This page summarizes how Markdown Viewer approaches the EU General Data Protection Regulation (GDPR) and the UK GDPR where those laws apply. It supplements our Privacy Policy, which describes what we collect in plain language.

Who is responsible?

The operator of this website is the data controller for any personal data processed in connection with delivering Markdown Viewer at trymarkdownviewer.com. For practical enquiries you can reach us via our public GitHub repository (issues or discussions), consistent with our Privacy Policy.

What personal data do we process?

The service is designed so that Markdown you edit stays in your browser (local storage). We do not ask you to create an account for core editing features.

Infrastructure and optional analytics may involve limited personal data:

Server and CDN logs. Our hosting provider may process technical data such as IP address, timestamp, requested URL, and user agent for security, reliability, and abuse prevention.
Optional aggregated analytics. If enabled on a particular deployment, tools such as Google Analytics may process pseudonymous identifiers and usage events. Where required, we rely on appropriate consent or configuration consistent with applicable law and our Privacy Policy.
Browser storage on your device. Theme and draft preferences are stored locally in your browser and are not transmitted to us as document content.

Legal bases (GDPR Articles 6 & 9)

Depending on the processing activity, we rely on:

Legitimate interests (Article 6(1)(f)) — operating and securing the site, preventing fraud or misuse, and understanding aggregated traffic where analytics are used, balanced against your rights.
Consent (Article 6(1)(a)) — where required for non-essential cookies or similar technologies (for example certain analytics or marketing tags), presented where applicable via your browser or any consent UI offered on the site.

We do not intentionally process special categories of personal data (Article 9) through this website. Please avoid pasting sensitive personal information into public issue trackers when contacting us.

International transfers

Hosting and analytics providers may process data in the United States or other countries. Where personal data is transferred outside the UK or EEA, we rely on appropriate safeguards where required (such as Standard Contractual Clauses or equivalent mechanisms) offered by our subprocessors, in line with their published documentation.

Retention

Server logs are retained according to our hosting provider's policies (typically rolled off after a limited period for operational purposes). Locally stored drafts and preferences remain on your device until you clear site data in your browser.

Your rights

If GDPR or UK GDPR applies to our processing of your personal data, you may have the right to:

Access — obtain confirmation as to whether we process personal data about you and receive a copy where applicable.
Rectification — correct inaccurate personal data.
Erasure — request deletion where grounds apply.
Restriction — request restriction of processing in certain cases.
Data portability — receive personal data you provided in a structured, commonly used format where processing is based on consent or contract and is automated.
Object — object to processing based on legitimate interests, including profiling in limited scenarios.
Withdraw consent — where processing is consent-based, without affecting the lawfulness of prior processing.
Lodge a complaint — with your local supervisory authority (for example, in the EEA with your national authority listed by the EDPB; in the UK with the ICO).

Because most editorial content never leaves your device, many requests will relate only to server logs or support correspondence rather than your Markdown drafts.

Automated decision-making

We do not use automated decision-making or profiling that produces legal or similarly significant effects within the meaning of GDPR Article 22 in connection with this site.

Children

The site is not directed at children. We do not knowingly solicit personal data from children without parental consent where required by law.

Changes

We may update this notice occasionally. The "Last updated" date above reflects the latest substantive revision. Continued use of the site after changes constitutes your acknowledgement of the updated notice where permitted by law.

GDPR & UK GDPR — Information for Visitors