Privacy Policy
Last updated: June 2026
Potterish (potterish.com) is operated by Marcelo Pereira das Neves / Potterish Limited. This Privacy Policy explains how we collect, use, store and protect your personal information when you visit our site, in compliance with the Lei Geral de Proteção de Dados (LGPD — Law No. 13,709/2018), the EU General Data Protection Regulation (GDPR), the UK GDPR and other applicable laws.
1. Who we are
Data controller: Potterish Limited / Marcelo Pereira das Neves
Site: https://potterish.com
Contact: privacy@potterish.com
Founded: 2002
Potterish is an independent fan site dedicated to the Harry Potter universe, J.K. Rowling, Fantastic Beasts and the HBO Harry Potter series. We have no affiliation with Warner Bros., J.K. Rowling or HBO.
2. Data we collect
- Comments: name, email and IP recorded by WordPress.
- Polls: anonymous votes to prevent duplicate voting.
- Navigation data: IP, browser, pages visited, traffic source (via Google Analytics).
- YouTube embeds: data collected by Google when embedded videos are played.
- Amazon affiliates: when you click affiliate links you are redirected to Amazon, which has its own policy.
3. Legal bases for processing
| Purpose | Legal basis |
|---|---|
| Site operation and content display | Legitimate interest (Art. 7 IX LGPD / Art. 6(1)(f) GDPR) |
| Analytics and advertising | Consent (Art. 7 I LGPD / Art. 6(1)(a) GDPR) |
| Comments | Consent (Art. 7 I LGPD / Art. 6(1)(a) GDPR) |
| Security and fraud prevention | Legitimate interest (Art. 7 IX LGPD / Art. 6(1)(f) GDPR) |
| Legal obligations | Legal obligation (Art. 7 II LGPD / Art. 6(1)(c) GDPR) |
4. Your rights
Under the LGPD and GDPR you have the right to access, correct, delete, restrict or port your data, and to object to processing or withdraw consent at any time without affecting prior processing.
To exercise your rights: privacy@potterish.com. We respond within 15 business days (LGPD) / 30 days (GDPR).
5. Supervisory authorities
- Brazil (ANPD): www.gov.br/anpd
- EU: your local data protection authority
- UK — ICO: ico.org.uk
6. Data retention
- Access logs: minimum 6 months (Brazilian Internet Act, Law 12,965/2014).
- Comments: retained while the article exists, unless deletion is requested.
- Analytics data: as configured by Google (default: 14 months).
7. Security
We use HTTPS throughout the site, restricted access controls and security monitoring. In the event of an incident involving risk of harm, we will notify the ANPD and affected users as required by law.
8. Children
We do not knowingly collect personal data from children under 13 without parental consent. If you believe we have inadvertently collected such data, contact us and we will delete it immediately.
9. Changes to this policy
We may update this policy periodically. The “last updated” date at the top indicates when significant changes were made.
10. Contact and Data Protection Officer
Email: privacy@potterish.com
DPO: Marcelo Pereira das Neves
This post is also available in:
