undefined | Better HN

0 pointsmarkosaric5y ago0 comments

Thank you!

Here's how we've done it. There's no legal precedent but we believe this makes us compliant:

To enhance the visitor privacy, we don’t actually store the raw visitor IP address in our database or logs. We run it through a one-way hash function to scramble the raw IP addresses and make them impossible to recover.

To further enhance privacy, we add the website domain to the IP hash.

We also add the User-Agent string to the hash.

We've shared more details on this here https://plausible.io/data-policy

0 comments

mstolpm5y ago

Thanks. Had a lot on your site before posting, but didn't find that details. Perhaps you should add a link/hint on the frontpage regarding how you address GDPR compliance. (I'm not a lawyer, so I'm not qualified to judge on the solution.)

markosaricOP5y ago

Thanks for the feedback. We link to it from the top menu under "Why Plausible" as "GDPR / CCPA Compliant" but perhaps there could be a better placement for it. Thanks again!

j / k navigate · click thread line to collapse

0 comments

mstolpm5y ago

markosaricOP5y ago

Thanks for the feedback. We link to it from the top menu under "Why Plausible" as "GDPR / CCPA Compliant" but perhaps there could be a better placement for it. Thanks again!

j / k navigate · click thread line to collapse