Privacy policy
The short version: the speed test runs in your own browser and we don't tie its results to you. We use a cookieless, privacy-first analytics tool, so there's no cross-site tracking by us. The only cookies come from advertising, and in Europe those only load if you agree to them. We never sell your data, and we ask for your email in exactly one place — and only if you type it in.
This policy explains what information itsnotyou.site ("the site", "we") collects, why, and what rights you have. It is written to be read, not just to satisfy lawyers — but it is also the formal notice required under the EU/EEA General Data Protection Regulation (GDPR) and Norwegian data-protection law.
Who is responsible
The site is operated by Converto AS (Christian Weber), Norway, which is the data controller for the limited personal data described here. For any privacy question or request, contact cw.nett.post@gmail.com.
How the test itself works
When you run a test, two things happen in parallel, and neither builds a profile of you:
- Your connection is measured inside your browser — it times how long a small test file takes to download and how quickly our server answers. Those measurements are shown to you and are not stored against your identity.
- The website you entered is fetched from our server so we can measure its response time from a neutral location. That request is between our server and the target site; it doesn't carry information about you.
We keep an anonymous daily counter of how many tests are run — a single number per day, with no IP address, no record of which site was tested, and nothing linking it to you.
What we collect, and why
| Data | Why | Kept for |
|---|---|---|
| Aggregate analytics | Cookieless page-view statistics via Cloudflare Web Analytics — no cookies, no cross-site tracking, no fingerprinting for ads. Tells us which pages are used. | Aggregated; see Cloudflare |
| Your email (optional) | Only if you use "notify me when it's back" on a result. Used once, to send that single notification, then discarded. | Up to 7 days |
| Shared result card | If you create a shareable result link, the image and its verdict are stored under a random ID so the link works. Not tied to your identity. | Up to 30 days |
| Technical request data | Our host (Cloudflare) processes IP addresses momentarily to route traffic, block abuse, and rate-limit — standard security housekeeping. | Transient |
| Advertising data | Handled by Google AdSense — see below. In Europe this only happens with your consent. | See Google |
Cookies and advertising
We set no cookies of our own. Our analytics is cookieless by design.
The site is supported by advertising through Google AdSense. Google and its partners may use cookies or similar identifiers to serve and measure ads. If you are in the European Economic Area, the United Kingdom, or Switzerland, we show a consent message (a Google-certified consent platform) before any advertising cookies load — you can accept, reject, or manage your choices, and you can reopen that choice at any time. Where you decline, ads are limited to non-personalized delivery to the extent Google supports it.
You can review how Google uses information from sites that use its services at policies.google.com/technologies/partner-sites.
Who we share data with
We do not sell your personal data. We rely on two well-known providers, acting as our processors or as independent controllers for their own purposes:
- Cloudflare — hosting, content delivery, cookieless analytics, and storage. (privacy policy)
- Google — AdSense advertising. (privacy policy)
These providers may process data on servers outside the EEA. Where that happens, transfers are covered by the appropriate legal safeguards (such as the EU Standard Contractual Clauses).
Legal basis (GDPR)
- Consent — advertising cookies and personalized ads, collected through the consent message described above.
- Legitimate interest — keeping the service secure and available (abuse prevention, rate-limiting) and understanding aggregate, non-identifying usage.
- Your request — sending the one "back up" notification you asked for, if you provided an email.
Your rights
Under the GDPR you have the right to access, correct, delete, restrict, or object to the processing of your personal data, and to data portability. Because we hold almost nothing tied to your identity, the most common request — deleting an email you submitted — is usually handled automatically within 7 days, but you can email us to have it removed sooner. To exercise any right, contact cw.nett.post@gmail.com.
If you believe we've handled your data improperly, you may lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet) or your local supervisory authority.
Children
The site is a general-audience utility and is not directed at children. We do not knowingly collect personal data from children under 16.
Changes
If this policy changes, we'll update the date at the top. Material changes to how advertising or consent works will also be reflected in the consent message itself.