Skip to content
Ashright

Privacy

Last updated: May 2026

Who we are

Ashright is operated by Ethan Ashright (Netherlands / Europe). This page describes how personal data is handled on ashright.com and related services.

What we collect

  • Account data — name, email address, and a hashed password if you create an account.
  • Contact messages — name, email, message content, and reason when you use the contact form.
  • Security logs — sign-in events, password changes, and similar actions, with a hashed IP address (not your full IP stored in plain text).
  • Session data — cookies that keep you signed in, plus a locale preference cookie for language (EN / NL / UA).

Why we use it

To operate the platform, respond to messages, secure accounts (including two-factor authentication and password reset emails), and improve reliability. We do not sell your data. We do not use third-party advertising trackers.

Email provider

Transactional email (verification, password reset, security notices) is sent via Resend. Their privacy policy applies to that processing.

Hosting

The site and database are hosted with standard cloud providers (e.g. Vercel, Neon PostgreSQL). Data may be processed in the EU or other regions depending on provider configuration.

Retention

Account data is kept while your account exists. Contact messages are kept until handled or removed by an administrator. Security logs are kept for a reasonable period for abuse prevention. You can delete your account from security settings (non-admin accounts).

Your rights

You may request access, correction, or deletion of your data by contacting us at the email on the contact page, or by using in-app account tools where available. If you are in the EU/EEA, you may also have rights under GDPR.

Changes

This policy may be updated as the platform grows. Material changes will be reflected on this page.