GDPR-compliant analytics without personal data
While developing PRYVY, it was important to us that all data of your visitors is stored anonymously.
This is transparent and fair to your visitors and saves you from having to deal with legal situations. PRYVY Analytics does not store personal data and therefore does not fall under the regulation of the GDPR or the e-privacy regulation.
This is how we manage to store your visitors’ data anonymously and still collect relevant statistics.
In order to store your website visitors’ data anonymously, a unique hash (string) is calculated for each visitor based on several pieces of info such as part of the IP address, the user agent, and other characteristics. In doing so, not all digits of the actual IP are used to ensure even better anonymity. No personal data is stored at any time.
In order to generate a unique hash, which cannot be traced back to individual visitors, a randomly generated string (“salt”) is generated for further calculation of the particular user hash, which is also not stored permanently at any time. This way, the clicks and other information about your visitors can be counted accurately without storing or processing personal data at any time. You get clear and important statistics about your website without the profiles and personal data of your visitors being read.
Why should it be important to you to store the data of your visitors anonymously?
Firstly, it is of course fairer to your visitors if you ensure that their data is not stored for advertising or other purposes. After all, none of us really likes to be permanently spied on.
On the other hand, PRYVY offers you the advantage that you don’t have to deal with the GDPR or e-privacy regulation, or with the question of whether and how exactly the use of Google Analytics is even legally okay in the EU. As it stands today, this is actually very controversial among data protection lawyers. It is true that Google is working on a new solution with Google FLoC. But here, too, the tendency seems to be that its use will not be compatible with applicable EU law.
If you want to know more about this topic, we also recommend the interview with Frank Stiegler, a lawyer specializing in IT law.