Privacy Policy
Wallendar (“Wallendar,” “we,” “us,” or “our”) is a public, anonymous space where people leave short notes on the wall for a given day. We built Wallendar to need as little personal information as possible. This Privacy Policy explains what we process, why we process it, how long we keep it, and the choices you have.
1. The short version
You do not need an account, name, or email address to read or post notes on Wallendar.
We do not sell your personal information. We do not currently serve ads or build advertising profiles about you. We process only what we need to operate the service, let you manage your own posts and reactions, prevent abuse, keep the community safe, and comply with the law.
Please do not post sensitive personal information about yourself or others. Notes are public by design.
2. What we process
Anonymous device token
When you first use Wallendar, a random identifier is created and stored in your browser’s local storage. This token helps you manage your own posts and reactions from the same browser and helps us prevent spam and abuse.
This token is not shown next to your posts and is not designed to identify you by name. If you clear your browser storage, you may lose the ability to manage posts made with that token.
Content you submit
We process the content you submit to Wallendar, including:
- the text of notes you post;
- the mood you choose;
- reactions such as “felt this” or “same here”;
- reports you submit;
- moderation-related records, such as whether a note was hidden, removed, or flagged.
Notes, moods, and some reactions are public and anonymous by design.
Technical and log data
Like most websites, our infrastructure and service providers may process technical data such as your IP address, browser type, device information, request timestamps, pages visited, and basic security logs.
We use this information to deliver the service, apply rate limits, detect spam, investigate abuse, prevent fraud, secure Wallendar, and comply with legal obligations.
When you post a note, we also store a one-way, salted hash of your IP address alongside the note. We do not store the raw IP address with your content. This hash is a pseudonymous network identifier that lets us enforce a ban against a network even if someone clears their browser token, and we use it only for abuse prevention and safety.
Approximate region
We may infer a coarse, country-level or region-level location from technical data to understand general usage patterns or provide region-based views. We do not collect precise GPS location.
Messages you send us
If you contact us by email, we process your email address and the content of your message so we can respond to you.
3. Why we process data
We process data to:
- operate Wallendar and display public walls;
- let you post, react to, and manage notes from your browser;
- prevent spam, scraping, abuse, fraud, and harmful content;
- review reports and moderate content;
- maintain service security and reliability;
- respond to your requests;
- comply with legal obligations.
Where the GDPR applies, our legal bases may include:
- performance of our terms with you;
- our legitimate interests in running, securing, improving, and protecting Wallendar;
- legal obligations;
- your consent, where required by law.
4. Cookies, local storage, and advertising
We use local storage to store your anonymous device token and basic preferences.
We use a privacy-friendly, aggregate analytics service to understand overall traffic and usage. It does not use cookies and is not designed to identify you personally.
We do not currently serve advertising and we do not currently use advertising cookies.
If we introduce ads or analytics tools that require consent, we will update this Privacy Policy. Visitors in regions that require consent, such as the EU/EEA and UK, will be asked for consent before we use cookies or similar technologies for personalized advertising or similar purposes.
5. Who we share data with
We do not sell your personal information.
We share data only when necessary with service providers who help us run Wallendar, such as infrastructure, hosting, security, content delivery, email, database, logging, or moderation service providers. These providers are allowed to process data only as needed to provide services to us and under appropriate safeguards.
We currently use Cloudflare for DNS, content delivery, security, and email routing.
We may also disclose information if required by law, legal process, or government request, or if we believe disclosure is necessary to protect the rights, safety, and security of Wallendar, our users, or others.
6. International transfers
Wallendar is intended as a global service. Your data may be processed in countries other than your own. Where required, we rely on appropriate safeguards, such as contractual protections or standard contractual clauses, to protect your information.
7. How long we keep data
Public notes may remain available until you delete them, they are removed under our Terms, or we no longer need to keep them for the service.
Your anonymous device token remains in your browser until you clear your browser storage.
Technical logs, including IP and abuse-prevention logs, are kept only for a limited period, typically around 30 days, unless we need to keep them longer to investigate abuse, protect the service, resolve disputes, or comply with legal obligations.
The salted hash of an IP address stored alongside a note is kept for as long as the note exists, and any hash recorded in a ban list is kept for as long as reasonably necessary to keep that ban effective. These hashes are used only for abuse prevention and safety.
Reports and moderation records may be kept for as long as reasonably necessary to protect the community and prevent repeated abuse.
Emails you send us may be kept as long as needed to respond to your request and maintain reasonable business records.
8. Your choices and rights
You can delete a note you posted if your browser still has the anonymous device token associated with that note. If you clear your browser storage, you may lose the ability to manage posts made with that token.
Depending on where you live, you may have rights to access, correct, delete, restrict, or object to the processing of your personal data, or to request a copy of it.
Because Wallendar is designed to be anonymous, we may not be able to identify data related to you unless you provide enough information for us to verify the request. We may also need to keep limited information where required for security, legal compliance, or abuse prevention.
To make a request, contact us at the email below.
9. Children
Wallendar is not directed to children. You must be at least 16 years old, or the minimum age required in your country to use online services without parental consent, to use Wallendar.
If you believe a child has provided information to Wallendar, contact us and we will take appropriate steps to remove it.
10. Security
We use reasonable technical and organizational measures to protect data. However, no online service can be completely secure.
Please do not post sensitive personal information, contact details, private addresses, financial information, health information, or information about other people without permission.
11. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date above. If we make material changes, we may provide a more prominent notice.
12. Contact
Questions or requests? Contact us at: