I’m interested in knowing if Netlify uses it’s RUM script tag to track users and store personal information or IP addresses?
It’s a pretty simple question, but there doesn’t seem to be any information on how the tracking effects the privacy of our site’s visitors.
Hi @hrishikesh, thanks for your response.
Are you saying that Netlify collects PII on every visitor to my websites?
Or that Netlify collects PII on users of Netlify, e.g. customers of the netlify platform?
If it’s the former — i think that would be a major problem. If it is the latter, then I’d still like to have some information on how Netlify RUM tags effect user privacy.
IP is listed as PII in GDPR, I suppose. So yes, Netlify collects IP of all requests made to Netlify. Most, if not all the servers around the world do that, there’s no surprise about it.
What other PII are you worried about?
You can also read:
Thanks again for the reply — I think it may be down to whether or not Netlify is collecting and processing the data for reasons other than serving a webpage.
If everyone who visits my website has their IP address stored, and then saved along with every other website they visit or that data is sold to data brokers — that would be an issue.
We can only talk about Netlify - not the sites hosted on Netlify.
I think that’s the heart of the issue, but the otherway round. I can’t tell my users that their data is secure, because there’s no clear guarantee that Netlify is not collecting or selling their data through my site.
The nature of data collected by Netlify from users’ sites is listed on the first link I shared. Towads the the bottom of the page there’s a Netlify DPA that says all that.
Thank you, that’s very helpful.