LitLyx Analytics Data Policy
LitLyx is committed to protecting your privacy and ensuring that our data practices are transparent, secure, and compliant with all relevant regulations. This data policy outlines the information we collect, how we use it, and the measures we take to protect your data. Our services are hosted on servers provided by Hetzner in Nuremberg, Germany, and comply with European data protection laws, including GDPR, CCPA, and PECR.
Data Collection and Usage :
LitLyx is designed to provide insightful analytics without compromising user privacy. We adhere to the following principles:
1. Non-Personal Data Collection: We do not collect personal data or personally identifiable information (PII). Our analytics focus on aggregated data to identify trends without tracking individual users.
2 No Cookies or Persistent Identifiers: We do not use cookies, browser storage, or any form of persistent identifiers. All data is session-based and anonymized.
Specific Data Points Collected
We collect only the most essential data points, which are:
• Page URL: We track the URLs of pages viewed on your website to understand which pages are most popular. Query parameters and hash parameters are discarded.
• HTTP Referrer: This helps us determine the source of your traffic by identifying the referring website.
• Browser: We track the browser type and version (derived from the User-Agent header) to understand the technology used by visitors. The full User-Agent string is discarded.
• Operating System: We identify the operating system and its version (derived from the User-Agent header) to see what systems visitors use. The full User-Agent string is discarded.
• Device Type: We categorize devices into desktop, mobile, or tablet based on the User-Agent header.
• Geographical Location: We determine the visitor's country, region, and city using their IP address. We do not track anything more granular than the city level, and IP addresses are not stored.
Unique User Counting Without Cookies
Counting unique visitors is crucial for analytics, but we prioritize visitor privacy. We do not generate persistent identifiers. Instead, we use a combination of the visitor's IP address and User-Agent to create a unique identifier for each day.
Formula for Unique User Identification - Every HTTP request includes the IP address and User-Agent. To generate a unique identifier while maintaining anonymity, we apply the following process:
• Daily Salt: A randomly generated value that changes daily.
• Website Domain: The domain of the website being visited.
• IP Address and User-Agent: Used to create a unique but anonymized identifier.
• Strip function: Used to transform string in only [A-z0-9]
This identifier is used to count unique visitors for a single day. The raw IP addresses and User-Agent strings are never stored. Daily salts are deleted every 24 hours to prevent linking visitor data across days.
Custom Events and Custom Events Metadata
At LitLyx, we understand the importance of flexibility and customization in web analytics. To cater to specific needs, we allow the tracking of custom events and the storage of custom events metadata. This section outlines how we manage these custom events while ensuring privacy and compliance with relevant regulations.
Tracking Custom Events
Custom events allow you to track specific interactions on your website beyond standard page views. These interactions might include button clicks, form submissions, or other user actions that are important for understanding user behavior on your site.
Data Points for Custom Events
• Event Name: A descriptive name for the event (e.g., "Button Click", "Form Submission").
• Event Metadata: Additional metadata associated with the event (e.g., button ID, form ID).
Data Hosting and Security
• Hosting: All data is hosted on Hetzner servers in Nuremberg, Germany. These servers are powered by 100% renewable energy and comply with EU data protection laws.
• Security Measures: We use HTTPS for data transmission and employ hashing processes for data at rest. Regular backups are performed and stored within the EU in redundant locations.
• No Third-Party Access: Apart from Hetzner, no third-party vendors have access to the data. This ensures all data remains within the EU and is protected by strict European privacy laws.
Tracking Custom Events
Custom events allow you to track specific interactions on your website beyond standard page views. These interactions might include button clicks, form submissions, or other user actions that are important for understanding user behavior on your site.
Data Ownership
LitLyx respects that you own your website data. We do not sell, share, or monetize your data. You retain full control over your data, with the ability to delete your account or data at any time. Upon deletion, all data is permanently removed from our servers and cannot be recovered.
Trust and Transparency
LitLyx is built on principles of transparency and openness. While our analytics tools are proprietary, we adhere strictly to our privacy commitments. Our policies and processes are open for review to ensure we meet our stated objectives.
Compliance with GDPR, CCPA, and PECR
Using LitLyx ensures compliance with GDPR, CCPA, and PECR regulations. Our data practices eliminate the need for complex privacy policies or intrusive cookie prompts. Visitors to your website can enjoy a seamless and privacy-respecting experience.
Liability
Contact Information
For any questions or concerns about our data policy, please contact our data protection officer at help@litlyx.com