Privacy Policy & Legal Notice

Summary (Plain English) Transit Insider does not sell your data, does not run advertising networks, and does not require you to create an account. The site is a static archive. The only data we may collect is aggregated, anonymized analytics to understand which content is useful.

1. Who We Are

Transit Insider (domain: transit-insider.org) is an independent educational archive dedicated to the documentation and analysis of public transportation in Los Angeles County, California, United States. The site is operated by a private individual and is not a commercial entity, advertising platform, or data broker.

For editorial and content inquiries, the site's historical authority is described on the Kymberleigh Richards biography page.

2. Data We Collect

2a. Automatically Collected Data (Server Logs)

Like all websites, Transit Insider's hosting infrastructure automatically records standard server log entries that may include: your IP address (truncated or anonymized where technically feasible), the URL requested, your browser's User-Agent string, the referring URL, and the date and time of the request. This data is used exclusively for security monitoring and infrastructure capacity planning. Server logs are retained for a maximum of 30 days and are not shared with third parties.

2b. Analytics (If Enabled)

Transit Insider may use privacy-respecting analytics software that does not set cookies, does not fingerprint users, and does not share data with advertising networks. If analytics are active, they collect only aggregated page view counts and general geographic region (country/state level). No individual user profiles are created or stored.

2c. Data We Do Not Collect

We do not collect:

Names, email addresses, or contact information (no registration or contact forms)
Payment or financial information (no e-commerce)
Precise location data
Behavioral advertising profiles
Data from children under 13 (no interactive features)

3. Cookies

Transit Insider does not use tracking cookies, advertising cookies, or social media pixels. The site may set a functional session cookie if your browser requires one for HTTPS session management; this cookie contains no personal information and expires when you close your browser.

4. Third-Party Services

Transit Insider does not embed third-party advertising, social media sharing widgets, or third-party analytics that track users across websites. Any external links (for example, to LA Metro's official site, LAist, or academic sources) are provided for reference only. We are not responsible for the privacy practices of external sites.

5. California Consumer Privacy Act (CCPA)

California residents have the following rights under the CCPA (California Civil Code § 1798.100 et seq.):

Right to Know: You may request disclosure of any personal information we have collected about you. Given the nature of this static archive, we do not collect personal information beyond server log data as described above.
Right to Delete: You may request deletion of personal information. Server log entries containing IP addresses are purged within 30 days.
Right to Opt-Out of Sale: Transit Insider does not sell personal information. This right is not applicable.
Right to Non-Discrimination: We do not discriminate based on whether you exercise any CCPA rights.

6. General Data Protection Regulation (GDPR) — European Users

For users accessing the site from the European Economic Area (EEA), United Kingdom, or other jurisdictions covered by GDPR-equivalent legislation:

Lawful Basis for Processing: Server log data is processed on the basis of legitimate interests (security monitoring and infrastructure operation), as defined in GDPR Article 6(1)(f).
Data Retention: Server log data is retained for a maximum of 30 days.
Data Transfers: The site is hosted on servers within the European Union (Hetzner, Germany/Finland). No data is transferred to third countries without adequate safeguards.
Your Rights: You have the right to access, rectification, erasure, restriction of processing, and data portability under GDPR Articles 15–20. Given the minimal data collected, most of these rights have limited practical application for this site.
Right to Lodge a Complaint: You may lodge a complaint with your local Data Protection Authority (DPA) or with the relevant supervisory authority in Germany or Finland.

7. Security

Transit Insider is served exclusively over HTTPS with a valid TLS certificate. HTTP requests are automatically redirected to HTTPS. The site includes standard HTTP security headers including X-Content-Type-Options, X-Frame-Options, and a Content-Security-Policy that restricts script execution to first-party sources only.

8. Intellectual Property and Content License

The historical research, analysis, and writing published on Transit Insider represents original editorial work. Content may be quoted for educational or journalistic purposes with attribution. Reproduction of complete pages or articles for commercial purposes is prohibited without prior written permission.

Historical data (timetables, route numbers, ridership statistics) sourced from public agency records is not subject to copyright. Where Transit Insider has created original compilations, tables, or analyses of that data, those compilations are protected as original works.

9. Changes to This Policy

This privacy policy may be updated to reflect changes in applicable law or site operations. The effective date at the top of this page will be updated accordingly. Material changes will be noted in the site's update log.

10. Contact

For privacy-related inquiries, content correction requests, or permissions questions, the site's editorial history and contact context is available on the biography page. Transit Insider is not a commercial entity and does not have a customer service department; response times for non-urgent inquiries may be extended.