Privacy Policy

Last Updated: February 26, 2026

1. Information We Collect

We collect information you provide directly to us when using SnapIT Analytics:

• Account Information: Email address, name (when you create an account via Google OAuth)
• Usage Data: How you interact with our service
• Device Information: Browser type, IP address, operating system
• Cookies: We use essential cookies for authentication and functionality
• Analytics Data: When you install our tracking code on your websites, we collect page views, click events, scroll depth, and other user interaction data from your website visitors

2. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

• Contract Performance (Art. 6(1)(b)): Processing necessary to provide our analytics service to you under our Terms of Service
• Legitimate Interest (Art. 6(1)(f)): Processing necessary for our legitimate business interests, such as improving our services, preventing fraud, and ensuring security, where those interests are not overridden by your rights
• Consent (Art. 6(1)(a)): Where you have given clear consent for us to process your personal data for specific purposes (e.g., marketing communications, analytics cookies)
• Legal Obligation (Art. 6(1)(c)): Processing necessary to comply with legal obligations (e.g., tax records, fraud prevention)

You have the right to withdraw consent at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our services
• Process transactions and send related information
• Send technical notices and support messages
• Respond to your comments and questions
• Monitor and analyze trends, usage, and activities

4. Data Security

We implement industry-standard security measures to protect your data:

• Encryption: All data transmitted using HTTPS/TLS
• Secure Storage: Data stored with AES-256 encryption on AWS
• Access Controls: Strict authentication and authorization

5. Third-Party Services

We use the following third-party services:

• Stripe: Payment processing (see Stripe Privacy Policy)
• Google OAuth: Authentication (see Google Privacy Policy)
• Google Analytics: We may use Google Analytics to understand how users interact with our marketing website. Google Analytics uses cookies to collect information about your browsing behavior. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.
• AWS: Hosting and data storage (data is stored in the US-East-1 region)

We do not sell your personal information to third parties. We share data with the service providers listed above only as necessary to operate our service. These service providers are contractually bound to handle your data in accordance with applicable privacy laws.

6. International Data Transfers

Your data is processed and stored in the United States on Amazon Web Services (AWS) infrastructure. If you are located outside the United States, please be aware that your personal data will be transferred to and processed in the United States.

For users in the European Economic Area (EEA), United Kingdom (UK), or Switzerland, we rely on the following safeguards for international data transfers:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• AWS's compliance with applicable data protection frameworks

By using our service, you acknowledge and consent to the transfer of your data to the United States.

7. Your Rights (GDPR Compliance)

If you are in the EEA, UK, or Switzerland, you have the following rights regarding your personal data:

• Access (Art. 15): Request a copy of your personal data
• Rectification (Art. 16): Request correction of inaccurate data
• Erasure (Art. 17): Request deletion of your account and data ("right to be forgotten")
• Right of Access: You have the right to request a copy of all personal data we hold about you. We will respond to your request within 30 days.
• Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
• Restriction (Art. 18): Request restriction of processing
• Data Portability (Art. 20): Export your data in a machine-readable format
• Object (Art. 21): Object to processing based on legitimate interest
• Withdraw Consent: Withdraw consent for data processing at any time
• Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority in the EU member state of your habitual residence, place of work, or place of the alleged infringement

To exercise any of these rights, please contact us at privacy@snapitsoftware.com. We will respond within 30 days.

8. California Privacy Rights (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide you with specific rights:

• Right to Know: Request information about the categories and specific pieces of personal information we collect
• Right to Delete: Request deletion of your personal information, subject to certain exceptions
• Right to Opt-Out of Sale: We do not sell personal information to third parties for monetary consideration
• Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights

Categories of Personal Information We Collect

• Identifiers: Name, email address, IP address
• Commercial Information: Transaction history, subscription details
• Internet Activity: Usage data, browsing history on our site, analytics data

We do not sell personal information and have not sold personal information in the past 12 months. We share data with service providers (Stripe, Google, AWS) only to operate our services, not for sale or independent use by those providers.

To submit a CCPA request, contact us at privacy@snapitsoftware.com. We will verify your identity and respond within 45 calendar days. You may also visit our Do Not Sell My Personal Information page.

9. Cookies

We use the following types of cookies:

• Essential cookies: Authentication and session management (always active)
• Preference cookies: Remembering your settings and consent choices
• Analytics cookies: Understanding how users interact with our site (only with your consent)

Analytics tracking on this website is gated behind our cookie consent banner. No analytics cookies are set until you explicitly accept them.

10. Do Not Track / Global Privacy Control

Our analytics tracking script respects Do Not Track (DNT) and Global Privacy Control (GPC) browser signals. If your browser sends a DNT or GPC signal, our tracking script will not collect analytics data.

11. Children's Privacy

SnapIT Analytics is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us so we can delete it.

12. Data Retention

We retain your data as follows:

• Account data: Retained for as long as your account is active. You can delete your account at any time.
• Analytics event data: Retained according to your subscription plan (Free: 30 days, Basic: 90 days, Pro: 6 months, Business: 1 year, Enterprise: 2 years, Ultimate: custom)
• Payment records: Retained for 7 years as required by tax law
• Server logs: Retained for 90 days for security and debugging purposes

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the "Last Updated" date and, where required, by sending you an email notification. Continued use of the service after changes constitutes acceptance of the updated policy.

14. Data Protection Contact

For privacy questions, data requests, or to exercise your rights, contact us at:

Email: privacy@snapitsoftware.com

Company: SnapIT Software

Owner: Terrell Flautt

Location: 9741 N Lake Creek Pkwy, STE C-219, Austin, TX 78717

Phone: (512) 669-5724

For EU residents: If you are not satisfied with our response, you have the right to lodge a complaint with your local Data Protection Authority.

Back to Home