Skip to content
Lewis Crook
Trust

Trust, privacy & security

This page is maintained by Lewis Crook to answer common security and privacy questions about lewiscrook.com. It is editable project content, not an independent certification or audit.

What this site collects

lewiscrook.com is an informational publication. There is no public user account system, no checkout, and no payment data collected. The newsletter signup is handled by Substack; submitting your email shares it with Substack under their terms.

Hosting and platform

The site is built and hosted on Lovable, with a managed Lovable Cloud database backing a small number of published article pages. Lovable provides platform-level controls (TLS termination, managed hosting, managed database access). Lewis Crook is responsible for the content of this site and for how those controls are configured.

Subprocessors

  • Lovable / Lovable Cloud — hosting and database.
  • Substack — newsletter delivery and archive.
  • PostHog — product analytics (page views, navigation).

Cookies and analytics

PostHog sets first-party cookies and/or local storage to measure aggregate site usage. No advertising trackers, no cross-site retargeting pixels, no affiliate cookies are used.

Security practices

  • All traffic is served over HTTPS.
  • Database access is scoped with row-level security policies.
  • The programmatic publishing endpoint requires a server-side API key; requests without it are rejected.

Contact

For security or privacy inquiries, reach Lewis Crook through the channels listed on the About page.

Last updated: 2026-06-17