central to my business model as to form its core.

9. Security of Data

The security of your data is important to me, and that's not just a hollow lip-service phrase. I am an old-school data and privacy protection advocate. Do remember that no method of transmission over the Internet or method of electronic storage is 100% secure. I strive to employ commercially acceptable means to protect your Personal Data.  The best approach to this that I have found is, again, never to have you generate any data that I then store and safeguard in the first place.

10. Your Data Protection Rights Under Various Data Protection Acts

You may have certain data protection rights, depending on the jurisdiction you happen to be under.

Shouldn't matter much what those are specifically, as I will always take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

If you want to know what Personal Data I hold about you - and if you want it to be removed from, or updated on my systems, please email me at [my first name at this domain]. So as to not make me regret this, you are entitled to ask me to provide you with this information up to two (2) times in a rolling twelve (12) month period. When you make this request, the information I  provide may be limited to the relevant data that I collected about you in the previous twelve (12) months.

Specifically, you always have these rights:

(a) the right to access, update or to delete the information I have on you;

(b) the right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete;

(c) the right to object. You have the right to object to my processing of your Personal Data;

(d) the right to be provided with a copy of your Personal Data in a structured, machine-readable and commonly used format (a.k.a. "data portability");

(e) the right to withdraw your consent at any time where we rely on your consent to process your personal information.  Since you consent by the very act of using these pages, we have an interesting chicken-and-egg rabbit hole, to mix animal kingdom metaphors. Just e-mail me to that effect, I'll sort you out.

Please note that I may ask you to verify your identity before responding to such requests. 'twould be weird otherwise. 

You have the right to complain to a Data Protection Authority about my collection and use of your Personal Data. For more information, please contact your local data protection authority. I'd rather you did that after we did all we could to set you right, if things just wouldn't work out to your satisfaction.

11. Whether You are Californian Or Not (looking at you, CalOPPA, CCPA and all the rest)

No matter where you at, I do agree to the following:

(a) you can visit my site anonymously;

(b) my Privacy Policy link includes the word “Privacy”, and can easily be found on the page specified above on the home page of my website (as in, you are looking at it right now. Sheer magic!);

(c) users will be notified of any privacy policy changes on this Privacy Policy Page;

(d) users are able to change their personal information by emailing me at [my first name at this domain].

My Policy on “Do Not Track” Signals:

I honor "Do Not Track" signals and I do not track, plant cookies, or use advertising whether or not a Do Not Track browser mechanism is detected. Seems redundant, but legally literate people tell me I have to mention this yet again.

If you are a California resident and wish to exercise your data protection rights, please do exactly like everybody everywhere else, and send your request(s) by email to [my first name at this domain].

12. Service Providers

I may employ third party companies and individuals to facilitate my Service (“Service”), provide Service on my behalf, or perform Service-related services. Most of that topic is covered over in the Terms of Service, as it applies to the scheduling provider, and potentially the audio and video call providers that we will use.

13. Analytics

I do not use third-party Service Providers to monitor and analyze the use of my Service.

I may have a look at the web server logs if something seems to not work as intended, but other than that, I have an actual life and clients to work with; my time is better spent that way.

14. Behavioural Remarketing

I do not use remarketing services to advertise on third party websites to you after you visited my Service. Of course I don't.  I do want to point out that it happens, and people are actually doing it.  If you are the kind to read the Terms of Service and Privacy Policy, this might not be news to you.

Providers that do support this behavioural remarketing, and that you may want to fence off as best your browser permits, are Google AdWords/Google Ads by Google; Bing Ads by Microsoft, Twitter by the Elon, Facebook by Meta, and Pinterest by Pinterest.

I'm sure there are others.

For your convenience, here are the opt-out links, compiled to be correct at the time of writing, but without any warranty implied or expressed.  I'll have you copy and paste them instead of makeing them clickable, I'm sure you understand my motivation there.

Google Ads: http://www.google.com/settings/ads

Google Analytics Opt-out Browser Add-on (I don't even...): https://tools.google.com/dlpage/gaoptout

Bing Ads: https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads

Twitter: https://support.twitter.com/articles/20170405

Facebook: https://www.facebook.com/help/568137493302217

Pinterest: http://help.pinterest.com/en/articles/personalization-and-data

As a bonus, you may also opt out from participating companies through the various Digital Advertising Alliances:

USA - http://www.aboutads.info/choices/

Canada - http://youradchoices.ca/

Europe - http://www.youronlinechoices.eu/

...if you're located anywhere else, you'll want to do your own fact finding.

15. Links to Other Sites

My Service may contain links to other sites that are not operated by me. If you click a third party link, you will be directed to that third party's site. I advise you to review the Privacy Policy of every site you visit.

I have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

16. Children's Privacy

My Services are not intended for use by children under the age of 18 (“Child” or “Children”).

I do not knowingly collect personally identifiable information from Children under 18. If you become aware that a Child has provided me with Personal Data, please contact me. If I become aware that I have collected Personal Data from Children without verification of parental consent, I take steps to remove that information from my servers.

17. Changes to This Privacy Policy

I may update my Privacy Policy from time to time. I will notify you of any changes by posting the new Privacy Policy on this page.

I will let you know via email and/or a prominent notice on our Service, prior to the change becoming effective and update the effective date bit at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective as and when they are posted on this page.

18. Contact Me

If you have any questions about this Privacy Policy, please send me an email to [my first name at this domain].