Welcome to Sitelens! Our company is committed to protecting your privacy and ensuring the security and safeguarding of your personal information.

Like many others, we also believe privacy is a fundamental right. This Privacy Policy explains how we collect, use, and safeguard data. It covers two distinct contexts:

1. Visitors to sitelens.cx and subscribers to our service – where Sitelens acts as the Data Controller.
2. End-users tracked through Sitelens analytics on customer websites – where Sitelens acts as a Data Processor on behalf of our customers.

This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you use our privacy-first analytics platform ("Sitelens", "we", "us", or "our").

1. Who We Are

Sitelens is a visual website analytics platform, that provides an innovative data overlaying tool, for any businesses that own a website, operated by S.C. Haktos Creative S.R.L., registered at Str. Panselelor 1, bl. P11, ap. 14, Sannicolau-Mare, Timis, Romania. We provide our website analytics service, that also includes AI-driven insights into the key performance indicators of your websites, without collecting any Personally Identifiable Information (PII).

2. When We Act as Data Controller (Visitors & Subscribers)

When you visit sitelens.cx, sign up for an account, or otherwise interact with us directly, Sitelens is the controller of your data.

What We Collect:

• Business contact details (e.g., email, name, company)
• Login credentials for your Sitelens account
• Billing and subscription details (if you subscribe)
• Support or inquiry communications
• Functional cookies to manage account login and sessions

How We Use This Data:

• To provide and manage your subscription
• To send transactional emails (via vetted providers, e.g., SendGrid, Postmark)
• To process payments and billing (if applicable)
• To respond to inquiries and provide support

We do not sell or share subscriber or visitor data with third parties, except for service providers necessary for operating Sitelens (e.g., payment processing, email delivery).

3. When We Act as Data Processor (Analytics End-Users)

When you deploy the Sitelens analytics snippet on your website, Sitelens processes data about your visitors on your behalf. In this case, you are the data controller, and Sitelens is the data processor.

Event Types:

• Pageview
• Click
• Element View
• Outbound Link Click
• Engagement (scroll depth, time on page)
• Custom Events (optional, set by customer)

Data Fields:

• site_token: Identifier for the website using Sitelens
• domain: Website domain name
• session_id: Anonymous session ID (stored in localStorage)
• event_type: The type of user interaction
• element_selector, element_path: HTML element details (if applicable)
• url: The full page URL (excluding query parameters)
• referrer: Only the domain, never full referrer URL
• device_type, device_width: For display analytics
• timestamp: ISO timestamp of the event
• country: Derived from IP using GeoIP (only the country code is stored)
• props: Custom event metadata (optional)

What We Do Not Collect:

• No IP addresses are stored or logged
• No cookies are set for analytics tracking
• No personal identifiers (names, emails, payment details)
• No cross-site tracking

4. How We Use Data

• To provide site usage analytics to our customers
• To improve user experience and conversion insights
• For aggregated reporting only (no individual profiling)

Customers are responsible for ensuring that any custom events they send do not include PII unless explicit consent is obtained from the users.

5. How We Store and Protect Data

• Data is hosted in EU-Central (Germany) via Digital Ocean and/or AWS.
• Session IDs are stored in localStorage only and are unique per site, browser, and session.
• All data is encrypted in transit (HTTPS).
• No PII is collected, and no IP addresses are logged.

6. Third Parties

We do not use any third-party processors or share your data with any external vendors.

7. Cookies & LocalStorage

Sitelens does not use cookies. We store a short-lived session_id in localStorage to group events during a single visit. This ID:

• Is randomly generated
• Cannot identify users
• Is not shared across websites

8. Data Retention

We will retain your data as long as your account is active, as required to provide you with the services that you have subscribed for, as detailed out in our Subscription Packages. We will retain you account data, as long as the account is active, or as legally required for billing, compliance or any legal disputes.

You are free to permanently delete your account at any time, after which we will delete all your data.

9. Your Rights (GDPR, CCPA)

While we do not collect personal data, if our customers choose to track custom data that could be personal, they are responsible for obtaining consent.

Under GDPR, CCPA, and similar laws, you may have the right to:

• Access, correct, or delete your personal data
• Object to certain processing activities
• Request data portability
• Lodge a complaint with a supervisory authority

For analytics end-users, please contact the website owner (our customer) directly. For sitelens.cx visitors or subscribers, contact us at privacy@sitelens.cx.

10. Updates

We may update this Privacy Policy to reflect changes. We'll notify customers of significant updates via email or our website.

Contact Us

Sitelens (operated by S.C. Haktos Creative S.R.L.)

Str. Panselelor 1, bl. P11, ap. 14, Sannicolau-Mare, Timis, Romania

Email: privacy@sitelens.cx

This Privacy Policy is designed in accordance with GDPR, CCPA, and PECR compliance principles.