Hitsteps is committed to ensuring that your and your visitors privacy is protected.
Hitsteps may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes. This policy is effective from 30 September 2015, Last updated on 4 May 2018.
What we collect
Why we collect this information
Our analytics service provide information for website owners to understand how their visitors use their website. We don't provide information on who use the website.
Our service consists of analytics, and CRM. by collecting this informations we can have a strong CRM based on analytics data, which you can access when you visit your dashboard, here is detail of uses:
Security of collected data
We are committed to ensuring that your information is secure. Our database is separated into layers, where only authorized staff have access to all the data and developers work in a simulated area which is using a dummy database.
Furthermore, our servers are protected behind CloudFlare's firewall and softwares are secured via latest security updates and patches and latest security tweaks.
All passwords are salted and hashed to ensure no cleartext password is transmitted and our service redirect you to HTTPS by default which will encrypt all input and output data, unless you manually type URL and remove HTTPS part of URL.
How long we keep this anonymous data?
We keep data from 30 days to 360 days based on our customers purchased plan. Automatic data retention of maximum 360 days has been enforced on all accounts. We will delete visitor data after this period however aggregated data (compiled number of pageviews, visitors, ...) will be kept as long as our customer have an active plan with us.
A cookie will hold information about a user. so when you login to your dashboard, we use cookie to store a unique ID in your computer, so when you switch to next page, our server identify you are authorized user and enable access to content for you.
Additionally, our server process your and your visitors analytics data (geographic, pageviews, ...) and store them into cookie to avoid further processing for each pageview, therefor increase performance of the service.
Links to other websites
Our website may contain links to other websites without our consent. Links are automatically gathered by our analytics engine and displayed to you based on your visitors activity. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
We hate spam, we will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting, you can unsubscribe from promotional emails at any time.
Hitsteps asks for users consent before sending any PII (username, email, phone) to our servers and provide options for webmasters to anonymize or restrict data we collect from their website.
We do not store cookies if visitor don't give consent for it
IP anonymization is activated for all customers and all collected data will get deleted 360 days after collections.
DPA form can be sent upon request for signature.
We respect right to access and right to be forgoten.
In order to access or edit informations, visitors must contact website owners where their information collected first. If website owner did not reply within seven days, visitors may contact us and provide name, address of the website and their information so we look into our database for a match and provide them with the data. We will delete requested data forever based on visitors request.
Viewing website data now require full authentication. no more public URL or share data report via URL.
Visitors are able to optout from being tracked in all of our customer websites by opting out using this form.