[cryptnoob]

Is the "privacy policy" a legally binding document? If so, how so? If not, why do you think it's important what a tiny start-up's privacy policy is?

The privacy policy is a promise. Broken promises have repercussions in proportion to how well known it is that you break your promises. For Facebook, that might be important. For weekendproject.com, I can't imagine why you're fixated on it.

[tokenadult]

I don't know how you reach the conclusion I'm "fixated" on anything. I just note for the record that it's an industry-standard recommendation for websites that solicit personal information to declare a privacy policy. I agree that there has to be a certain degree of user trust in any such stated policy, because the stated policy might be a lie. On the other hand, if the stated policy is a lie, then users who are misled by the stated policy would have a legal remedy if they chose to pursue that.