Privacy policy

This policy covers what joyland-ai.io collects when you visit, why it collects that, how long the data stays, and what you can ask us to do with it. The document is written for humans, not lawyers — but it is intended to be legally accurate under GDPR, the UK Data Protection Act, and California's CCPA.

The short version

joyland-ai.io is a reader site, not a service. You do not create an account, you do not upload content, and you do not have a login. The data footprint is correspondingly small: web-analytics counts, standard server logs, a handful of cookies, and any affiliate-tracking parameters passed when you click an outbound link.

What we collect, in detail

Server logs

Every request to the site is logged at the server level: IP address (last octet redacted after 24 hours), timestamp, requested URL, HTTP referrer, and user-agent string. This is standard operational data used to diagnose broken pages, spot abnormal traffic, and defend the site against automated abuse. Retention is 30 days for the anonymised log; the raw log with full IP is discarded after 24 hours.

Analytics

The site uses a privacy-respecting analytics stack that does not set cross-site tracking cookies and does not build individual user profiles. What it measures is page-level: which pages get read, roughly where in the world visitors come from at country level, referral source, and time on page. It does not correlate this to a specific person.

Cookies

Three categories of cookies may be set:

  • Strictly necessary — a small cookie stores your acknowledgement of the 18+ age gate so you are not asked twice per session. This uses localStorage rather than a traditional cookie; either way, it holds only a boolean, never personal data.
  • Analytics — anonymised page-level metrics. No cross-site tracking identifier.
  • Affiliate — when you click a CTA that opens Joyland AI or another covered platform, the destination site (not us) may set a cookie so it can attribute your signup to this referral. That cookie is controlled by the destination platform and governed by its own privacy policy.

Affiliate tracking parameters

Some outbound links include a tracking parameter in the URL query string so the destination platform can credit the referral. This parameter is opaque to us and personal-identifier-free.

What we do not collect

  • Names, email addresses, phone numbers, physical addresses. There is no form on this site that asks for any of them.
  • Payment information. The site does not process payments.
  • Content submitted by readers. There is nothing to submit.
  • Data from third-party ad networks. The site does not serve programmatic display advertising.

Legal basis under GDPR

The processing operations described above rely on two legal bases from Art. 6 GDPR: (a) legitimate interests (operational logs, security, site improvement) and (b) consent for analytics that go beyond strictly necessary — with a clear opt-out. The affiliate tracking uses "legitimate interests" on this side and whatever basis the destination platform declares on theirs.

Your rights

If you are in the EU, UK, or California, you have specific rights over your personal data:

  • Access — request a copy of any data associated with you (there rarely is any at an identifiable level, given the site's design).
  • Deletion — request removal of any data linked to an identifier you can provide.
  • Correction — request correction of inaccurate data.
  • Objection — object to any processing based on legitimate interests.
  • Portability — request the data in a machine-readable format.

Requests go to the editor via LinkedIn (linkedin.com/in/melissablake1) with enough context to identify what you are asking about. Response window is one calendar month, which is the GDPR statutory limit.

Data location and transfers

The site is hosted on infrastructure operated in the European Economic Area. Where a specific vendor (analytics provider, affiliate network) is based outside the EEA, they process only anonymised or pseudonymised data and are contractually bound to GDPR-equivalent standards.

Children

joyland-ai.io is 18+. No processing is directed at anyone under that age, and the site does not knowingly collect data on minors. If you believe a minor has interacted with the site, please notify the editor so the data can be removed.

Changes to this policy

Substantive changes are logged on this page with the date they took effect. If a change materially alters how reader data is handled, a notice appears at the top of the page for at least 30 days. Cosmetic or clarifying edits are not logged.

Last reviewed: July 9, 2026 · Editor: Melissa Blake