bore.report

Privacy Policy

Last updated: March 2025

Who we are

This service logs community noise incidents at bore.report. Contact: admin@bore.report

What we collect

  • Date, time and duration of the incident
  • Description (text you provide)
  • Optional location (selected from a list)
  • Optional vehicle description
  • Optional registration plate — only if you choose to provide it and it was clearly visible. Stored encrypted at rest using AES-256-GCM.
  • Your IP address (stored for abuse prevention and IP blocking only)

Reports may be submitted completely anonymously — no account required.

Account data

  • Email address — stored in plaintext, used only to identify your account
  • Password — never stored in plaintext. Hashed using bcrypt with a unique random salt per account

Security measures

  • Passwords: bcrypt hashed with per-user random salt
  • Registration plates: AES-256-GCM encrypted at rest
  • Sessions: secure, httponly, SameSite cookies
  • All database queries: parameterised to prevent SQL injection
  • All forms: CSRF token protected

How we use your data

  • To run and display the noise reporting service
  • To link reports to your account if you choose to register
  • To prevent abuse via IP blocking

We do not sell, share, or pass your data to any third party.

Your rights

You may request access, correction or deletion of your personal data at any time by contacting us.

Data retention

Report data is retained indefinitely for community record purposes. Account data is retained until you request deletion.

Contact

Email admin@bore.report for any data request or privacy enquiry.