The GDPR is Europe’s new privacy regulation. It gives you control over the data that organizations have about you and how they market to you.
Our mission at Xmrit is to help individuals and organisations become truly data driven, going beyond buzzwords to action. We are named after XmR charts: our first tool, and one of the best ways you can use knowledge of variation to become data driven.
We want people and organisations to use Xmrit’s charting tool to generate custom charts, which often means pasting confidential company data into Xmrit. Xmrit is designed to be extremely privacy preserving. This means that all data exists only in the user’s browser, and will never hit our servers. Even share link data is stripped out when it hits our analytics and logs.
We take this mission very seriously. To that end, we collect very limited usage data. This page outlines our approaches, and we welcome your feedback at privacy [at] xmrit.com.
Cookies and Tracking
We will not rent or sell or share your email with any third party, and we never have. However, we use third party analytics software from Posthog. In some cases, we may place a cookie on your side to enable us to better understand who is visiting our sites and how they use them.
The events that we track are as follows:
| Event | Reason |
|---|---|
| Visits | Are we successfully increasing awareness + usage? |
| Visits to share links (with data stripped out) | Are users actively sharing links with others? |
| Share link created | Are users actively creating share links? |
| Chart exported | Are users using the chart image download feature? |
| Chart rendered | How many charts are we rendering for users? |
We use cookies to track unique users across sessions. If you decline cookie tracking, events are still tracked, but we will not be able to differentiate between unique visitors. That choice will always be yours.
The most important point about our event tracking is that share links encode your data, and share link data is never tracked. We quite literally strip out everything in the URL parameter before it hits our analytics and our logs.
What is GDPR?
GDPR stands for General Data Protection Regulation, a new privacy law that regulates the processing of personal data relating to individuals in the European Union.
GDPR strengthens the rights that individuals have regarding their personal data, and seeks to unify data protection laws across Europe.
What does GDPR mean for you?
We treat everyone as if they lived in the EU. This means that you can:
Ask for a copy of the personal data we’ve collected about you. Unless you’re enrolled for one of our courses, this means: your email address. For students in one of our courses, we only keep data about your actual interactions and engagements with course material.
Request that we stop sending you direct marketing messages. Simply unsubscribe/stop following, and we’ll stop. Our goal is simply to keep our promise, not to profit from your data.
We use ConvertKit to carry our email messages, and we’ll work with them to remove your name and email address (plus there’s always an unsubscribe link at the bottom of every email). All credit card processing is done with Stripe and we never see your data. We don’t serve ads to our site visitors using any third-party tools.
What this means: at any time, you can opt out of hearing from us. You can always opt out of the collection and use of your information online.
We’ll continue to educate, inform and work with our users and students the best we can, and will update this page from time to time.
Thanks for engaging with us.
Cedric, Sam and the rest of the Xmrit team