Last updated: 2026-05-12

Privacy Policy

What information we collect from visitors to www.embeddedos.org, why we collect it, and how to exercise your rights.

1. Who we are

The EmbeddedOS Research Foundation ("EmbeddedOS", "EoS", "we", "our", "us") is a 501(c)(3) nonprofit incorporated in the United States. This policy explains what information we collect from visitors to www.embeddedos.org and how we use it.

2. What we collect

  • Site analytics: aggregate page-view counts, referrer, screen size, and approximate region (derived from IP, never stored at full precision).
  • Forms: when you submit the contact form, the newsletter form, or a donation form, we receive the information you enter (name, email, message, donation amount).
  • Server logs: standard HTTP logs (URL, status, timestamp, truncated IP) retained for up to 30 days for security and abuse mitigation.

3. What we do not collect

  • We do not sell, rent, or trade your personal information to anyone.
  • We do not use cross-site advertising trackers.
  • We do not run third-party fingerprinting scripts.

4. Cookies

We use a small number of strictly-functional cookies (preference storage, CSRF protection on forms). We do not set advertising or third-party tracking cookies. Visitors in jurisdictions that require explicit consent will see a one-time banner; declining still permits the strictly-functional cookies needed to keep the site working.

5. How we use your information

  • To respond to inquiries you send through the contact form.
  • To deliver the newsletter you subscribed to (you can unsubscribe any time from the link in every issue).
  • To process donations and provide tax receipts where required.
  • To run the site, prevent abuse, and improve the documentation.

6. Sharing & processors

We use a small set of third-party processors to operate the site: a static hosting provider, a form-relay provider (Web3Forms), and an email-delivery provider for the newsletter. Each processor receives only the data needed to perform its function and is bound by their own privacy and security policies.

7. Your rights

You may request access to, correction of, or deletion of any personal data we hold about you. Email privacy@embeddedos.org with your request. We will respond within 30 days. EU/UK residents have rights under GDPR; California residents have rights under the CCPA.

8. Security

The site is served over HTTPS only. Forms post to TLS-only endpoints. Backups are encrypted at rest. We follow the principle of least privilege for administrative access.

9. Children

The site is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with information, contact us and we will delete it.

10. Changes to this policy

We will update this policy as the site evolves. The "last updated" date at the top of the page reflects the most recent change. Material changes will be announced on the homepage for at least 30 days before taking effect.

11. Contact

Privacy questions: privacy@embeddedos.org
Security disclosures: security@embeddedos.org
Mailing address: EmbeddedOS Research Foundation, 501(c)(3), United States.