Data collection

Transparent data practices. Know exactly what we collect.

What we collect

For each page view, we collect:

What we don't collect

• IP addresses (used for geo-lookup only, never stored)
• Names, email addresses, or other personal information
• Cookies or persistent identifiers
• User-Agent strings (parsed for device/browser, then discarded)
• Screen resolution or window size
• Mouse movements or clicks (except tracked outbound links)
• Form inputs or page content
• Any data that could identify an individual

How location is determined

We determine country and city using the visitor's IP address:

1. IP address is received with the page view request
2. We look up the country and city using a geo-IP database
3. Only the country code and city name are stored
4. The IP address is immediately discarded

This means we know "a visitor from San Francisco" but not "which visitor" or their exact location.

Custom events

When you track custom events, we store:

• Event name (e.g., "signup_click")
• Event properties (e.g., { button: "hero" })
• Page URL where the event occurred
• Timestamp
• Same visitor/session identifiers as page views

Data retention

Analytics data is retained indefinitely by default. You can:

• Export your data anytime (Settings → Export)
• Delete your site to remove all associated data
• Contact support for custom retention policies

Data export

You own your data. Export it anytime:

1. Go to your site's Settings page
2. Click "Export data"
3. Choose the date range
4. Download as CSV

Exports include all page views and events with their associated data.

Data security

• All data encrypted in transit (HTTPS/TLS)
• All data encrypted at rest (AES-256)
• Access restricted by row-level security policies
• No shared access between customers
• Regular security audits