Privacy
Klar is designed from the ground up to protect visitor privacy.
What We Collect
Klar collects only the minimum data needed for analytics:
- Page URL — The path being visited
- Referrer — Where the visitor came from
- Screen width — For device type detection
- UTM parameters — For campaign tracking
What We DON'T Collect
We explicitly do not collect:
- ❌ Personal identifiable information (PII)
- ❌ Email addresses or names
- ❌ IP addresses
- ❌ Cookies
- ❌ Browser fingerprinting
- ❌ Cross-site tracking data
- ❌ Exact location data
GDPR Compliance
Klar is GDPR-friendly by design:
- No cookies required
- No personal data collection
- No consent banners needed
- Data processing agreement available
Under GDPR, Klar qualifies as a "simple measurement tool" because we don't process personal data.
CCPA Compliance
Klar does not sell visitor data. We don't collect information that could be sold or used for targeted advertising.
How Visitor Tracking Works
Klar uses a privacy-first approach to understand visitors without invading their privacy:
Visitor Identifier
When a visitor first arrives, Klar generates a unique ID stored in their browser's localStorage:
localStorage: {
_klar_vid: "v_abc123xyz1234567890" // e.g., "v_a3x7k2m9f2"
}- Stored only in the visitor's browser (localStorage)
- Doesn't follow users across different browsers or devices
- Resets if the user clears their browser data
- Not a "real" identity — just a random ID to count unique visitors
Session Tracking
Sessions are tracked automatically:
localStorage: {
_klar_vid: "v_abc123..." // Visitor ID
_klar_sess: 1711555200000 // Session start timestamp
_klar_last: 1711558800000 // Last activity timestamp
}- A session starts on first visit
- A session "times out" after 30 minutes of inactivity
- Session data stays in the visitor's browser only
What We Know
- "This browser visited 5 pages over 10 minutes"
- "This is a new visitor to this site"
- "This visitor came from Twitter"
What We DON'T Know
- Who the person is (no name, email, etc.)
- Where they go after leaving your site
- What they do on other websites
- Their real IP address
- Any persistent identifier that follows them online
Comparison
| Feature | Google Analytics | Klar |
|---|---|---|
| Cookies | Yes (4+ cookies) | None |
| Cross-site tracking | Yes (via Google accounts) | No |
| IP storage | Yes (anonymized) | No |
| GDPR consent required | Yes | Usually no |
| Fingerprinting | Yes | No |
| Data sold/shared | Yes (aggregated) | Never |
Privacy-Preserving Features
No Cookies
Klar uses localStorage instead of cookies. This means:
- No cookie consent banners required in most jurisdictions
- Data stays in the visitor's browser only
- Visitors can't be tracked across different browsers
Do Not Track Support
Honor visitor's DNT preference:
<script
src="https://your-klar-instance.com/klar.js"
data-site-id="your-site-id"
data-honor-dnt="true"
defer
></script>IP Anonymization
We don't store IP addresses at all. We get country info from Cloudflare headers (when available), but never store the full IP.
Data Retention
Data retention depends on your plan:
- Free: 7 days
- Pro: 1 year
- Business: 3 years
Older data is automatically deleted.
Data Security
- All data encrypted in transit (TLS)
- Secure database infrastructure
- Regular security audits
- No third-party data sharing
Your Data
You own all your data. You can:
- Export your data at any time
- Request complete data deletion
- Delete individual sites or events
Contact us at privacy@klar.example.com for data requests.