Privacy policy.

Web analytics. We use Cloudflare Web Analytics — privacy-first analytics that does not set cookies, does not track individual visitors across sites, and does not share data with third parties for advertising. Aggregate page-view counts and referrer information are recorded via a JavaScript beacon; individual identification is not.

Server logs.Our hosting provider (Cloudflare or Vercel, depending on deployment) keeps standard request logs (IP address, user agent, request path, timestamp) for security and abuse-prevention purposes. Logs are rotated and deleted on the provider's schedule, typically within 30 days.

Email addresses. When the newsletter list opens, addresses you submit to subscribe are stored by our email service provider (ConvertKit or MailerLite, when active) for the purpose of delivering issues. You can unsubscribe in one click from any email and your address is removed.

Tip and correction submissions. Emails sent to tips@vialaudit.com, corrections@vialaudit.com, and the other published inboxes are received and stored in our mail provider (Cloudflare Email Routing or Forward Email) until we read and process them.

What we do not collect. No browser fingerprinting, no advertising cookies, no behavioural profiling, no data sales to third parties, no integration with ad-tech vendors. Affiliate links pass anonymous click-through tracking to vendors when you choose to follow them; we do not record who clicked what on our side.

Some links to vendors (typically routed through /go/[slug]) carry a tracking parameter identifying the referring publication so the vendor pays us commission on a resulting sale. The tracking does not identify you individually unless the vendor itself collects identifying information at checkout. That data flow is governed by the vendor's privacy policy, not ours.

See the full affiliate disclosure for the editorial firewall and what affiliate revenue does and doesn't change about coverage.

Operating the site involves a small number of third parties. Each processes only the data necessary for their stated purpose:

• Cloudflare — DNS, CDN, DDoS protection, email routing.
• Vercel or Cloudflare Pages — site hosting and request serving.
• Cloudflare Web Analytics — privacy-first analytics via a JavaScript beacon that does not set cookies.
• Resend — transactional and newsletter email delivery.

We do not set marketing cookies. The site uses essential session storage for navigation only. Cloudflare Web Analytics is cookieless by design. If we ever add a tool that requires consent (for example, embedded video with tracking), we will add a consent banner before deploying it.

Under GDPR (EU), CCPA (California), and similar frameworks, you have the right to:

• Request a copy of any personal data we hold about you.
• Request correction of inaccurate data.
• Request deletion of your data (right to be forgotten); we comply except where retention is required by law.
• Withdraw consent for any processing based on consent.
• Lodge a complaint with your local data protection authority. In the EU, find yours at the EDPB members directory.

For data requests, email privacy@vialaudit.com with the subject line “data request.” We respond within 30 days.

The content on this site discusses research-grade compounds and is not intended for individuals under 18 years of age. We do not knowingly collect data from minors. If you believe a minor has submitted personal data to us, contact privacy@vialaudit.com and we will delete it promptly.

Material changes to this policy are logged in the corrections log and the “last updated” eyebrow above is refreshed. We do not quietly rewrite the policy. Substantive changes affecting active users are also announced via the newsletter when active.