Personal Data Information

On this page you will find described the data that userTrack uses and stores on user's PC and on your own server about your visitors that are being recorded using the tracker.js script.

Cookies (data stored on user's computer)

  1. userTrack does not use cookies storage on the user's PC .

  2. userTrack stores data in sessionStorage to identify the current's user session. This unique ID is destroyed once the user ends his session (closes the browser tab).

  3. userTrack also uses localStorage to store user preferences (eg: disable tracking) and for performance improvements as a caching layer before sending data to the server.

Personal information

1. What data is stored on the userTrack server?

The following data might be considered personal information and could be used to associate a person's identity to a specific recorded session:

  1. For each user visit an unique ID is assigned that is only valid for the current browsing session.

  2. Hash of IP + User Agent of the user. (the admin can also decide to save the plain, not hashed, IP).

  3. Using the IP, geolocation data will be generated (Country).

  4. Browser version and screen resolution.

  5. Date of visit, visit duration, pages visited.

  6. Actions done by the user on that site, (unless otherwise disabled by the administrator), such as:

    1. Mouse movements, clicks and scroll activity

    2. Window resizing events

    3. Keyboard input on fields that have not been excluded from tracking

  7. Tags (or labels) which can be automatically be generated or associated by the webmaster.

Note that point (6) above might lead to sensitive information being tracked about the user. It is the webmaster's responsibility to make sure that the tracker is not included on any pages where the user has to enter sensitive information, or at least to disable tracking the form inputs which ask for sensitive information if the user did not consent to this data being stored.

We are currently working on adding the ability to show an opt-in or opt-out dialog to the user regarding userTrack activity.

2. Why is this data stored?

The data mentioned above is stored in order to aid with improving the user experience by analyzing common user behavior, more precisely it is used to:

  1. Playback recordings of the visit. (eg: so the webmaster can understand why the user did or did not perform a specific action.)

  2. Generate aggregated heatmaps/scrollmaps, used to understand which parts of the website's UI draw the most attention.

  3. Have an overview of the traffic reaching the website in order to improve the quality of this traffic and possible conversion rates.

Most stats and tools should ultimately be used for improving the user experience.

3. Opting out or in for tracking

Any visitor accessing a domain where userTrack is installed can disable tracking by accessing any of the pages of that domain where the tracker is installed and add ust-opt-out query string like this:

Doing this will save a flag in localStorage so future visits will not be tracked in any way.

You can also re-enable tracking by using the query stringust-opt-in.

The userTrack dashboard admin can also decide (using the tracking settings) to:

  • respect or not the doNotTrack flag of the browser

  • show or not a consent pop-up

4. Data removal

Q: How can the user ask for deletion of his data? A: As the user's token is destroyed from his machine after the session ends, normally the only cross-session personally identifiable information is the IP+User Agent hash. The user can contact the webmaster and ask for his data to be removed based on the IP+UA mentioned if those have not changed. If those have changed (eg. dynamic IP or browser was updated) there is no way to uniquely identify the user anymore.

Q: Can a specific individual be associated with a session? A: Unless there is other personal data stored (as mentioned in point 1.6), the recorded data can not be considered personal information as the actual person who generated the visit can not be directly associated with a specific recording.

Q: How long is data stored for? A: By default, the number of sessions stored is limited (to 100.000, but the limit can be altered by the webmaster) and once this limit has been reached old sessions will be replaced by newer ones. Data can also easily be deleted, in bulk, by the webmaster. Unless deleted using the aforementioned methods the data is stored indefinitely.

Data stored of webmasters using the userTrack dashboard

Being a self-hosted solution, userTrack does not track any data on external servers regarding usage of the webmasters on the userTrack dashboard. eg: we don't save data about webmasters when they access your /userTrack dashboard.

There are cookies saved on the webmaster's own PC when he logs into the userTrack dashboard in order to keep him logged in for future visits.

โ€‹ privacy policy

At, accessible from, one of our main priorities is the privacy of our visitors. This Privacy Policy document contains types of information that is collected and recorded by and how we use it.

If you have additional questions or require more information about our Privacy Policy, do not hesitate to contact us.

General Data Protection Regulation (GDPR) We are a Data Controller of your information.

S.C. TIPS4DESIGN SRL's legal basis for collecting and using the personal information described in this Privacy Policy depends on the Personal Information we collect and the specific context in which we collect the information:

S.C. TIPS4DESIGN SRL needs to perform a contract with you You have given S.C. TIPS4DESIGN SRL permission to do so Processing your personal information is in S.C. TIPS4DESIGN SRL legitimate interests S.C. TIPS4DESIGN SRL needs to comply with the law S.C. TIPS4DESIGN SRL will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your information to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our policies. Our Privacy Policy was generated with the help of GDPR Privacy Policy Generator and the Privacy Policy Generator.

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. If you wish to be informed what Personal Information we hold about you and if you want it to be removed from our systems, please contact us.

In certain circumstances, you have the following data protection rights:

  • The right to access, update or to delete the information we have on you.

  • The right of rectification.

  • The right to object.

  • The right of restriction.

  • The right to data portability

  • The right to withdraw consent

Log Files follows a standard procedure of using log files. These files log visitors when they visit websites. All hosting companies do this and a part of hosting services' analytics. The information collected by log files include internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date and time stamp, referring/exit pages, and possibly the number of clicks. These are not linked to any information that is personally identifiable. The purpose of the information is for analyzing trends, administering the site, tracking users' movement on the website, and gathering demographic information.

Cookies and Web Beacons Like any other website, uses 'cookies'. These cookies are used to store information including visitors' preferences, and the pages on the website that the visitor accessed or visited. The information is used to optimize the users' experience by customizing our web page content based on visitors' browser type and/or other information.

For more general information on cookies, please read "What Are Cookies".

Privacy Policies You may consult this list to find the Privacy Policy for each of the advertising partners of

Third-party ad servers or ad networks uses technologies like cookies, JavaScript, or Web Beacons that are used in their respective advertisements and links that appear on, which are sent directly to users' browser. They automatically receive your IP address when this occurs. These technologies are used to measure the effectiveness of their advertising campaigns and/or to personalize the advertising content that you see on websites that you visit.

Note that has no access to or control over these cookies that are used by third-party advertisers.

Third Party Privacy Policies's Privacy Policy does not apply to other advertisers or websites. Thus, we are advising you to consult the respective Privacy Policies of these third-party ad servers for more detailed information. It may include their practices and instructions about how to opt-out of certain options. You may find a complete list of these Privacy Policies and their links here: Privacy Policy Links.

You can choose to disable cookies through your individual browser options. To know more detailed information about cookie management with specific web browsers, it can be found at the browsers' respective websites.

Children's Information Another part of our priority is adding protection for children while using the internet. We encourage parents and guardians to observe, participate in, and/or monitor and guide their online activity. does not knowingly collect any Personal Identifiable Information from children under the age of 13. If you think that your child provided this kind of information on our website, we strongly encourage you to contact us immediately and we will do our best efforts to promptly remove such information from our records.

Online Privacy Policy Only Our Privacy Policy applies only to our online activities and is valid for visitors to our website with regards to the information that they shared and/or collect in This policy is not applicable to any information collected offline or via channels other than this website.

Consent By using our website, you hereby consent to our Privacy Policy and agree to its terms.

If you have any questions or requests related to your privacy and data stored on please send an e-mail at [email protected], addressed to "Cristian Buleandrฤƒ".