self-hosted/ai
§01·legal

Privacy Policy

Template. This document is a starting point. Replace bracketed values via lib/legal/placeholders.ts and have a qualified lawyer review the wording for your jurisdiction (GDPR / EU, UKGDPR, CCPA, etc.) before relying on it.

Last reviewed: 2026-05-15

Who we are

Smeltcore (operated by Vadim Liavitski, Poland, "we", "us") publishes a community catalogue of benchmarks for running open-weights AI models on consumer hardware. The site is reachable at https://smeltcore.com.

For any privacy question contact support@smeltcore.com.

What we collect

We deliberately collect the minimum. Concretely:

  • Browser request metadata. Standard server logs at the CDN edge — IP address, user agent, referrer, timestamp, path. Used for security and aggregate traffic stats. Retained for [N] days then purged.
  • Newsletter subscription. When you submit the newsletter form: your email address and the surface you signed up from (footer, homepage, etc.). Stored in our subscriber list until you unsubscribe.
  • Benchmark submissions. When you submit a benchmark via /contribute: the values you typed (GPU, model, speed, etc.) plus, if you choose to provide it, your email and a source URL. Email is used only to follow up about your submission and is never shown publicly.
  • Cookie consent record. A single localStorage entry recording which categories you opted into. See Cookies for the full list of storage we use.
  • Anonymous analytics, if you opt in. Aggregated page-view counts via [ANALYTICS VENDOR — e.g. Mixpanel]. We do not enable analytics unless you explicitly accept it via the consent banner. No advertising, no behavioural tracking.

We do not collect:

  • Names
  • Phone numbers
  • Demographic data
  • Payment information (we don't sell anything)
  • Location beyond country level (inferred from IP for the request log only)

Legal basis (GDPR)

For visitors in the European Economic Area / UK we rely on:

  • Legitimate interest (Art. 6(1)(f) GDPR) for security logs and basic traffic stats.
  • Consent (Art. 6(1)(a) GDPR) for analytics. You can withdraw consent any time via the Cookie preferences dialog.
  • Contract performance (Art. 6(1)(b) GDPR) for newsletter delivery once you subscribe, and for reviewing the benchmarks you contribute.

Third parties we share with

  • [HOSTING / CDN PROVIDER, e.g. AWS] — serves the static site and processes request logs on our behalf as a [DATA PROCESSOR / SUB-PROCESSOR].
  • [ANALYTICS VENDOR] — receives anonymised page-view events only when you consent to analytics.
  • [EMAIL SERVICE PROVIDER, e.g. Resend] — receives your email address to deliver newsletter messages.

We do not sell or rent personal data.

Your rights

If you are in the EEA / UK / California, you have the right to:

  • Access — request a copy of the data we hold about you.
  • Rectify — correct inaccurate data.
  • Erase — request deletion (the "right to be forgotten").
  • Restrict / object — limit how we process your data.
  • Portability — receive your data in a machine-readable format.
  • Withdraw consent — at any time, without affecting the lawfulness of past processing.
  • Lodge a complaint with your supervisory authority.

To exercise any of these write to support@smeltcore.com. We respond within 30 days.

International transfers

[If applicable: Describe transfers outside EEA/UK and the safeguards relied upon — SCCs, adequacy decisions, etc.]

Security

Data is transmitted over HTTPS. Internal databases are encrypted at rest. Access is limited to operators with a documented business need.

Changes to this policy

Material changes are communicated by bumping the LAST_REVIEWED date and, where the changes affect consent, by re-prompting via the banner.