Privacy Policy
Last updated: 2026-04-27
Who we are
This site (adversarial-tdd.com) is operated personally by Timi Agama.
What data we collect
When you submit the early-access form we collect what you type into it: your email address, your answer to the “where does AI-generated code most often fail” question, your selections for “how you currently try to catch these issues”, and any free-text you enter in the “Other” fields.
In addition, some data is collected passively in the course of serving the site:
- IP address and request metadata — logged briefly by Cloudflare for security and abuse prevention.
- Bot-detection cookie (
__cf_bm, and similar) set by Cloudflare Turnstile when the form loads. This is a strictly-necessary cookie used to distinguish humans from bots. - Privacy-notice dismissal stored in your browser's
localStorageso that the banner does not re-appear on every page load. This never leaves your device.
This site does not use analytics, advertising, or tracking cookies.
Where your form submissions are stored
When you submit the form, the resulting emails to the site owner are stored in their inbox — this is the only place your email address itself is retained. A separate record is also written to a private database, but that record contains only:
- A one-way hash of your email address (SHA-256), which lets us count unique signups but cannot be reversed to recover the address.
- The domain part of your email (e.g.
gmail.com) — useful for understanding the mix of personal vs corporate signups, and not personally identifying on its own. - Your survey answers and the timestamp of submission.
- A two-letter country code derived from your IP address (e.g.
GB) — the IP address itself is not stored.
We do not store your IP address, your browser identifier, the page that referred you, or any other passive metadata in this database or anywhere else.
Why we collect it
Early-access form data is used to (a) add your email to the early-access list and (b) help us understand the patterns of AI-generated code failure that practitioners care about. It is not used for automated profiling, shared for marketing, or passed to third parties beyond the infrastructure described below.
Infrastructure providers
The infrastructure used to deliver the site involves a small number of third parties:
- Cloudflare — hosting, CDN, and Turnstile bot protection on the form.
- ForwardEmail — email delivery. Your form submission is converted into an email notification sent to the site owner, and into an acknowledgement email sent back to the address you supplied. Emails are held on ForwardEmail's servers only until delivery, then deleted; all transit is TLS-encrypted.
No data is sold, rented, or shared for any purpose other than what is described above.
How long we keep it
Early-access form emails are retained in the site owner's inbox indefinitely unless you ask for them to be deleted (see below). The corresponding analytics record in our private database is retained for the same period. Once early-access invitations have been issued, unused signups will be removed from both the inbox and the database.
Your rights
Under the Nigeria Data Protection Act 2023, and (for visitors in the EU / UK) under GDPR, you have the right to:
- Access the personal data held about you
- Have inaccurate personal data corrected
- Have your personal data deleted
- Object to, or restrict, its processing
- Receive a portable copy of the data you submitted
How to reach me
The fastest way to reach me — including to exercise any of the rights above — is a direct message on X (formerly Twitter): @timiagama. X is an external service with its own privacy practices; visiting it is subject to their terms, not mine.
Children
This site is not directed at children under 13 and does not knowingly collect data from them.
Changes to this policy
Changes will be published on this page with an updated “Last updated” date above.