Privacy Policy — Desk Habit
Legal

Privacy Policy

Last updated: April 3, 2026  ·  Applies to deskhabit.space and all associated subdomains

Section 01

Introduction & Scope

This policy explains what data Desk Habit (deskhabit.space) collects, why it collects it, and what you can do about it. It covers every page on this domain and any email communications tied to the site’s newsletter.

The short version: we collect the minimum we need to run the site and the newsletter. We don’t sell data. We don’t share it with advertisers. We don’t use dark patterns to get you to hand over more than you intend to. If you have questions, the contact section at the bottom of this page has a direct email address and a realistic response time.

“We,” “us,” and “Desk Habit” refer to the operator of deskhabit.space. “You” refers to any person who visits the site, subscribes to the newsletter, or otherwise interacts with this domain.

Section 02

What Data We Collect

We collect data in two situations: when you give it to us directly, and when it’s collected automatically as a side effect of you using the site.

Data you give us directly

  • Email address — if you subscribe to the newsletter. Nothing else is required.
  • Name — optional, used only for personalizing email salutations if provided.
  • Any message content — if you contact us via email. Stored only for as long as the conversation requires.

Data collected automatically

  • IP address — collected by our hosting provider and analytics tool; used for geographic aggregates, not individual tracking.
  • Browser type and OS — used to understand how the site renders across different environments.
  • Pages visited and time on page — aggregate data used to understand which content is useful. Not tied to individual identities.
  • Referrer URL — how you arrived at the site (search engine, link, direct). Used for aggregate traffic analysis only.
  • Cookie data — see Section 04 for full details.
Section 03

How We Use That Data

Every piece of data we hold has a specific, limited purpose. We don’t collect data speculatively or “in case it’s useful later.”

  • Email address — used to send the newsletter you signed up for. That’s it. It is not shared with any third party for marketing purposes.
  • Analytics data — used to understand which reviews get read, which categories get ignored, and whether the site performs correctly across different devices. All in aggregate.
  • Contact messages — used to respond to you. Retained only until the conversation is resolved.
  • IP addresses — used to generate country-level traffic data and to flag spam. Not stored individually after the session ends.

We do not build profiles. We do not use behavioral advertising. We do not run retargeting. If a data point isn’t doing one of the jobs described above, we don’t collect it.

Section 04

Cookies & Tracking Technologies

We use cookies for three things: keeping the site functional, running basic analytics, and tracking Amazon affiliate link clicks (which is required by the Amazon Associates program — see Section 05).

Functional cookies

These keep the site working as expected — things like remembering your newsletter preference state. They expire when you close the browser or within 24 hours.

Analytics cookies

We use a privacy-respecting analytics tool that doesn’t use fingerprinting and anonymizes IP addresses before storage. These cookies collect aggregate data about page visits. They do not track you across other sites and do not identify you individually.

Affiliate tracking cookies

When you click an Amazon affiliate link, Amazon places a cookie in your browser for 24 hours. This cookie allows Amazon to attribute any purchase you make during that session to this site, which is how we earn a commission. This is governed by Amazon’s own privacy policy, not ours.

You can opt out of cookies by adjusting your browser settings. Be aware that disabling functional cookies may affect parts of the site.

Section 05

Amazon Associates Disclosure

Desk Habit is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to Amazon.com.

This means: when you click a product link on this site and make a purchase on Amazon within the affiliate window (typically 24 hours), we receive a small commission at no extra cost to you. The price you pay is identical whether you arrive through an affiliate link or navigate directly.

All affiliate links on this site are marked or disclosed within the review or article context. Commission rates do not influence ratings or recommendations — the scoring process is completed before any affiliate relationship is considered. Products that earned bad reviews are left with bad reviews, regardless of commission potential.

Section 06

Third-Party Services

We use a small set of third-party tools to run the site. Each one has been chosen because it handles data responsibly. Here’s what they are and what they do:

  • WordPress.org — content management. Site content is stored on our hosting server, not on WordPress.com.
  • Email service provider — used to send the newsletter. Stores your email address and send/open metrics. You can unsubscribe at any time via the link in every email.
  • Privacy-first analytics — aggregate traffic data only. Does not use third-party cookies and does not track individuals across sites.
  • Amazon Associates — affiliate tracking. Subject to Amazon’s own privacy policy when you click through to amazon.com.

We do not use Facebook Pixel, Google Ads remarketing tags, TikTok Pixel, or any other behavioral advertising SDK. If that changes, this section will be updated before the change takes effect.

Section 07

Data Security

The site is served over HTTPS. Subscriber email addresses are stored with our email service provider behind industry-standard encryption. We do not store credit card information — all purchases happen on Amazon, not on this site.

No security measure is absolute. If a breach occurs that affects your data, we will notify affected subscribers within 72 hours of becoming aware of it, as required under GDPR. The notification will include what was affected, what we’re doing about it, and what you can do.

Data we no longer need gets deleted. Contact messages older than 6 months are removed on a rolling basis unless there’s an active reason to keep them.

Section 08

GDPR & EU User Rights

If you are located in the European Economic Area, you have the following rights under the General Data Protection Regulation (GDPR):

  • Right of access — you can ask what data we hold about you.
  • Right to rectification — you can ask us to correct inaccurate data.
  • Right to erasure — you can ask us to delete your data. For newsletter subscribers, this means deleting your email address and all associated send/open records.
  • Right to restrict processing — you can ask us to pause using your data while a dispute is resolved.
  • Right to data portability — you can ask for a copy of your data in a machine-readable format.
  • Right to object — you can object to processing based on our legitimate interests.

Our legal basis for processing newsletter subscriber data is consent — you opted in, and you can withdraw that consent at any time by unsubscribing. Our legal basis for analytics data is legitimate interests, specifically understanding how the site is used to improve it.

To exercise any of these rights, email us at the address in the contact section below. We’ll respond within 30 days.

Section 09

Your Controls & Choices

You have real options here, not just nominal ones.

  • Newsletter unsubscribe — every email has an unsubscribe link at the bottom. One click. No re-confirmation loop, no “are you sure?” page. Your address is removed within 48 hours.
  • Cookie opt-out — browser-level cookie settings apply here. We don’t use a cookie consent wall for functional cookies (they’re necessary for the site to work), but you can clear or block them at any time.
  • Analytics opt-out — our analytics tool respects the Do Not Track browser header. If you have DNT enabled, you will not be counted in our site analytics.
  • Data deletion request — email us and we’ll delete what we hold. Newsletter: email + send history gone within 5 business days. Contact thread: deleted immediately on request.
Section 10

Children’s Privacy (COPPA)

This site is not directed at children under 13 and does not knowingly collect data from anyone under 13 years of age. The content here — desk accessories, ergonomic office gear, home office products — is aimed at working adults.

If we become aware that we’ve inadvertently collected personal information from a child under 13, we will delete it promptly. If you believe a child under 13 has provided us with personal information, please contact us at the address below.

Section 11

Changes to This Policy

When we update this policy, the “Last updated” date at the top of the page changes. If the change is material — meaning it affects how we use data in a way you might not expect — we’ll send a notice to newsletter subscribers before the change takes effect.

Minor clarifications, typo fixes, and formatting changes don’t get a subscriber notice. Anything that changes what we collect, why we collect it, or who we share it with does.

Continued use of the site after a material change constitutes acceptance of the updated policy. If you don’t agree with a change, the right move is to unsubscribe and stop using the site — and the unsubscribe process is described above, in Section 09.