Real Time Website Tracking Privacy Policy

Privacy Policy

This privacy policy define how Hitsteps uses and protects any information that Hitsteps collects when you or your browser give it to Hitsteps when you use Hitsteps or a website that use Hitsteps services.
Hitsteps is committed to ensuring that your and your visitors privacy is protected.
Hitsteps may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes. This policy is effective from 30 September 2015, Last updated on 4 May 2018.
What we collect

Personal Information

The term “Personal Information”, as used in this Privacy Policy, refers to any information that can be used to identify or relates to an identifiable person. Personal information does not include information that has been aggregated or made anonymous such that it can no longer be reasonably associated with a specific person. Personal Information we collect include:
  • Names
  • Email addresses
  • Telephone number
  • Hitsteps account ID and password
  • Website details

Why do we collect this information?

We collect this information during our users signup from our own users, as part of registration process to be able create an account for website owners so that they can login to our system and use our system.

How long we keep this information?

We keep this information as long as customer account is activated and is being used. we will suspend and delete an account after an inactivity of 720 days.

Anonymous Information

Your registration information that you give us during signup (such as name, email, phone number) can be accessed by us to be able help you and contact you if you have a customer support enquiry.
We also collect following information from you or your visitors, and display it only in authenticated accounts belong to each website's account.
We don't allow cross-site or cross-account tracking. Each profile is only accessible only after authentication from site owner:

    • List of visited pages, clicked buttons and links.
    • Device technology used to access website.
    • Low accuracy estimated geographic information.
    • No personal data such as IP, Username, Email or phone number is being collected unless consent is given by visitor.

    Why we collect this information
    Our analytics service provide information for website owners to understand how their visitors use their website. We don't provide information on who use the website.
    Our service consists of analytics, and CRM. by collecting this informations we can have a strong CRM based on analytics data, which you can access when you visit your dashboard, here is detail of uses:

    • Internal record keeping for when you want to contact or follow up with a visitor of yours
    • Internal record keeping for when you open a ticket with us

    Security of collected data

    We are committed to ensuring that your information is secure. Our database is separated into layers, where only authorized staff have access to all the data and developers work in a simulated area which is using a dummy database.
    Furthermore, our servers are protected behind CloudFlare's firewall and softwares are secured via latest security updates and patches and latest security tweaks.
    All passwords are salted and hashed to ensure no cleartext password is transmitted and our service redirect you to HTTPS by default which will encrypt all input and output data, unless you manually type URL and remove HTTPS part of URL.

    How long we keep this anonymous data?

    We keep data from 30 days to 360 days based on our customers purchased plan. Automatic data retention of maximum 360 days has been enforced on all accounts. We will delete visitor data after this period however aggregated data (compiled number of pageviews, visitors, ...) will be kept as long as our customer have an active plan with us.

    How we use cookies
    A cookie is a small file which asks permission to be placed on your computer's hard drive, it is highly secured by web browser and there is no way a website can access other files except their own cookie. Our service use cookie to determain returning visitors and enable a consistancy between pageviews if user give consent for it. If your website visitors don't give us consent and clear agreement to use cookies, we would not use it.
    A cookie will hold information about a user. so when you login to your dashboard, we use cookie to store a unique ID in your computer, so when you switch to next page, our server identify you are authorized user and enable access to content for you.
    Additionally, our server process your and your visitors analytics data (geographic, pageviews, ...) and store them into cookie to avoid further processing for each pageview, therefor increase performance of the service.

    Links to other websites
    Our website may contain links to other websites without our consent. Links are automatically gathered by our analytics engine and displayed to you based on your visitors activity. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.

 

We hate spam, we will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting, you can unsubscribe from promotional emails at any time.

GDPR Compliance

Hitsteps asks for users consent before sending any PII (username, email, phone) to our servers and provide options for webmasters to anonymize or restrict data we collect from their website.
We do not store cookies if visitor don't give consent for it
IP anonymization is activated for all customers and all collected data will get deleted 360 days after collections.
DPA form can be sent upon request for signature.

We respect right to access and right to be forgoten.
In order to access or edit informations, visitors must contact website owners where their information collected first. If website owner did not reply within seven days, visitors may contact us and provide name, address of the website and their information so we look into our database for a match and provide them with the data. We will delete requested data forever based on visitors request.
Viewing website data now require full authentication. no more public URL or share data report via URL.
Visitors are able to optout from being tracked in all of our customer websites by opting out using this form.

COOKIE POLICY

Hitsteps uses cookies to help us track how you are using the system, diagnose problems and to provide the best browsing experience for you. There are cookies set when you login to Hitsteps and use our service, which cannot be disabled. however tracking cookies are set and used only with visitors agreement.