1. Who are we?
TrendsOnFire is an independent editorial business intelligence platform covering trends in retail, e-commerce, people & transformation, and technology. The website is accessible at https://trendsonfire.com.
Data Controller:
Olga Bressers / TrendsOnFire
The Netherlands
E-mail: olga.bressers@gmail.com
LinkedIn: linkedin.com/in/olgabressers
For questions about this privacy policy or the processing of your personal data, please contact us via the e-mail address above.
2. What personal data do we collect?
2.1 Data you actively provide
We only collect data that you voluntarily provide to us:
- E-mail contact: your name and e-mail address, when you contact us directly via e-mail. This data is used solely to respond to your message.
TrendsOnFire does not require account registration or login. We do not ask visitors to enter personal data to use the site.
2.2 Data collected automatically
When you visit our website, our hosting provider (GitHub Pages / GitHub, Inc.) automatically records technical server log data. This is standard logging that all web servers maintain:
- IP address
- Date and time of visit
- Pages visited
- Referring website (referrer)
- Browser type and operating system
This data is necessary for the technical operation of the website, error detection, and security. It is not linked to individual user profiles and is controlled by GitHub, Inc. under their own privacy policy.
2.3 Analytics data
We do not use Google Analytics or any other third-party analytics services that process personal data. If we implement analytics in the future, we will update this privacy policy and obtain your consent where required.
3. Purpose and legal basis for processing
We process personal data only for the following purposes and on the following legal bases (Article 6 GDPR):
| Purpose | Legal basis |
|---|---|
| Responding to contact requests | Legitimate interest / performance of contract (Art. 6(1)(b)/(f) GDPR) |
| Technical operation and security of the website | Legitimate interest (Art. 6(1)(f) GDPR) |
| Compliance with legal obligations | Legal obligation (Art. 6(1)(c) GDPR) |
We never process more data than is necessary for the stated purpose (data minimisation principle).
4. Cookies
Cookies are small text files stored on your device when you visit a website. TrendsOnFire itself does not set any tracking or marketing cookies.
4.1 Functional cookies (strictly necessary)
Our hosting provider (GitHub Pages) may set strictly necessary cookies for the technical delivery of the website (CDN routing, security). These do not track your behaviour and do not require consent.
4.2 Analytics cookies
We do not use any analytics cookies. If this changes in the future, we will ask for your consent first.
4.3 Marketing and tracking cookies
TrendsOnFire does not use affiliate links, advertising networks, or marketing cookies of any kind.
| Cookie | Type | Purpose | Retention | Party |
|---|---|---|---|---|
tof_cookie_notice | Functional | Stores visitor's cookie notice acknowledgement | 1 year | TrendsOnFire (own) |
| GitHub Pages CDN cookies | Functional | Technical delivery and security of the website | Session | GitHub, Inc. (third party) |
4.4 Disabling or deleting cookies
You can disable or delete cookies at any time via your browser settings. Please note that disabling cookies may affect the functionality of some websites. Instructions for common browsers:
5. Sharing with third parties
We never sell, rent, or trade your personal data with third parties for commercial purposes. We may share data in the following limited cases:
5.1 Hosting provider
GitHub, Inc. — our hosting provider — processes technical log data as part of the hosting service. GitHub Pages is operated by GitHub, Inc., headquartered in the United States. GitHub participates in the EU–US Data Privacy Framework. GitHub's privacy policy is available at GitHub Privacy Statement.
5.2 Legal obligation
We may disclose data to competent authorities if we are legally required to do so (e.g., by court order or law enforcement request).
In all other cases, we do not share your data with third parties without your explicit consent.
6. Retention periods
We retain personal data no longer than necessary for the purpose for which it was collected:
| Type of data | Retention period | Reason |
|---|---|---|
| E-mail correspondence (contact requests) | Maximum 2 years | Handling and potential follow-up |
| Server log files (technical) | Determined by GitHub (typically up to 90 days) | Technical operation and security |
| Cookie notice preference | 1 year | Avoid showing notice banner again |
After the retention period expires, data is securely deleted or anonymised.
7. Security
We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, destruction, or disclosure:
- HTTPS/TLS: all connections to our website are encrypted via SSL/TLS
- Hosting: GitHub Pages provides enterprise-level infrastructure security, including DDoS protection
- Minimal data collection: we collect as little personal data as possible (privacy by design)
- Access restriction: only authorised persons have access to any data we process
Despite our security measures, no method of internet transmission or electronic storage is 100% secure. We cannot guarantee absolute security, but we take all reasonable steps to protect your data.
8. Your rights under the GDPR
Under the General Data Protection Regulation (GDPR), you have the following rights regarding your personal data:
You have the right to know what personal data we process about you and to receive a copy.
You have the right to have inaccurate or incomplete personal data corrected.
You have the right to have your personal data deleted ("right to be forgotten"), unless we are legally required to retain it.
You have the right to restrict the processing of your data in certain circumstances.
You have the right to receive your data in a structured, commonly used format to transfer to another party.
You have the right to object to processing based on legitimate interests, including profiling.
Where we process your data based on consent, you may withdraw that consent at any time without consequence.
We do not use automated decision-making or profiling that has legal effects on you.
How to exercise your rights
Send an e-mail to olga.bressers@gmail.com with a clear description of your request. We will respond within 30 days (the legally required timeframe). We may ask for verification of your identity.
9. Filing a complaint with the supervisory authority
If you believe we are not processing your personal data in accordance with the GDPR, you have the right to lodge a complaint with the Dutch supervisory authority:
Autoriteit Persoonsgegevens (AP)
Postbus 93374 · 2509 AJ The Hague, Netherlands
Telephone: +31 88 180 52 50
Website: autoriteitpersoonsgegevens.nl
We kindly ask you to contact us first so that we can investigate and, if necessary, resolve your concern.
10. Changes to this privacy policy
We reserve the right to update this privacy policy at any time, for example due to changes in our services, technology, or legislation. The most current version is always available at trendsonfire.com/legal/privacy.html.
For significant changes that affect your rights, we will announce this on the website. We recommend reviewing this page periodically.
Version: 1.0 · Published: March 2026 · Last updated: March 2026
Privacy questions?
For questions, requests, or comments about this privacy policy or the processing of your personal data, please reach us at:
We aim to respond within 5 business days, and in any case within the legal deadline of 30 days.