惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
人人都是产品经理
人人都是产品经理
Cisco Talos Blog
Cisco Talos Blog
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
V
V2EX
博客园 - 三生石上(FineUI控件)
Martin Fowler
Martin Fowler
WordPress大学
WordPress大学
D
Docker
S
SegmentFault 最新的问题
博客园 - 聂微东
美团技术团队
Apple Machine Learning Research
Apple Machine Learning Research
月光博客
月光博客
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Last Week in AI
Last Week in AI
M
MIT News - Artificial intelligence
F
Fortinet All Blogs
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
The GitHub Blog
The GitHub Blog
GbyAI
GbyAI
L
LangChain Blog
Vercel News
Vercel News
博客园 - 叶小钗
MongoDB | Blog
MongoDB | Blog
Stack Overflow Blog
Stack Overflow Blog
H
Help Net Security
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
The Cloudflare Blog
Engineering at Meta
Engineering at Meta
T
Threat Research - Cisco Blogs
T
Threatpost
Scott Helme
Scott Helme
T
Tailwind CSS Blog
Latest news
Latest news
Stack Overflow Blog
Stack Overflow Blog
Blog — PlanetScale
Blog — PlanetScale
The Register - Security
The Register - Security
罗磊的独立博客
P
Proofpoint News Feed
腾讯CDC
S
Schneier on Security
雷峰网
雷峰网
A
About on SuperTechFans
T
Tenable Blog
F
Full Disclosure
Cyberwarzone
Cyberwarzone
博客园_首页
有赞技术团队
有赞技术团队
K
Kaspersky official blog

文章列表

Compulsive curiosity, or, how I built an infinite idea machine Gift details on the subscriber portal Portal link in the archive nav First, add no friction: How micropayments lost and subscriptions won Filter subscribers and automations by source Automations, rebuilt What email will look like in the future Filter subscribers by bounce date and reason Email could have been X.400 times better Three features are moving behind the paywall Firewall changes and improvements Put your name and voice into your company newsletter Subscription wall Simplified email address settings Inboxes were overwhelming before we'd even named them The US government tried really hard to screw up email Public postmortem: database connection exhaustion Ask a nerd: what is the best way to unsubscribe from newsletters? Bookshop.org embeds Email was into agents before they were cool Passwordless login Rename metadata keys in bulk Ask a nerd: what happens when you click the spam button? Passkey support for two-factor authentication How Buttondown's API versioning works Safer defaults for the email creation API How to send email to space How we enabled Content Security Policy for everyone Recovery codes for two-factor authentication Filter sent emails by engagement rate How we migrated to TypeIDs without breaking clients
A spring cleaning for our legal docs
Justin Duke · 2026-03-16 · via

tl;dr

None of the below changes reflect any shift in our stance on anything: we just clarified some outdated legalese, removed incorrect info (such as boilerplate copy about "sharing with third-party advertising companies", which we've never done), and pulled out our subprocessors into a formal table.

We just pushed a round of updates to our legal pages — partly prompted by good feedback from a customer working through GDPR compliance on their end, and partly because some of these docs were overdue for a refresh. Here's what changed:

Data processing agreement

Our DPA now includes:

  • A processing details annex (Annex 1), spelling out the subject matter, duration, types of personal data, and categories of data subjects — everything Article 28(3) of the GDPR asks for.
  • A reference to our sub-processor list in Section 5, so you have a stable URL to point to in your records.
  • A GDPR precedence clause in Section 12, clarifying that EU, UK, and Swiss data protection law takes priority over US governing law where there's a conflict.
  • An updated international transfers section (Section 8) that honestly acknowledges data is processed in the US and references Standard Contractual Clauses as the transfer mechanism.

Privacy policy

The privacy policy hadn't been updated since October 2019 — long overdue. The main changes:

  • Removed a reference to third-party advertising companies that was carried over from a template we used years ago. Buttondown has never shared subscriber data with ad networks, and the old language contradicted what we say on our GDPR compliance page. It's gone now.
  • Updated contact information from a personal email to support@buttondown.com across the board.
  • Fixed a broken anchor link and a heading formatting inconsistency.

Sub-processor list

We added two missing entries to our sub-processor list: Stripe (payment processing) and Seline (privacy-focused analytics, which replaced Vercel Analytics earlier this year).

GDPR compliance page

The GDPR page previously said data was only shared "for the purposes of sending your newsletter" — but sub-processors like AWS, Cloudflare, and Sentry aren't really about newsletter delivery. We updated the language to "providing the service" and linked directly to the sub-processor list and DPA.

Cookie policy

We also published a new cookie policy that documents every cookie Buttondown sets, organized by category: essential, functional, and analytics. No third-party advertising cookies, no surprises.

If you're working through your own GDPR compliance and something's missing or unclear, let us know — this latest round of updates came directly from a customer asking good questions.

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。