kk
Privacy and cookie policy

هيت استپس Privacy and Cookie Policy

هيت استپس provides real-time analytics, visitor insights, and live support tools for website owners. This policy explains what we collect, why we collect it, how long we keep it, and how visitors can control tracking.

Opt out of tracking Contact us
هيت استپس privacy controls
Last updated 24 May 2026
  1. خانه
  2. پشتيباني
  3. حریم خصوصی

Privacy by default

IP anonymization is enabled, visitor data is scoped to each website account, and public report URLs require authentication.

Limited retention

Visitor-level analytics data is retained for 30 to 360 days depending on the customer's plan, then deleted.

No cross-account tracking

We do not combine visitor profiles across unrelated customer websites or make one customer's data available to another.

Visitor choice

Visitors can opt out of tracking on websites that use هيت استپس, and can request access or deletion.

Overview

What this policy covers

This privacy policy describes how هيت استپس uses and protects information collected when you use هيت استپس directly, or when your browser interacts with a website that uses هيت استپس services.

هيت استپس is committed to protecting the privacy of website owners and their visitors. We may update this page from time to time, and the newest version will always be published here.

Account information

Information we collect from هيت استپس users

When a website owner registers, manages an account, opens a support request, or purchases a license, we may collect information needed to provide the service.

  • Name, email address, and telephone number if provided.
  • هيت استپس account ID, login details, and hashed password data.
  • Website details, tracking settings, labels, and dashboard preferences.
  • Billing, subscription, invoice, and Shopify app installation records where applicable.
  • Support tickets, messages, and account-related correspondence.

We collect this information to create accounts, authenticate users, provide dashboards, process billing, prevent abuse, and respond to support requests.

Browser extension

Chrome extension data

The هيت استپس Chrome extension is used by account owners and authorized operators to monitor their own هيت استپس dashboard from the browser toolbar.

  • The extension stores the user's هيت استپس API key and extension preferences in Chrome local storage.
  • The extension sends the API key to هيت استپس to retrieve visitor counts, pageview counts, dashboard notification status, and live support availability updates.
  • When live support presence is enabled, the extension may send whether the browser session is active or idle so the operator is not shown as available while away.
  • When notifications are enabled, the extension may receive and display notification titles, descriptions, links, and bundled local sound choices for dashboard events or live support requests.

The Chrome extension does not read browsing history, inspect page content on websites, collect keystrokes, monitor mouse movement, or inject tracking code into pages visited by the user.

The use of information received from Google APIs will adhere to the Chrome Web Store User Data Policy, including the Limited Use requirements.

Analytics data

Information processed for customer websites

هيت استپس processes analytics data on behalf of website owners so they can understand how visitors use their sites. Each website profile belongs to its authenticated account owner.

Typical analytics data

  • Visited pages, referrers, campaigns, links, clicks, and navigation paths.
  • Browser, operating system, screen, device, and other technical details.
  • Low-accuracy estimated geographic information.
  • Returning visitor identifiers when cookies or similar storage are enabled.

Visitor-submitted data

  • Live chat messages and support details visitors choose to submit.
  • Names, emails, usernames, or phone numbers only when submitted by the visitor or configured by the website owner with the proper consent.
  • Opt-out preferences that tell هيت استپس not to track that browser.

We do not allow cross-site or cross-account tracking. Data for one customer website is not made available to another customer.

Purpose

How we use information

We use collected information only for purposes connected to operating, securing, improving, and supporting هيت استپس.

  • Provide real-time analytics, visitor history, live chat, alerts, uptime monitoring, and CRM-style follow-up tools.
  • Show website owners aggregated and visitor-level reports inside authenticated dashboards.
  • Maintain account records, billing records, and customer support history.
  • Protect accounts, investigate abuse, debug service problems, and improve reliability.
  • Send important service messages and, where allowed, product updates that users can unsubscribe from.
Sharing

How information is shared

We do not sell, distribute, or lease personal information to third parties unless we have permission, need to provide the service, or are required by law.

  • Customer website data is visible only to authenticated users who are allowed to access that website profile.
  • We may use infrastructure, security, email, payment, analytics, and support providers to operate هيت استپس.
  • We may disclose information when required to comply with law, enforce our terms, prevent fraud, or protect our users and service.

Our website and customer dashboards may contain links to other websites. Those websites are not governed by this privacy policy, and you should review their own privacy policies.

Retention

How long we keep information

We keep information only as long as it is needed for the purposes described in this policy, unless a longer period is required for legal, accounting, security, or dispute-resolution reasons.

  • Account information is kept while the customer account is active and being used.
  • Inactive customer accounts may be suspended and deleted after 720 days of inactivity.
  • Visitor-level analytics data is retained for 30 to 360 days based on the customer's purchased plan.
  • Aggregated statistics, such as total pageviews or visitor counts, may remain while the customer has an active account.
Security

How we protect information

We use technical and organizational safeguards designed to protect information from unauthorized access, disclosure, alteration, or destruction.

  • Dashboard access requires authentication, and website data is no longer shared through public report URLs.
  • Passwords are salted and hashed; cleartext passwords are not stored.
  • هيت استپس redirects service access to HTTPS by default to encrypt data in transit.
  • Production data access is limited to authorized staff, and development work uses separated or dummy data where possible.
  • Servers are protected with firewall controls and maintained with security updates and operational monitoring.
Choices

Access, deletion, and opt-out choices

Website owners can manage many privacy-related settings from their هيت استپس dashboard, including consent, anonymization, and tracking options.

Visitors should first contact the website owner where their information was collected. If the website owner does not reply within seven days, visitors may contact us and provide the website address plus enough information for us to locate a match.

Visitors can also opt out from being tracked on customer websites by using our tracking opt-out form.

DPA forms are available upon request for customers who need one.

Cookie policy

How we use cookies

Cookies help us keep users logged in, remember dashboard preferences, diagnose service problems, understand returning visitors, and respect opt-out choices. Dashboard cookies that are necessary for login and security cannot be disabled inside هيت استپس. Tracking cookies are used only when permitted by the website owner's settings and visitor consent requirements.

Browsers control cookie storage. You can remove cookies in your browser settings, but doing so may log you out or reset preferences.

هيت استپس website cookies

  • PHPSESSID: default PHP session handler.
  • id, user, email, pass: account login and authentication details; password data is encrypted/hashed.
  • nomobile: remembers desktop/mobile display preference.
  • hs_notifysound, hs_notifymsg: remembers dashboard notification preferences.
  • user_country: helps select the correct language.
  • mysitegraphdatasource, ctype: remembers graph and report preferences.
  • ew-position: remembers dashboard widget positions.
  • comment_author_#, comment_author_url_#, comment_author_email_#: standard WordPress comment cookies where WordPress is used.

Tracking script cookies

  • blockip: lets a webmaster opt out of being counted on a specified website.
  • #_uidx and #rsuid: identify returning visitors for a specific website.
  • camp and campid: store campaign visit information.
  • #baseref: stores base referrer data for a specific website.
  • #_juid: stores a JavaScript-generated identifier for a specific website.
  • optout: stores a visitor's decision to opt out of tracking.
Updates

Changes to this policy

We may update this privacy policy to reflect product, security, legal, or operational changes. When we make material changes, we will update the date at the top of this page and may provide additional notice when appropriate.

Questions about this policy can be sent through our contact page.