GDPR Compliant by Default

Privacy by Design —
Not as an Afterthought

Most analytics tools were built to collect as much data as possible, then retrofitted with privacy settings. Argusmetrics was designed the other way around: privacy is the foundation, not the feature.

What we collect

Every data point we collect serves a specific analytical purpose. Nothing more. All data is aggregated — there are no individual visitor records.

Page URL
Which page was visited — without query strings that could contain personal data.
Referrer
Where visitors came from — search engines, social media, or direct.
Country
Country-level location only — never city, region, or precise location.
Browser
Browser family (Chrome, Firefox, Safari) — not the full user-agent string.
Device type
Desktop, tablet, or mobile — nothing more specific.
Screen size
Viewport width bucketed into ranges — not an exact pixel dimension.

What we never collect

These are hard technical constraints built into the system — not policy promises that could be changed by a terms update.

No raw IP addresses
IP addresses are immediately truncated to a /24 subnet and are never stored in any log or database.
No cookies — ever
We set zero cookies. No session cookies, no tracking cookies, no preference cookies.
No device fingerprinting
We do not read canvas, WebGL, audio, font, or any other fingerprinting vector.
No cross-site tracking
Each site's data is siloed. A visitor on site A cannot be linked to a visit on site B.
No personal data
No names, email addresses, usernames, or any identifier that could be tied to a real person.
No persistent user IDs
Visitor hashes are non-persistent by design — they reset every 24 hours. See below for details.

How visitor identification works

To count unique visitors without cookies, we use a daily-salted hash. Here is exactly how it works — no magic, no hidden steps.

1
IP address is truncated to /24 subnet

Before anything else, the last octet of the visitor's IP is zeroed out. 203.0.113.42 becomes 203.0.113.0. This means up to 256 users on the same network subnet share the same starting point — making the hash far less precise, and impossible to reverse-map to an individual.

2
Combined with a daily salt that rotates every 24 hours UTC

A fresh random salt is generated at midnight UTC each day. Yesterday's salt is discarded and never stored. This means the same visitor produces a completely different hash on different days — making day-to-day tracking technically impossible, even with access to the database.

3
Combined with your site's domain

The domain of the site being tracked is included in the hash input. This guarantees that hashes are site-specific — a visitor to shop.example.com gets a different hash than the same visitor on blog.example.com. No cross-site data linkage is possible.

4
Combined with your account's SECRET_KEY

A server-side secret key, unique to each Argusmetrics installation, is added to the hash. Even if someone knows the algorithm, the daily salt, and the IP range, they cannot reproduce or reverse the hash without knowing this secret. It is never exposed to the browser or transmitted over the network.

Result: same visitor = same hash today; different hash tomorrow

This lets us accurately count unique visitors within a day while making it mathematically impossible to track the same person across multiple days. This approach is used by Plausible Analytics and has been reviewed and approved by CNIL, the French data protection authority.

No cookie banner required

Skip the consent banner

Cookie consent banners are required under GDPR and ePrivacy Directive when you use cookies or similar tracking technologies. Argusmetrics uses neither.

Because we collect no personal data as defined by GDPR Article 4, and because our daily-salted hash cannot be used to identify or track any natural person, Argusmetrics analytics falls outside the scope of consent requirements.

Your visitors get a cleaner experience. You get data you can actually trust (no consent bias). Everyone wins.

🚫
No annoying popups.
Users who dismiss cookie banners are not counted — giving you skewed data. With Argusmetrics, every visit is measured equally.
No cookies set
No personal data collected
No consent mechanism required
Compliant with GDPR, ePrivacy Directive, CCPA

Where your data lives

Infrastructure transparency matters. Here's what's under the hood.

Railway — EU Region

All compute and database infrastructure runs on Railway in the EU region. Your analytics data never leaves European jurisdiction.

PostgreSQL 16

Data is stored in a managed PostgreSQL database with automated backups. Only aggregated event data is persisted — no raw visitor records.

Encrypted in Transit

All data in transit is encrypted via TLS 1.3. The tracking script communicates with the backend over HTTPS exclusively.

GDPR compliance

We've thought through the legal framework so you don't have to spend hours with your DPO.

Data Controller

You are the data controller for your website's analytics. Argusmetrics acts as a data processor on your behalf, processing only what is strictly necessary to provide the service.

Data Processing Agreement

A standard Data Processing Agreement (DPA) is available to all customers on request. Enterprise customers can request a signed DPA as part of onboarding.

Right to Erasure

Because we store no personal data, there is nothing to erase for individual visitors. Site owners can delete their entire analytics dataset from the dashboard at any time, with immediate effect.

Legitimate Interest Basis

Because Argusmetrics collects no personal data, you can rely on Legitimate Interest as your lawful basis — removing the need for consent-based data collection entirely.

Ready to analyze without compromising privacy?

Start your free trial today. No credit card required. Setup takes under 5 minutes.

Start free trial