Privacy Policy

Who we are is run by Steve Neff.  I take your online privacy seriously.  This privacy policy explains the privacy practices I follow and how they affect you.

What personal data I collect and why I collect it

I may collect Personal Information from you in the course of your use of my website and related products and services. This Personal Information may include the list below and is only collected if you choose to give it to make a purchase or comment on the site.

  • First and last name
  • Email address
  • Phone number (optional)
  • Address
  • Any personal information you post on our website
  • Any information you provide us directly


When visitors leave comments on the site I collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using a gravatar (image you selected to be posted when you comment on the internet) .  After approval of your comment, your profile picture and name is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

If you contact me via the contact page of my site you are asked to give your name and email address.  These are just used to respond to you and any messages sent to me are usually deleted after our communication is finished.  Your email address is safe with me and under no circumstances do I ever share it or add it to a mailing list without your permission.  The only way to join my mailing list is for you to join it yourself on the website by filling out the mailing list form and giving your permission.


If you leave a comment on my site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site,  a temporary cookie will be used to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in,  several cookies will be used to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

Here are a list of the cookies used on this site:

  • _utmz tracks where a visitor came from (search engine, search keyword, link)
  • _utma stores each user’s number of visits, time of the first visit, the previous visit and the current visit
  • _utmb and _utmc checks how long a visitor stays on the site: when a visit starts and ends
  • _utmt used to throttle request rate

Duration of cookies:

  • _utma expires two years after your last visit to this site
  • _utmb expires 30 minutes after your visit, or after 30 minutes of inactivity
  • _utmc expires at the end of a session (when you close your browser)
  • _utmz expires six months after it was last set

Where it is used: all pages of the Neffmusic website

Impact on user’s experience of the site: none

To keep track of cart data, the WooCommerce store makes use of 3 cookies:

  • woocommerce_cart_hash
  • woocommerce_items_in_cart
  • wp_woocommerce_session_

The first two cookies contain information about the cart as a whole and helps WooCommerce know when the cart data changes. The final cookie (wp_woocommerce_session_) contains a unique code for each customer so that it knows where to find the cart data in the database for each customer. No personal information is stored within these cookies.

These tracking cookies are used to provide analytics tracking.

  • gs_u_{PROJECT_TOKEN} – used for tracking your device info when browsing. This cookie lasts for 2 years.
  • gs_p_{PROJECT_TOKEN} – keeps track of a visitor’s previously viewed page throughout their browsing session. This cookie lasts for a max of 60 seconds or until the next pageview, whichever is sooner.
  • gs_v_{PROJECT_TOKEN} – this is used for storing your visitors ‘identified’ id. This cookie lasts for 2 years.


It is standard procedure for websites to collect usage data automatically for the purpose of analytics.  This information may include, but is not limited to technical data such as your IP address, browser type, browser version, pages visited, date and time stamps, referring site, and other related information.

Who I share your data with

I share no data from the site except with Paypal which is the payment processor.  If you choose to pay with the Paypal option you will be taken to the Paypal website where you will enter your Paypal login information on their SSL secured Paypal page.

If you choose to pay using a credit card on my site, then any information you enter is entered on a SSL secured page and Paypal receives the information given through encryption and then processes the credit card payment.  SSL is the industry standard for payment encryption technology.  No payment information is ever stored or able to be seen at

I also use a plugin to allow visitors to the site the ability to log in using Facebook, Google, Linkdin and Twitter. None of your login information for those sites is available to me.  You would have to read each of those sites privacy policies to see their privacy policies.

How long I retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on my website, I also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). I, as the website administrator can also see and edit that information but I cannot see passwords as they are encrypted.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data I hold about you, including any data you have provided to me. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your contact information

Your contact information such as your name, email address and address are not shared with anyone except Paypal which needs that information to process payments.

How I protect your information

The security of your information is very important to me. All checkout pages on the site use SSL technology. SSL (Secure Sockets Layer) is a standard security protocol for establishing encrypted links between a web server and a browser in an online communication. The usage of SSL technology ensures that all data transmitted between the web server and browser remains encrypted.

The data being held by is also secured behind firewalls and encrypted passwords. No financial data whatsoever is stored at but is processed by

Changes to this Privacy Policy

I may change this Privacy Policy from time to time at my sole discretion. I encourage you to check this page periodically for any changes.

If you have any questions or concerns about this Privacy Policy, please contact me vis the website contact page.    Thanks,   Steve Neff