Philip Sloth
Privacy

What this site tracks, plainly.

philipsloth.com runs a small, cookieless analytics pipeline so I can see what's working and what isn't. No third-party trackers, no advertising networks, no fingerprinting. Here's exactly what gets collected and why.

What I collect

  • An anonymous visitor ID — a random UUID generated in your browser the first time you visit and stored in your browser's localStorage. It's not derived from anything personal — clear it any time and you'll look like a brand new visitor.
  • A per-tab session ID — same idea, but lives only in sessionStorage and dies when you close the tab.
  • Approximate location — country, city, region, timezone. These come from Cloudflare's edge servers based on your IP, but your IP itself is never stored. Only the resolved country/city makes it into the database.
  • Device basics — operating system, browser, viewport size, language preference, dark/light mode preference.
  • Page activity — which page you're on, how long you spent, how far you scrolled, the referrer that brought you here, and any UTM tags on the URL.
  • Performance data — browser-reported web vitals (LCP, INP, CLS, etc.). Used to keep the site fast.
  • If you use the contact form — your name, email, message, optional company, and any attachments. Stored so I can respond and keep a record.

What I don't collect

  • No cookies (the visitor/session IDs use localStorage, not cookies).
  • No IP addresses, hashed or otherwise.
  • No fingerprinting — no canvas, audio, font, or device-API probing.
  • No third-party trackers — no Google Analytics, Meta Pixel, ad networks.
  • No cross-site tracking. The data never leaves my Cloudflare + Supabase setup.

How long it sticks around

  • Raw events: 30 days, then automatically deleted.
  • Anonymous daily totals (e.g. "12 sessions on April 15") are kept indefinitely so I can see long-term trends. These contain no individual data.
  • Contact form messages are kept until I delete them — usually after I've responded and any project wrapped up.

Opting out

Three independent ways to opt out of analytics on this site:

  • The toggle below. One click, takes effect immediately, persists in your browser's localStorage. Flip it back any time to re-enable.
  • Browser Do-Not-Track. If your browser sends a Do Not Track header, the tracker becomes a no-op for this site. Zero events get sent regardless of the toggle below.
  • Clear site data. Wipes the anonymous visitor ID and any preferences stored locally. You'll show up as a brand-new visitor on your next pageview.
Loading current preference…

Your data, your call

Email me at [email protected] if you want me to delete data tied to your visitor ID, contact submissions, or anything else. I'll confirm within 30 days.

Where it's stored

All analytics data lives on Supabase (Postgres) in an EU region, with edge ingestion via Cloudflare Workers. Email is sent via Resend.

← Back to home·Last updated: 2026-04-29