My name is Stan Carey, and this is my editing website. As an editor and proofreader I try to ensure discretion and privacy for my clients and their texts. This page describes what data I use and how I use it, in keeping with the General Data Protection Regulation. GDPR is a set of rules on how data is collected, stored, and used in the European Union.

If you contact me about editing, proofreading, or writing work, I keep your contact details on my computer and phone, both of which are password-protected and used only by me. I use the details to communicate with you about ongoing or future work. They include name and email address, and sometimes phone number, website address, postal address, job title, or company or institution name.

I can correct or delete any such data upon request, or clarify what data I have retained. Contact details also appear on payment advice notes that clients may send me, print copies of which I keep securely in my home. I save clients’ names for the purposes of accounting; this data is seen only by me and my accountant. I can anonymize or pseudonymize it upon request. I don’t share clients’ contact details or work materials with anyone unless expressly permitted or instructed.

I work mainly with digital files, such as Microsoft Word documents, on a password-protected computer that only I use and have access to. Occasionally, when requested and by mutual agreement, I use online storage systems or word-processing software such as Dropbox or Google Docs.

To avoid loss of material through technical failure, I back up my work on an external hard drive, where it is saved indefinitely and kept securely in my home. This not only safeguards the work but can also be useful to clients who ask me to refer to previous work done. If asked, I can delete such files upon completion of a project.

I apply good computer hygiene, scanning my devices regularly with updated anti-virus and anti-malware programs. I use two-factor authentication, where possible, and a password manager recommended by digital-security experts. For my [email protected] email address I use Proton, a Swiss company with open-source, independently audited, end-to-end and zero-access encryption.

I use Google Analytics to review broad data on visitors to this website, such as country or source – for example, how many visitors come from Twitter, or through a Google search of certain key words. This data is deleted automatically after 14 months, the lowest available setting.

Readers who subscribe to my blog, Sentence first, usually do so by email. They can unsubscribe easily by clicking the relevant link. My WordPress and email accounts automatically keep records of subscribers, comprising email addresses and usernames. Blog comments also include IP addresses, which are not published in the comments but appear in the emails and WordPress system. I don’t use these records and can delete the emails upon request.

I value privacy and understand its importance. I regularly review my privacy settings, policies, and practices, and when appropriate I refine them, to ensure best practice in this area. Any significant changes or updates will be noted on this page. If you have any concerns, you can contact me by email at [email protected].