type: decision
status: active
timestamp: 2026-06-20
tags: [privacy, legal, branding, decisions, oriz-in, compliance]

Family-wide /privacy page on oriz.in

Locked 2026-06-20: single canonical /privacy on oriz.in

Family-wide /privacy page on oriz.in

Decision

The master site at the apex (oriz.in) publishes one canonical privacy policy at oriz.in/privacy. Every other surface in the family — every site (*.oriz.in), every browser / VS Code extension, every Cloudflare Worker, every CLI — links to that URL as the legal source of truth and adds a per-surface addendum only where the surface introduces new disclosures (e.g. extension permission lists, site-specific data flows).

The pre-existing per-extension privacy policy policy is refined by this decision, not superseded:

Why

The user’s direction was: ”+ family-wide /privacy on oriz.in”. Three reasons make it the right shape:

  1. One operator, one policy — every family surface is operated by the same person; data-flow patterns are common (Firebase Auth
    • Firestore + Cloudflare Pages); rewriting boilerplate per surface means drift.
  2. One URL to update — when GDPR / DPDP / CCPA disclosure requirements change (annual review per existing policy), updating oriz.in/privacy propagates the change family-wide without re-deploying every site / extension / worker.
  3. Cleaner store-listings — Chrome Web Store / Firefox / Edge / VS Code Marketplace each demand a privacy URL on the listing. Pointing at oriz.in/privacy/extension/<name> (an addendum) is accurate and store-policy-compliant; the addendum links back to /privacy for the boilerplate.

Page layout (locked)

oriz.in/privacy                          ? canonical, family-wide
+-- /privacy/<site>                      ? per-site addendum (when needed)
¦   e.g. /privacy/blog, /privacy/me
+-- /privacy/extension/<name>            ? per-extension addendum
¦   e.g. /privacy/extension/oriz-bookmarks
+-- /privacy/worker/<name>               ? per-worker addendum (when needed)
¦   e.g. /privacy/worker/api, /privacy/worker/s
+-- /privacy/cli/<name>                  ? per-CLI addendum (when needed)

Addenda exist only when the surface has surface-specific disclosures. A purely-local extension that makes no network requests does not need an addendum — the family boilerplate covers it.

Implications

Cross-refs


Edit on GitHub · Back to index