-
|
I want to integrate Umami into my website and since I live in the EU, I wanted to know if Umami is compliant with the GDPR. |
Beta Was this translation helpful? Give feedback.
Replies: 5 comments 4 replies
-
Beta Was this translation helpful? Give feedback.
-
|
Unfortunately I already read that after I opened this discussion... |
Beta Was this translation helpful? Give feedback.
-
|
This is also a question I have, and I nearly opened up a discussion about it till I saw this. The FAQ does well to mention that there's no cookie stored but a bit worried about privacy policy though if it needs to be included in such. |
Beta Was this translation helpful? Give feedback.
-
|
I have since solved it by simply writing down that no personal data is collected, but among other things [List data collected here] is collected. |
Beta Was this translation helpful? Give feedback.
-
|
How does Umami identify users so that every request doesn't appear as a new user? Not using cookies? |
Beta Was this translation helpful? Give feedback.
-
|
There is a slightly wider question about what to include in the privacy policy of websites using Umami, irrespective of whether they use the cloud or the self-hosted version. There is no doubt that some information is collected and stored to generate the analytics. The GDPR compliance comes from the fact that none of it is personal information of the visitors. However there needs to be some guidance on what we should put in our privacy policies on our websites. Here's what I have put on my site which uses a self-hosted Umami instance; as a starter. But since I'm not an expert, I'd like some opinions and feedback:
DISCLAIMER: I am not qualified to recommend what should be used for your uses. Each application will have a slightly different policy based on the application, deployment, visitors, etc. Please only use the above as starting point, and please customize to your liking. Depending on the risk assessment, I strongly recommend seeking professional legal guidance to ensure that the policy you use, covers the use case. |
Beta Was this translation helpful? Give feedback.
-
|
Thanks for your guidance about legal mentions 🙏 |
Beta Was this translation helpful? Give feedback.
-
|
DISCLAIMER: I am not qualified to recommend what should be used for your uses. Each application will have a slightly different policy based on the application, deployment, visitors, etc. Please only use the above as starting point, and please customize to your liking. Depending on the risk assessment, I strongly recommend seeking professional legal guidance to ensure that the policy you use, covers the use case. |
Beta Was this translation helpful? Give feedback.
-
|
please take a look at #2929 |
Beta Was this translation helpful? Give feedback.
There is a slightly wider question about what to include in the privacy policy of websites using Umami, irrespective of whether they use the cloud or the self-hosted version.
There is no doubt that some information is collected and stored to generate the analytics. The GDPR compliance comes from the fact that none of it is personal information of the visitors.
However there needs to be some guidance on what we should put in our privacy policies on our websites.
Here's what I have put on my site which uses a self-hosted Umami instance; as a starter. But since I'm not an expert, I'd like some opinions and feedback: