Privacy on this site
What information this site uses, why it is needed, and the choices available to visitors.
Contact information and purpose
The inquiry form collects name, email, inquiry intent, an optional organization, and a message so Saumya can assess and respond to the request. Do not submit client, patient, employer-confidential, credential, health, financial, or otherwise sensitive information.
The form checks each entry and uses short-lived anti-spam controls. Messages are sent by email and are not stored in a separate contact database. Form values are not added to page URLs, analytics, or application logs.
Processing is based on taking steps requested before a possible engagement and the legitimate interests of replying to genuine inquiries and protecting the service. Where a future optional feature asks for consent, that consent may be withdrawn by email without affecting earlier lawful processing.
Hosting, delivery, and inbox
Vercel hosts the site and processes the request information needed to serve pages and handle the contact form. Resend sends contact inquiries to Saumya’s Gmail inbox.
If email delivery is unavailable, the form shows an error. Direct email and Topmate links remain available.
Unconverted inquiries are deleted from Gmail after 90 days. Correspondence that becomes an active business relationship is reviewed after 12 months and may be retained longer only where a legal or contractual need applies.
Abuse protection and operational storage
When configured, Upstash stores a short-lived scrambled identifier to limit repeated form submissions. It does not store the visitor’s name, email, organization, or message. These records expire within seven days.
When configured, Cloudflare Turnstile receives the challenge token and limited network information needed to assess abuse. It does not receive the inquiry name, email, organization, or message from this site.
Security and delivery services may process data internationally. Saumya selects service terms and transfer safeguards appropriate to the relevant account and reviews processors and retention at least quarterly or whenever a vendor changes.
Analytics and error monitoring
When configured, Google Analytics 4 receives sanitized route-group page views and a small allowlist of interactions, such as contact submissions, Topmate clicks, case-study views, and speaking inquiries, through consent-denied cookieless measurement. The data stream keeps Enhanced Measurement disabled so Google does not add automatic history, scroll, outbound-click, or form events. The site’s analytics calls do not include form values, email addresses, messages, arbitrary query strings, dynamic page slugs, referrers, or raw 404 addresses.
When configured, Sentry receives limited error information so problems can be fixed. Personal details, form content, cookies, and network identifiers are removed. Session replay and personal-data collection are disabled.
Analytics storage, advertising storage, advertising user data, ad personalization, and Google Signals are disabled. No analytics or advertising cookies are set by this configuration, so no analytics cookie banner is shown. Google may process limited device and network metadata needed for cookieless measurement. Visitors using Global Privacy Control or Do Not Track do not load analytics. Scrubbed Sentry events are retained under the configured project retention window, targeted at no more than 30 days. This site uses no advertising pixel, cross-site profile, or session replay.
YouTube, Instagram, and embedded media
The Dashboard shows account totals from YouTube and Instagram. Upstash keeps YouTube observations for up to 30 days and Instagram observations for up to 90 days. The site does not load an Instagram feed or tracking script.
YouTube recordings use a click-activated facade. No YouTube player request is made until the visitor chooses to load the recording; the player then uses YouTube Privacy-Enhanced Mode, after which Google’s own privacy terms apply.
External links and direct channels
Links to Topmate, Gmail, LinkedIn, YouTube, Instagram, Medium, Sessionize, event organizers, and credential issuers leave saumyasmriti.com. Those destinations receive the normal information associated with visiting a link and are governed by their own privacy notices.
Choosing a mailto link opens the visitor’s email service rather than submitting through this site. Choosing Topmate opens its booking service. Review the destination policy before sharing information.
Choices, rights, and complaints
A visitor may request access, correction, or deletion of inquiry data, object to or restrict applicable processing, or ask how an international processor is used by emailing saumya.smriti@gmail.com. Saumya may need to confirm the requester’s identity before acting.
Visitors may also raise a concern with the data-protection authority applicable to them. Optional consent, if introduced and requested, may be withdrawn by the same email route. This site makes no sale of personal information and creates no advertising profile.
Changes and contact
This notice is updated when contact, hosting, analytics, monitoring, or social-data practices change.
For a privacy question or rights request about this personal site, email saumya.smriti@gmail.com or use the direct email route on the Contact page without including sensitive information.
Privacy question