Skip to content
European Data Processing

The Right to Be Left Alone

In 1890, Samuel Warren and Louis Brandeis argued that the law must recognize a distinct right to privacy. They believed that technology should never be allowed to strip away our "inviolate personality." Today, the internet has forgotten this.

In a bakery, the baker counts the sale, but they don't pin a GPS tracker to your collar to see where you go next. The internet broke this default. We are fixing it. We count the visit, not the person.

What "Privacy-First" Actually Means

Privacy is not a legal checklist. It is the moral space individuals need to think, choose, and become themselves.

For us, being privacy-first means we minimize data by default, regardless of what the law technically allows. It is a proactive, values-driven approach that treats privacy as a product virtue. We ask: "How can we give users value without collecting sensitive data?"

The Hierarchy of Privacy

Diagram of the Privacy Hierarchy: Ephemerality is the foundation, supporting Aggregation, which leads to Insight.

"We build insight on a foundation of ephemerality."

3
Insight Value without surveillance.
2
Aggregation Grouped metrics. No individual profiles.
1
Ephemerality 24-hour data expiry. No persistent history.

Here is exactly what happens when a visitor loads your page.

1. The Visit (Not the Visitor)

You walk into the store. We count the entry. Unlike traditional analytics, we do not set a cookie. There is no persistent ID stamped on your device. The interaction is treated as ephemeral, just like in the physical world.

2. The 24-Hour Firewall

We generate a Visit ID using a one-way cryptographic hash. This "Salt" is a random secret that auto-rotates every 24 hours.
?

3. The Daily Reset

When the salt rotates at midnight, the math changes. If the same user returns tomorrow, they generate a completely different hash. We cannot mathematically link the two visits. This creates a privacy firewall between days.

4. Aggregated & Safe

We store the anonymous visit context (Page URL, Browser, Country) and discard the raw IP address immediately. Because the link to the user is broken every 24 hours, this data is technically incapable of building a long-term user profile.

The Privacy Trade-Off

We killed the cookie. We must be honest about what that costs—and what it gains.

The Cost: Multi-Touch Attribution

Because we cannot track a user across days, we cannot tell you that someone clicked an ad on Monday and bought a product on Friday.

We accept this loss.

"User Journeys" are often fragmented by devices and browsers anyway. We chose not to invade privacy to chase a mirage.

The Gain: The Missing 30%

The current web analytics model is broken. By removing the invasive tracker, we remove the need for the banner.

Consent Banners -55% Data Loss
Ad Blockers -15% Data Loss
VeritaMetrics 0% Data Loss

Compliance by Design

We operate on a simple legal distinction: The Store vs. The Home.

  • Legitimate Interest: A shopkeeper has a right to know how many people entered the store. This is our Visit ID.
  • Explicit Consent: A shopkeeper needs permission to follow customers home. This is the Persistent Cookie.

We stick to the store.

GDPR Analysis

Article 6(1)(f): Processing is necessary for the purposes of the legitimate interests pursued by the controller.

Balancing Test: Does this override user rights?
No. Because the data is ephemeral (24h expiry), salted, and cannot be used for cross-site tracking.

Your Privacy Policy

Using VeritaMetrics simplifies your compliance. Here is a sample snippet you can include in your own privacy policy.

Analytics:
We use VeritaMetrics to collect anonymous usage data. It does not use cookies or store IP addresses. All data is aggregated and processed in the EU.

Data collected:

  • Page Context: The specific URL visited and the Page Title.
  • Traffic Source (Referrer): The URL of the page the user was on immediately before clicking a link to your site. We use this for attribution, but we do not have access to history prior to that link.
  • Device Context: Browser type, Operating System, and Device type (e.g., Mobile vs Desktop).
  • Approximate Location: Country, Region, and City derived from the IP address (which is then immediately discarded).
  • Ephemeral Visit ID: A temporary, salted hash that automatically expires every 24 hours. This isolates the visit in time and prevents long-term profiling.

Have specific compliance questions?

Read GDPR Statement Read Our Privacy Policy Contact Privacy Team