Metrimo: GDPR, CCPA and cookie law compliant site analytics
Even though the purpose of Metrimo Analytics is to track the usage of a website, this can still be done without collecting any personal data or personally identifiable information (PII), without using cookies, and while respecting the privacy of the website visitors.
Here is a closer look at our data policy, the information that we do collect, what we use it for, and steps we’ve taken to comply with the cookie law and the privacy regulations such as the GDPR, CCPA, and PECR.
First thing first: What we collect and what we use it for
We do not track people across their devices and across websites and apps that they visit. All the data is isolated to a single day, single website, and a single device only. There is no way to know whether the same person visits a site from more than one device or visits another website.
By using Metrimo Analytics, all the site measurement is carried out absolutely anonymously. We measure only the most essential data points and nothing else. All the metrics we do collect fit on one single page. Here is the complete list of what we collect and store about your website visitors:
|Page URL||https://yoursite.com/pricing||We track the page URL of each page view on your website. We use this to show you which pages have been viewed and how many times a particular page has been viewed.|
The hostname and path are collected. Query parameters are discarded, except for these special query parameters:
|HTTP Referer||https://facebook.com||We use the referrer string to show you the number of visitors referred to your website from links on other sites.|
|Browser||Chrome 86.0||We use this to show you what browsers and browser version numbers people use when visiting your website. This is derived from the User-Agent HTTP header. The full User-Agent is discarded.|
|Operating system||macOS 10.15||We use this to show you what operating systems people use when visiting your website. We show the brand of the operating system and the version number. This is derived from the User-Agent HTTP header. The full User-Agent is discarded.|
|Device type||Desktop||We use this to show you what devices people use when visiting your website. This is derived from window.innerWidth. The actual width of the browser in pixels is discarded.|
|Country, region, city||United Kingdom, England, London||We look up the visitor’s location using their IP address. We do not track anything more granular than the city level and the IP address of the visitor is discarded. We never store IP addresses in our database or logs.|
How we count unique users without cookies
Counting unique visitors is an integral part of web analytics. Metrimo attempts to strike a reasonable balance between de-duplicating pageviews and staying respectful of visitor privacy.
Every single HTTP request sends the IP address and the User-Agent to the server so that’s what we use. We generate a daily changing identifier using the visitor’s IP address and User-Agent. To anonymize these data points and make them impossible to relate back to the user, we run them through a hash function with a rotating salt.
hash(daily_salt + website_domain + ip_address + user_agent)
This generates a random string of letters and numbers that is used to calculate unique visitor numbers for the day. The raw data IP address and User-Agent are never stored in our logs, databases or anywhere on disk at all.
Old salts are deleted every 24 hours to avoid the possibility of linking visitor information from one day to the next. Forgetting used salts also removes the possibility of the original IP addresses being revealed in a brute-force attack. The raw IP address and User-Agent are rendered completely inaccessible to anyone, including ourselves.
In our testing, using IP addresses to count visitors is remarkably accurate when compared to using a cookie. In some cases, it might even be more accurate than using a cookie because some visitors block cookies altogether.
The biggest limitation of this approach is that we cannot do a good retention analysis with Metrimo. We cannot show stats like New vs Returning visitors because they rely on having a persistent user identifier.
If the same visitor visits your site five times in one day we will show that as one unique visitor. But if the same visitor visits your site on five different days in a month we would show that as five unique visitors.
We’re happy to provide information on how Metrimo is built to help you comply with the different privacy regulations. We encourage you to discuss specific issues with your lawyer to help you decide whether our service allows you to fulfill the legal requirements that apply to you.
Hosted in the EU powered by European-owned cloud infrastructure
We’re a small team based in the EU. The legal entity is incorporated in Greece.
All of the data that we do track and collect is kept fully secured, encrypted, and hosted on 100% renewable energy-powered server in Duesseldorf, Germany. The server is owned by Contabo, a European company. This ensures that all of the website data is being covered by the European Union’s strict laws on data privacy.
For encryption, we use HTTPS in transit and the hashing process at rest. We also do regular backups. The backups are also stored in the EU, on a redundant site.
You don’t have to worry about Schrems II and that it invalidates the EU-US Privacy Shield. Your website data never leaves the EU.
Data ownership of your web analytics
When you use our service to measure your website stats, Metrimo Analytics will collect information about your visitors. You entrust us with your site data and we take that trust to heart. The privacy of your site data — and it is your data, not ours! — is a big deal to us.
By using Metrimo, you keep 100% ownership of your website data. Although when using our hosted service, your site analytics are stored on our server in the cloud, you remain completely in control of your site data and you fully own all of your data too.
You own all right, titles, and interests to your website data. We obtain no rights from you to your website data. We will never sell or share your site data with any third parties.
- Your website data is not shared with advertising companies or any other companies in general.
- Your website data is not sent to any third parties at all.
- Your website data is not mined and harvested for personal and behavioral trends.
- Your website data is not monetized.
You can choose to delete your account and delete your site stats at any time. We provide simple no-questions-asked deletion links.
All your stats will be permanently deleted immediately when you delete your Metrimo Analytics account or when you delete your site stats. We cannot recover this information once it has been permanently deleted.
GDPR, CCPA, and PECR compliant web analytics
You can sign up for the free plan and explore our privacy-friendly and GDPR, CCPA, and PECR-compliant site analytics. You don’t need to remove your current analytics provider either until you’ve tested Metrimo and figured out if you like our product.