Home

Privacy Policy

Last updated: March 31, 2026

What we collect

teeny-tiny.tools Analytics collects minimal, anonymous data about website visitors. We do not use cookies, localStorage, fingerprinting, or any form of cross-site tracking.

For each pageview, the following is collected:

  • Page URL (path, query string, hash)
  • Referrer URL
  • Screen and viewport dimensions
  • Browser language
  • Timezone
  • Time spent on page
  • Device type and browser (via User-Agent Client Hints)
  • Country (derived from CloudFront edge location, not IP geolocation)

What we do NOT collect

  • No cookies or localStorage
  • No IP addresses stored (used only for a privacy-preserving daily hash, then discarded)
  • No personal identifiable information (PII)
  • No cross-site tracking
  • No fingerprinting

How we count unique visitors

We use a privacy-preserving daily hash: SHA256(IP + User-Agent + date). This produces a one-way hash that cannot be reversed to recover the IP address. The hash changes every day, so visitors cannot be tracked across days. Raw IP addresses are never stored in our analytics database.

Do Not Track

Our tracker respects the navigator.doNotTrack browser setting. When Do Not Track is enabled, no data is collected. Site owners can override this behavior with the data-ignore-dnt attribute.

Data storage

Analytics data is stored in Amazon S3 (US East region) and queried via Amazon Athena. Data is encrypted at rest. Raw CloudFront logs transition to infrequent access storage after 90 days and are archived after 1 year.

Dashboard accounts

When you create a teeny-tiny.tools account, we store your email address and a hashed password (managed by Supabase Auth). We do not sell or share your account information with third parties.

Third-party services

  • Supabase — Authentication and database (US East region)
  • AWS — Data pipeline, storage, and analytics (US East region)
  • Vercel — Dashboard hosting
  • Stripe — Payment processing (for paid plans)

Data deletion

You can delete your sites at any time from the dashboard settings. Deleting a site removes it from our database and stops data collection immediately. Historical analytics data for deleted sites is retained in S3 according to the lifecycle policy but is no longer queryable.

To delete your account entirely, contact us at privacy@teeny-tiny.tools.

GDPR compliance

Our analytics service is designed to be GDPR-compliant by default. We do not collect personal data, do not use cookies, and do not track users across sites. No consent banner is required when using teeny-tiny.tools Analytics.

Changes to this policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated date.

Contact

For privacy-related questions, contact us at privacy@teeny-tiny.tools.