Privacy Policy
Last updated: March 2026
1. Who We Are
This website, 13mooncalendar.com, is operated by an individual developer. We are the data controller responsible for your personal data.
Contact: denisas.jersovas@gmail.com
If you have any questions about this Privacy Policy or how we handle your data, please contact us at the email address above.
2. What Data We Collect and Why
We are committed to minimizing data collection. This website does not require user accounts, login, or any form submissions. We do not collect personal information such as names, email addresses, or phone numbers through the website itself.
The data we do process falls into the following categories:
Analytics Data (Lawful Basis: Consent)
With your consent (provided via our cookie banner), we use Google Analytics 4 and Vercel Analytics to understand how visitors use our website. This includes:
- Pages visited and navigation patterns
- Approximate geographic location (country/region level, anonymized)
- Device type, browser, and operating system
- Web performance metrics (page load times, web vitals)
- Referral sources
Google Analytics data is anonymized through IP anonymization. We do not use this data to identify individual users.
AI Day Summary Requests (Lawful Basis: Legitimate Interest)
When you use the AI-powered day summary feature, we send the following non-personal calendar data to our AI provider (Groq):
- The selected calendar day, Solar Seal, and Galactic Tone
- No personal information is sent with these requests
Rate Limiting Data (Lawful Basis: Legitimate Interest)
To prevent abuse of our AI summary feature, we temporarily store IP addresses in server memory. This data:
- Is stored only in volatile memory (not written to any database or file)
- Is automatically cleared when the server restarts
- Is used solely to enforce rate limits (8 requests per day per IP)
- Is never shared with third parties
Cookie Consent Preferences (Lawful Basis: Legal Obligation)
Your cookie consent choice is stored in your browser's localStorage to remember your preference across visits. This data never leaves your device.
3. Cookie Policy
Cookies are small text files stored on your device. We use the following cookies:
| Cookie Name | Provider | Purpose | Duration | Type |
|---|---|---|---|---|
| Language preference | 13mooncalendar.com | Remembers your chosen language (EN/LT) | Persistent | Necessary (localStorage) |
| cookie-consent | 13mooncalendar.com | Stores your cookie consent preferences | Persistent | Necessary (localStorage) |
| _ga | Google Analytics | Distinguishes unique users | 2 years | Analytics |
| _ga_* | Google Analytics | Maintains session state | 2 years | Analytics |
| _gid | Google Analytics | Distinguishes unique users | 24 hours | Analytics |
| va | Vercel Analytics | Measures web performance vitals | Session | Analytics |
Necessary cookies/storage are required for basic website functionality and do not require consent.
Analytics cookies are only set after you provide consent through our cookie banner. You can withdraw your consent at any time by clearing your browser cookies or adjusting your preferences through the cookie settings.
4. Third-Party Services
We use the following third-party services:
Google Analytics (Google LLC)
We use Google Analytics 4 to analyze website traffic. Google may process data on servers located in the United States. Google Analytics uses cookies to collect anonymized usage data. For more information, see Google's Privacy Policy.
You can opt out of Google Analytics by using the Google Analytics Opt-out Browser Add-on.
Vercel (Vercel Inc.)
Our website is hosted on Vercel, which provides hosting infrastructure and analytics. Vercel may process data on servers in the United States and European Union. See Vercel's Privacy Policy.
Groq (Groq Inc.)
We use Groq's API to generate AI-powered day summaries. Only non-personal calendar data (day, seal, tone) is sent to Groq. No personal information is transmitted. See Groq's Privacy Policy.
5. Data Retention
We retain data for the following periods:
- Google Analytics data: 14 months (Google's default retention period for GA4)
- Vercel Analytics data: Retained according to Vercel's data retention policies
- Rate limiting IP data: Stored only in volatile server memory; cleared automatically on server restart (typically within 24 hours)
- Cookie consent preferences: Stored in your browser until you clear your cookies or localStorage
- Language preference: Stored in your browser's localStorage until you clear it
We do not maintain any user database or persistent storage of personal data.
6. Your Rights Under GDPR
If you are located in the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR):
- Right of Access: You can request information about whether we process your personal data and, if so, request a copy of that data.
- Right to Rectification: You can request correction of inaccurate personal data.
- Right to Erasure ("Right to be Forgotten"): You can request deletion of your personal data under certain circumstances.
- Right to Restriction of Processing: You can request that we restrict the processing of your personal data under certain circumstances.
- Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format.
- Right to Object: You can object to the processing of your personal data, particularly when based on legitimate interest.
- Right to Withdraw Consent: Where processing is based on consent (such as analytics cookies), you can withdraw your consent at any time by clearing your cookies or adjusting cookie preferences. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.
To exercise any of these rights, please contact us at denisas.jersovas@gmail.com. We will respond to your request within 30 days.
Since we do not maintain user accounts or store personal data in a database, most of these rights are already fulfilled by default. The primary data we process (analytics) can be controlled through your cookie consent preferences.
7. International Data Transfers
Some of the third-party services we use may transfer your data to servers located outside the European Economic Area (EEA), particularly to the United States:
- Google Analytics: Data may be processed on Google's servers in the United States. Google participates in the EU-U.S. Data Privacy Framework.
- Vercel: Our website is deployed on Vercel's infrastructure, which operates servers in both the US and EU. Vercel provides appropriate safeguards for data transfers.
- Groq: AI processing requests may be handled by servers in the United States. Only non-personal calendar data is transmitted.
Where personal data is transferred outside the EEA, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adequacy decisions by the European Commission.
8. Children's Privacy
This website is not directed at children under the age of 16. We do not knowingly collect personal data from children under 16. If you are a parent or guardian and believe that your child has provided us with personal data, please contact us at denisas.jersovas@gmail.com, and we will take steps to delete such information.
9. Changes to This Policy
We may update this Privacy Policy from time to time. When we make changes, we will update the "Last updated" date at the top of this page. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your data.
For significant changes that materially affect how we process your personal data, we will make reasonable efforts to provide notice, such as displaying a prominent notice on the website.
10. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Email: denisas.jersovas@gmail.com
We aim to respond to all inquiries within 30 days.
11. Right to Lodge a Complaint
If you believe that our processing of your personal data violates data protection laws, you have the right to lodge a complaint with a supervisory authority. You may do so in the EU member state of your habitual residence, your place of work, or the place of the alleged infringement.
For Lithuanian residents, the supervisory authority is:
State Data Protection Inspectorate (Valstybine duomenu apsaugos inspekcija)
Website: https://vdai.lrv.lt
Email: ada@ada.lt