Legal
Privacy
Last updated 8 July 2026
This site (iamwyrm.com, including the api. and docs. subdomains) is run by Wyrm, an independent one-person studio based in Italy. The short version: it collects as little about you as possible, sets no cookies, runs no analytics, and never sells your data to anyone.
Who is responsible
The data controller is Wyrm, the operator of this site. For any privacy question or request, reach out through one of the links in the contact section — that is the fastest way to me.
What the site collects
The pages here are static and self-contained. They do not set cookies, don't run analytics or tracking scripts, don't embed third-party pixels, and don't ask you for personal information just to read them. There is no consent banner because there is nothing to consent to.
Like every website, the hosting and network providers automatically record standard technical logs — such as your IP address, browser type, and the pages requested — so the site can be served, kept secure, and protected from abuse. I do not use these logs to identify or profile you.
If you contact me, join a waitlist, or buy something
If you reach out through a linked platform, request early access, or buy a product once those exist, the details you choose to share (such as your name or email) are used only to reply to you and to deliver and support what you asked for. They are never sold or shared for advertising.
Processors & third parties
These trusted services may process limited data on my behalf:
- Vercel — hosting and content delivery; handles request logs.
- Cloudflare — DNS and network security (protecting the site from attacks); may process request metadata.
- Gumroad — payments and buyer details for any products sold. Their own privacy terms apply.
Links out to GitHub, X, and other platforms are governed by those platforms' own privacy policies once you leave this site.
Where your data goes
Some of these providers operate outside the EU/EEA (for example in the United States). Where that happens, they rely on recognised safeguards such as the EU Standard Contractual Clauses to protect your data in line with EU law.
How long it's kept
Technical logs are retained only as long as needed to operate and secure the site, then rotated out by the providers. Anything you send me directly (like an email) is kept only as long as needed to help you, and deleted on request.
Your rights
If you're in the EU/EEA, the GDPR gives you the right to access, correct, delete, restrict, or object to the processing of your personal data, and to data portability. You can exercise any of these by contacting me through the links above, and I'll honour them. You also have the right to lodge a complaint with your local supervisory authority — in Italy, the Garante per la protezione dei dati personali.
Children
This site isn't directed at children and doesn't knowingly collect personal data from them. If you believe a child has sent me personal data, contact me and I'll delete it.
Changes
This policy will evolve as the site grows into more than a portfolio — especially once the API and products are live. When it changes, the date at the top will update.