Privacy Policy

Last updated: December 8, 2024

1. Introduction

Phanos ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web analytics service.

2. Our Privacy-First Approach

Phanos is built with privacy as a core principle:

  • No cookies: We do not use cookies for tracking
  • No personal data collection: We do not collect personally identifiable information
  • No cross-site tracking: We do not track users across different websites
  • GDPR & CCPA compliant: Our service is designed to comply with major privacy regulations
  • Data ownership: You own your analytics data and can export or delete it at any time

3. Information We Collect

3.1 Account Information

When you create an account, we collect:

  • Email address (via OAuth providers like Google or Microsoft)
  • Name and profile picture (from your OAuth provider)
  • OAuth provider ID (for authentication purposes)

3.2 Analytics Data

When visitors access websites using Phanos tracking, we collect:

  • Page URLs and referrers
  • Browser type and version
  • Operating system
  • Device type (desktop, mobile, tablet)
  • Country (derived from IP address, but IP addresses are not stored)
  • Page load times and performance metrics
  • Custom events defined by website owners

3.3 Technical Information

We automatically collect certain technical information:

  • IP addresses (processed for geolocation, then discarded)
  • User agent strings
  • Timestamps of visits

4. How We Use Your Information

We use the collected information to:

  • Provide and maintain the analytics service
  • Authenticate and manage user accounts
  • Generate analytics reports and insights
  • Improve and optimize our service
  • Communicate with you about service updates
  • Detect and prevent fraud or abuse
  • Comply with legal obligations

5. Data Storage and Security

Your data is stored securely on Cloudflare's global edge network:

  • Encryption: All data is encrypted in transit using TLS/SSL
  • Access control: Strict access controls limit who can access your data
  • Infrastructure: Built on Cloudflare's secure, enterprise-grade infrastructure
  • Data isolation: Your analytics data is isolated per workspace

6. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information. We may share information only in these circumstances:

  • Service providers: With trusted third parties who assist in operating our service (e.g., Cloudflare, OAuth providers)
  • Legal requirements: When required by law or to protect our rights
  • Business transfers: In connection with a merger, acquisition, or sale of assets
  • With your consent: When you explicitly authorize us to share your information

7. Your Rights and Choices

You have the following rights regarding your data:

  • Access: Request access to your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your account and data
  • Export: Export your analytics data at any time
  • Opt-out: Opt out of marketing communications
  • Portability: Request your data in a portable format

8. Data Retention

We retain your data for as long as your account is active or as needed to provide services. Analytics data is retained according to your plan:

  • Account information: Until you delete your account
  • Analytics data: Configurable retention period (default: indefinite)
  • Deleted data: Permanently removed within 30 days

9. Cookies and Tracking

Phanos does not use cookies for tracking website visitors. We may use essential cookies for:

  • User authentication and session management in the dashboard
  • Security and fraud prevention

These cookies are necessary for the service to function and cannot be disabled.

10. Third-Party Services

We use the following third-party services:

  • Cloudflare: Infrastructure and hosting
  • Google OAuth: Authentication (optional)
  • Microsoft OAuth: Authentication (optional)

These services have their own privacy policies governing their use of your information.

11. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

12. International Data Transfers

Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable laws.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

14. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: privacy@phanos.io
Support: support@phanos.io

15. GDPR Compliance (EU Users)

If you are in the European Economic Area (EEA), you have additional rights under GDPR:

  • Right to be informed about data collection
  • Right of access to your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights related to automated decision-making

16. CCPA Compliance (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of the sale of personal information (we do not sell data)
  • Right to deletion of personal information
  • Right to non-discrimination for exercising CCPA rights
← Back to Dashboard