BetterlyticsBetterlytics

Betterlytics Privacy Policy

Last updated: June 27, 2025

TL;DR

For website visitors, we do not use cookies and we do not collect any personal data. If you decide to create an account, we ask for the bare minimum and only share it with services that are absolutely necessary for the app to function.

Scope of This Policy

This privacy policy applies exclusively to the Betterlytics hosted cloud service available at betterlytics.io and our official domains. It does not apply to self-hosted installations of our open source software. If you self-host Betterlytics, you are responsible for your own privacy policy, data processing practices, and legal compliance.

At Betterlytics, we are committed to complying with GDPR, CCPA, PECR and other privacy regulations. The privacy of your data — and it is your data, not ours! — is a big deal to us. We are based in the European Union and all data processing occurs within EU boundaries.

In this policy, we lay out what data we collect and why, how your data is handled and your rights to your data. We promise we never sell your data: never have, never will.

As a visitor to websites using Betterlytics

The privacy of website visitors is important to us. We have designed our analytics system to be completely cookieless and privacy-focused. As a visitor to websites using Betterlytics:

  • No personal information is collected
  • No cookies are stored in your browser
  • No information is shared with, sent to or sold to third-parties
  • No information is shared with advertising companies
  • No information is mined and harvested for personal and behavioral trends
  • No information is monetized
  • All data collected is aggregated and anonymized

What anonymous data we collect and why

Page Views and Navigation

We track which pages are visited and navigation patterns to help website owners understand how their content is being consumed. We collect the URL path (without query parameters to prevent accidental tracking of sensitive data) and referrer information.

Device and Browser Information

We parse the user agent string to determine browser type, operating system, and device category (mobile, tablet, desktop, laptop). Screen resolution is bucketed into categories (small, medium, large) rather than storing exact dimensions.

Geographic Information

We determine the visitor's country from their IP address using a GeoIP database. The IP address itself is immediately anonymized by removing the last octet (IPv4) or using only the first 64 bits (IPv6) before any processing.

Anonymous Visitor Identification

We generate an anonymous visitor fingerprint using a cryptographic hash of the anonymized IP address, bucketed screen resolution, browser name, and a daily rotating salt. This allows us to count unique visitors without tracking individuals. The fingerprint changes daily, ensuring long-term anonymity.

Session Tracking

We track sessions to understand how visitors engage with websites. Sessions automatically expire after 30 minutes of inactivity and are stored only in server memory, never in cookies or browser storage.

How we process and store data

  • EU-based hosting: All data is processed and stored on servers located within the European Union, ensuring GDPR compliance.
  • Immediate anonymization: IP addresses are anonymized immediately upon receipt, before any processing or storage occurs.
  • No cross-site tracking: Each website's data is isolated and tracked separately with unique site identifiers.
  • Aggregated reporting: All analytics reports show aggregated data only, with no ability to identify individual visitors.
  • Daily fingerprint rotation: Visitor fingerprints change daily, preventing long-term tracking of individuals.

As a customer and subscriber of Betterlytics

Our guiding principle is to collect only what we need and process this information solely to provide you with the service you signed up for.

What we collect and why

  • Email address: Required to create an account, send you essential service communications, and provide customer support.
  • Authentication data: Secure session tokens to keep you logged in to your dashboard.
  • Website configuration: Domain names and site settings you configure for your analytics tracking.
  • Usage data: How you use our dashboard to improve our service and provide support.

Third-party services

We use a select number of trusted, EU-based service providers:

  • Payment processing (if applicable) through EU-compliant payment processors
  • Email delivery for transactional emails and notifications

We only share the minimum necessary information with these providers and contractually bind them to protect your data according to GDPR standards.

Data retention

  • Account deletion: When you delete your account, ALL data is permanently deleted immediately - this includes your personal data (email, payment information, account settings) AND all website analytics data. No exceptions, no retention period.
  • Subscription cancellation (without account deletion): If you cancel your subscription but keep your account, we retain your analytics data for up to 1 month in case you decide to reactivate, after which it is permanently deleted.
  • Session data: Visitor sessions are stored only in server memory and automatically expire after 30 minutes of inactivity.

You always have the right to immediate deletion of all data.

Your rights under GDPR

As a data subject under GDPR, you have the following rights:

  • Right of access: Request a copy of your personal data
  • Right to rectification: Correct inaccurate personal data
  • Right to erasure: Request deletion of your personal data
  • Right to restrict processing: Limit how we use your data
  • Right to data portability: Receive your data in a portable format
  • Right to object: Object to processing based on legitimate interests
  • Right to withdraw consent: Withdraw consent for data processing

To exercise any of these rights, please contact us at privacy@betterlytics.io

No cookies policy

Betterlytics does not use any cookies for tracking website visitors. We achieve all necessary analytics functionality through cookieless, server-side processing. This means websites using Betterlytics do not need to display cookie consent banners for our analytics tracking.

Data security

  • All data transmission is encrypted using TLS 1.3
  • Data at rest is encrypted using industry-standard encryption
  • Access to data is strictly limited to authorized personnel
  • All servers are located in secure EU data centers

Changes to this privacy policy

We may update this policy as needed to comply with relevant regulations and reflect any new practices. Whenever we make significant changes to our policies, we will notify our customers via email and announce them on our website.

Contact us

If you have any questions, comments, or concerns about this privacy policy, your data, or your rights with respect to your information, please contact us:

Email: privacy@betterlytics.io

Address: Betterlytics, EU

🇪🇺 Made and hosted in the European Union
Committed to privacy, transparency, and GDPR compliance