No personal data are collected. HTTP logs exist for debugging and banning attackers. Consenting to HTTP logs is a logical impossibility. By the time you read a webpage, it already happened. (The EU doesn't understand basics, as usual.) They are regularly anonymized, and subsequently rotated. Not even a privately hosted statistics tool is currently used.
Request PGP keys before sending anything too private. Yes, it's a bit of a 'hassle', but the above paragraph should make its necessity abundantly clear.
When we work together, you'll know exactly what is stored, and where. That's up to you. This is truly private interaction. In every sense. Unpaid, unforced, unrecorded.
This implies there may be times where nobody is available due to personal reasons, clash of characters, or lack of funding. We believe this is preferable to commercial exploitation. This is a 'safe space', if you will.