Last updated: May 26, 2026.
Scope
This policy covers orryelor.com and related site features: public pages, writing, the contact form, RSS feed, and future member-only or subscription features if they are enabled.
Information collected
- Contact form: name, email address, organization or affiliation, reason for reaching out, and message text.
- Member features: account email, subscription status, member updates viewed, and member-visible training or health summaries if those features are turned on.
- Connected-data features: only if explicitly connected by Orry, data from services such as WHOOP, Withings, or Cronometer may be processed for member-visible summaries.
- Technical logs: hosting providers may retain request logs, IP addresses, user-agent strings, security events, and deployment logs.
How the information is used
- To respond to employer, sponsor, nonprofit, media, coaching, or collaboration inquiries.
- To operate the site, protect it from spam and abuse, and troubleshoot delivery issues.
- To manage member access, subscriptions, private updates, and connected-data summaries if those features are turned on.
- To keep public writing, RSS entries, and source pages working.
Service providers
The site uses Cloudflare Pages for hosting. During the migration, the contact form may relay submissions through the existing Netlify form endpoint until a fully Cloudflare-native or transactional-email route is configured. Future or partially prepared features may use Supabase for account/database services, Stripe for subscriptions or payments, and provider APIs such as Withings, WHOOP, or Cronometer for connected health/training data. Those services process data according to their own policies.
Email and contact routing
The public site does not print a raw email address. Contact messages are submitted through the protected form and routed through a private server-side relay. Email forwarding is handled by the protected form route or a configured provider; the raw mailbox is not published on the public site.
Analytics, cookies, and tracking
No custom analytics script is intentionally included in the current public codebase. Hosting, security, payment, login, or member services may still use cookies, session storage, or request logs when needed to provide the service. If analytics or advertising pixels are added later, this policy should be updated before or at launch.
No sale of personal information
This site is not designed to sell personal information. If advertising, sponsorship tracking, or analytics features are added later, this policy should be reviewed and updated before launch.
Data retention
Contact-form submissions and operational logs are retained only as long as needed for communication, security, troubleshooting, legal, accounting, or abuse-prevention purposes. Member and subscription records, if enabled, may be retained while the account or subscription relationship exists and as required for records.
Access, correction, and deletion
Use the contact form to request access, correction, or deletion of personal information submitted through the site. Some information may need to be retained for security, legal, accounting, or abuse-prevention reasons.
Children
This site is not directed to children under 13. Do not send a child’s personal information through the contact form or future member features.
Updates
This policy may be updated as hosting, membership, analytics, payment, or provider-integration choices change.