GDPR Compliance Statement
GDPR Compliance
Overview
Peasy is committed to privacy and security. As an analytics tool provider, we handle data responsibly and follow the General Data Protection Regulation (GDPR). This page outlines our data protection practices.
What is GDPR?
The General Data Protection Regulation took effect on 25 May 2018. It requires organisations to protect personal data and uphold privacy rights for individuals in the European Union and the UK GDPR in the United Kingdom.
Does GDPR apply to you?
If your business operates in the EU or UK, or handles personal data of individuals in those regions, GDPR applies to you.
Is Peasy GDPR compliant?
Yes. Peasy adheres to the GDPR framework.
Peasy as a Data Controller
Peasy acts as a Data Controller for personal information you provide to use our service, for example registration details like email. We do not sell personal data or use it for marketing without consent.
We use a minimal set of sub-processors.
| Service | Use | GDPR compliance |
|---|---|---|
| Stripe | Payment processing | Learn more |
| Mailgun | Transactional email | Learn more |
Peasy as a Data Processor
By default, Peasy does not store private information about your website visitors.
We store the following data for each visitor:
| Name | Description |
|---|---|
| Unique hash | Calculated with a hash of domain, IP address, user agent, and a daily salt. The salt is unique per domain and rotates daily. This lets us count unique visits without cookies. |
| Country & City | Derived from Cloudflare headers CF-IPCountry and CF-IPCity. We do not store visitor IP addresses. |
| User agent | Browser, OS, and device type, without storing the full user agent string. |
| HTTP referrer | Referring website, if available. |
| UTM sources | All available UTM tracking data, if present. |
| Page views & events | Pages viewed and related events per unique hash. |
Clients can add custom data to visitor profiles, for example name, email, or other fields. In this case, Peasy acts as a Data Processor, and clients are responsible for a lawful basis and any required consent. Peasy stores this data securely and does not share it with third parties.
Clients control the data they send. They can view and delete data in the Peasy interface or by request. We also remove deleted data from backups after 30 days.
We do not sell or share visitors’ data with any third parties.
Cookie Policy
We do not set cookies on our clients’ visitors’ browsers. Third-party cookie consent banners are not required for Peasy.
Questions?
Contact us:
- Email: [email protected]
Deepserp Limited
86-90 Paul Street
London, EC2A 4NE
United Kingdom
Attribute every AI visit to revenue and growth.
Easy setup, instant insights.
based on real user feedback