Privacy Policy of AJNIX Analytics

Last updated: October 11, 2025

AJNIX Analytics places the utmost importance on protecting the personal data of its users. This Privacy Policy describes how we collect, use, share, and protect your data when you access our Services, which include our website [](http://www.ajnix.com), our dashboard, our WordPress/WooCommerce integrations, our APIs, and our marketing attribution features.

We comply with applicable regulations, including:

The General Data Protection Regulation (GDPR) for users in France and the European Union.
The Personal Information Protection and Electronic Documents Act (PIPEDA) for users in Canada.
The California Consumer Privacy Act (CCPA) and equivalent state laws for users in the United States.

By using our Services, you acknowledge that you have read and understood this policy. If you have any questions, please contact us at privacy@ajnix.com. We recommend consulting a legal professional for any specific interpretation.

1. Definitions

Personal Data: Any information relating to an identified or identifiable natural person (for example, name, email address, IP address before anonymization).
Services: Marketing analytics platform including multi-touch attribution, traffic source classification, campaign management, and automated insights.
User: Any person or entity using our Services.
Data Controller: AJNIX Analytics, as the data processing controller.
Sub-processor: Any third-party entity processing data on our behalf.
Anonymization: Process rendering data non-identifiable in an irreversible manner (for example, hashing IP addresses upon collection).

2. Types of Data Collected

We collect only the data necessary for the provision and improvement of our Services.

2.1 Data Provided by the User

Identification information: First name, last name, email address, phone number (for account creation and workspace management).
Professional data: Company name, role (for access permissions).
Campaign-related data: Site URLs, UTM parameters, budgets, and statuses.
Billing data: Payment information processed via our provider (Stripe).

2.2 Data Collected Automatically

Technical data: IP address (anonymized upon collection), device type, operating system, browser.
Analytics data: Sessions, events, conversions, traffic sources (e.g., Paid or Organic channels), UTM parameters, aggregated geolocation information (country, region, city).
Usage data: Activity logs in the dashboard, interactions (filters, exports).

This data is collected via technologies such as cookies and pixels, with explicit consent obtained when required.

3. Use of Your Data

Your data is used for the following purposes:

Provide and maintain the Services: Multi-touch attribution, UTM link generation, real-time ROI calculations.
Improve the platform: Trend analysis, anomaly detection, performance optimization.
Manage accounts: Team invitations, permission management, payment processing.
Communicate: Sending updates or support (you can unsubscribe at any time).
Comply with legal obligations: Record-keeping and audits.

Legal bases include consent (GDPR), contract performance (PIPEDA), or our legitimate interest (CCPA). No sale of personal data is conducted.

4. Sharing of Your Data

Your data is shared only with limited third parties under secure conditions:

Sub-processors: Providers such as Stripe for payments or cloud suppliers for storage.
Native integrations: Platforms like Google Ads or Meta Ads, only with your explicit consent for campaign synchronization.
Competent authorities: In case of legal obligation (e.g., judicial requests).
In case of merger or acquisition: With prior notification.

Under the CCPA, you may exercise a right to opt out of data sharing.

5. Retention of Your Data

Retention periods are tailored to the purposes and your analytical needs, with native anonymization for extended retention without risks:

Account data: During the term of your subscription, plus 1 year for audits.
Real-time or raw analytics data (active sessions): 30 to 90 days, to ensure optimal responsiveness.
Historical or aggregated data (cumulative metrics, trends): 2 years by default (up to unlimited duration depending on the plan), with automatic anonymization of personal elements (IP addresses hashed and identifiers removed upon collection, rendering the data non-identifiable after 14 months).
Anonymized data: Indefinitely, for aggregated sectoral analyses.
Billing data: 7 to 10 years, to comply with fiscal obligations.

Upon expiration, data is deleted or anonymized definitively, unless otherwise required by law. You may request a justified extension for extended analyses.

6. International Data Transfers

Our primary servers are hosted in the European Union (GDPR compliant). For transfers to Canada or the United States, we use standard contractual clauses or recognized adequacy mechanisms (such as the Privacy Shield). All transfers comply with PIPEDA and CCPA requirements.

7. Security of Your Data

We implement appropriate technical and organizational measures:

Encryption: TLS 1.3 for transmissions and AES-256 for storage.
Access controls: Multi-factor authentication, request rate limiting, granular permissions.
Compliance: Native IP anonymization, SOC2 certification in progress, ISO 27001 compliance, cookie-less tracking option.
Incident management: Notification within legal deadlines (72 hours under GDPR, or per PIPEDA/CCPA).

No security measure is 100% infallible, but we maintain ongoing vigilance.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to ensure the operation of the Services and enhance the user experience. A consent banner appears on your first visit to obtain your agreement (modifiable at any time via dashboard settings or your browser). A cookie-less option is available for users prioritizing privacy.

We distinguish between internal cookies (AJNIX) and advertising cookies (third-party for marketing integrations).

Category	Purpose	Duration	Provider	Consent Required
Technical	Authentication, sessions, security (rate limiting)	Session	AJNIX	No (strictly necessary)
User Experience	Preferences (dark mode, dashboard filters), onboarding journey	30 days	AJNIX	Yes
Performance	Measurement of internal metrics (conversions, traffic sources), anonymized upon collection	90 days	AJNIX	Yes
Marketing	Cross-site tracking for integrations (Google Ads synchronization, Meta retargeting), UTM attribution	Up to 180 days	Google, Meta, etc.	Yes (mandatory for these features)

AJNIX Cookies: First-party cookies hosted on ajnix.com (e.g., _ajnix_session for essential sessions; _ajnix_analytics for anonymized data).
Advertising Cookies: Third-party cookies for roadmap integrations (e.g., _gads from Google for ad campaigns). They are activated only with consent and focus on attribution, without excessive profiling.
Preference management: Via your browser (global deletion) or our dedicated tool (granular choices by category). Withdrawal of consent results in the deletion of the relevant cookies. For more details, consult our separate Cookie Policy.

9. Your Data Rights

You have extensive rights, tailored to your jurisdiction:

9.1 General Rights (GDPR, PIPEDA, CCPA)

Access: Obtain a copy of your data.
Rectification: Correct inaccurate information.
Erasure: Request deletion (right to be forgotten, subject to legal obligations).
Objection and limitation: Object to certain processing or limit its use.
Portability: Receive your data in a structured format.
Withdrawal of consent: At any time, without retroactive effect.

9.2 Specifics by Regulation

GDPR (France/EU): Data Protection Officer (DPO) available; complaints to the CNIL; response within 1 month.
PIPEDA (Canada): Access upon written request; rectification with supporting documents; compliance with the law's 10 principles.
CCPA (United States): Right to opt out of sale or sharing; non-discrimination; annual policy update.

To exercise these rights, contact privacy@ajnix.com. We respond within a maximum of 30 days. Anonymized data is not subject to these rights, as it is no longer personal.

10. Changes to This Policy

We may update this policy based on regulatory developments or Services changes. Substantial modifications will be notified by email or via the dashboard. Please review it regularly.

11. Children's Data

Our Services are not directed at persons under 16 years of age. If we discover data concerning a minor, we delete it without delay.

12. Contact Us

For any questions, rights exercises, or complaints:

Email: privacy@ajnix.com
Postal address: AJNIX
Data Protection Officer: data-protection-officer@ajnix.com
Authorities: CNIL (France), Privacy Commissioner (Canada), Attorney General (California, United States).