Metrone

Privacy Policy

Last updated: February 28, 2026

Metrone ("we", "us", "our") is a privacy-first web analytics and AI feature tracking platform operated by Metrone Inc. This policy explains what data we collect, how we process it, and your rights regarding that data.

1. Data We Collect

When a visitor loads a page on a website using Metrone, we collect:

  • Page URL, referrer URL, and UTM parameters
  • Custom events and AI interaction events sent by the site owner
  • Browser name and version (parsed, not the raw User-Agent string)
  • Operating system and device type (desktop, mobile, tablet)
  • Approximate geographic location (country, region, city) resolved at our edge network
  • Screen dimensions and language preference

2. Data We Do Not Collect

Metrone is designed to avoid personal data entirely:

  • No cookies. We never set or read cookies in the visitor's browser.
  • No IP addresses. IP addresses are processed at the edge and immediately replaced with a daily-salted SHA-256 hash. The raw IP is never stored or transmitted to our database.
  • No raw User-Agent strings. We parse the browser, OS, and device type at the edge and discard the original string.
  • No fingerprinting. We do not use canvas, WebGL, font enumeration, or any other fingerprinting technique.
  • No personal identifiers. We do not collect names, email addresses, or any information that identifies an individual visitor.

3. How Data Is Processed

Every analytics event is processed at our global edge network (275+ locations worldwide) before anything reaches our database. At the edge, we hash the IP address with a daily-rotating salt, parse the User-Agent into structured fields, and enrich the event with geographic data resolved natively from the network — no external IP lookup service is used. Only the processed, non-personal data is written to our database.

4. Legal Basis for Processing

Because Metrone does not collect personal data, cookies, or any form of persistent identifier, our analytics do not fall under the consent requirements of the GDPR, ePrivacy Directive, or similar regulations. Where a legal basis is required, we rely on the legitimate interest of website operators to understand their traffic in aggregate. French data authority CNIL and other EU regulators have confirmed that cookie-less, non-identifying analytics may operate without consent banners.

5. Cookie-Free Tracking

Metrone uses a daily-salted hash to approximate unique visitor counts without tracking individuals. The salt rotates every 24 hours, making it impossible to follow a visitor across days. This approach means website owners using Metrone are not required to show cookie consent banners for analytics purposes.

6. Data Retention

Processed analytics data is retained based on your subscription plan:

  • Starter — 1 year
  • Growth — 2 years
  • Scale — 5 years

After the retention period, data is automatically deleted. You may request earlier deletion at any time by contacting us.

7. Sub-Processors

We use the following third-party services to operate Metrone:

  • Cloud infrastructure provider (United States) — Managed database hosting for analytics data
  • Edge compute provider (Global, 275+ locations) — Edge processing, CDN, and geographic enrichment
  • Stripe (United States) — Payment processing for subscriptions

8. Data Storage & Security

All analytics data is stored in managed database infrastructure located in the United States. Data is encrypted at rest and in transit. Access to production infrastructure is restricted to authorized personnel with multi-factor authentication.

9. Your Rights

Because we do not collect personal data, we generally cannot identify data belonging to a specific individual. However, as a Metrone customer (site owner), you have the right to:

  • Access all analytics data collected for your sites
  • Export your data in a machine-readable format
  • Delete your data at any time, including full account deletion
  • Object to any processing you believe falls outside the scope of this policy

To exercise any of these rights, contact us at hello@metrone.io.

10. Children's Privacy

Metrone does not knowingly collect any personal information from children under 16 years of age. Since our analytics are designed to avoid collecting personal data entirely, we do not have a mechanism to determine visitor age. If you believe we have inadvertently collected information from a child, please contact us and we will take prompt action.

11. International Transfers

Analytics data processed at our edge network may pass through servers in multiple jurisdictions before being stored in the United States. Because no personal data is collected, standard cross-border transfer restrictions do not typically apply. For customers who require formal safeguards, we offer Standard Contractual Clauses (SCCs) as part of our Data Processing Agreement.

12. Changes to This Policy

We may update this privacy policy from time to time. Material changes will be communicated via email to account holders and posted on this page with an updated revision date. Continued use of Metrone after changes constitutes acceptance of the revised policy.

13. Contact Us

If you have questions about this privacy policy or our data practices, reach us at hello@metrone.io.