Privacy Policy

Last updated: April 10, 2026

1. Introduction

Privacy Analytics ("we", "our", or "us") is operated by Aven Vertex. We are committed to protecting your privacy and being transparent about how we handle data. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.

This policy applies to our website at analytics.avenvertex.com and any related services we provide.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Full name
  • Email address
  • Password (stored securely hashed — we never store plaintext passwords)

2.2 Billing Information

If you subscribe to a paid plan, payment processing is handled entirely by our payment processor, Dodo Payments. We do not store your credit card numbers, bank account details, or other payment credentials on our servers. Dodo Payments acts as the Merchant of Record for all transactions.

2.3 Analytics Data (Your Website Visitors)

This is the core of what makes us different. When you install our tracking script on your website, we collect the following data about your website visitors:

  • Page URL and referrer
  • Browser type and operating system (from User-Agent)
  • Device type (desktop, mobile, tablet)
  • Country (derived from IP, then IP is immediately discarded)
  • A daily-rotating anonymous visitor hash (not a persistent identifier)

What we do NOT collect from your website visitors:

  • No cookies are set — ever
  • No IP addresses are stored
  • No personal data or personally identifiable information (PII)
  • No cross-site or cross-device tracking
  • No fingerprinting

3. How We Use Your Information

We use the information we collect to:

  • Provide and maintain your account and our services
  • Display website analytics in your dashboard
  • Send transactional emails (welcome emails, password resets, billing notifications)
  • Process subscription payments through Dodo Payments
  • Monitor and improve the performance and security of our service

We do not sell, rent, or share your personal information or your visitors' analytics data with third parties for marketing or advertising purposes.

4. Third-Party Services

We use the following third-party services:

  • Supabase — Authentication and database hosting (EU/US data centers)
  • Dodo Payments — Payment processing and subscription management (Merchant of Record)
  • Resend — Transactional email delivery
  • Sentry — Error monitoring and performance tracking (for our application, not your visitors)
  • Render — Application hosting

Each of these services has their own privacy policy. We only share the minimum data necessary for each service to function.

5. Data Retention

Analytics data is retained according to your subscription plan:

  • Free plan: 7 days
  • Starter plan: 180 days
  • Growth plan: 365 days
  • Agency and Scale plans: Unlimited retention

Expired data is automatically deleted daily by our data pruning system. Account data (name, email) is retained until you delete your account.

6. Cookies

Our tracking script does not use cookies. This is a fundamental design principle of Privacy Analytics. Your website visitors are never tracked with cookies, localStorage, or any other persistent browser storage mechanism.

Our application dashboard uses essential session cookies solely to keep you logged in to your account. These are strictly necessary for the service to function and are not used for tracking or advertising.

7. GDPR Compliance

Privacy Analytics is designed to be GDPR-compliant by default. Because our tracking script does not collect personal data, does not use cookies, and does not track individuals across sites or sessions, it does not require a cookie consent banner under GDPR, ePrivacy Directive, or similar regulations.

For your account data, you have the following rights under GDPR:

  • Right of access — You can view all your data in your account dashboard
  • Right to rectification — You can update your account information in Settings
  • Right to erasure — You can delete your account and all associated data from Settings
  • Right to data portability — You can export your analytics data (Growth plan and above)
  • Right to object — You can contact us to object to data processing

8. CCPA Compliance

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information:

  • Right to know — You can request details about the personal information we collect
  • Right to delete — You can request deletion of your personal information
  • Right to opt-out of sale — We do not sell personal information to third parties
  • Right to non-discrimination — We will not discriminate against you for exercising your CCPA rights

9. Data Security

We take the security of your data seriously:

  • All data is transmitted over HTTPS/TLS encryption
  • Passwords are hashed using industry-standard algorithms (bcrypt via Supabase Auth)
  • Database access is protected by Row-Level Security (RLS) policies
  • API endpoints are rate-limited to prevent abuse
  • Visitor IP addresses are used only for anonymous hashing and are never stored

10. Children's Privacy

Privacy Analytics is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will take steps to delete that information promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of our service after any changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: support.aven@gmail.com
Business: Aven Vertex