This feature is currently in beta testing and may be subject to changes.
A simple Micro.blog plug-in to easily add the Tinylytics tracking script to your site.
The most powerful and flexible theme available for Micro.blog, with built-in Tinylytics support.
A simple WordPress plug-in to easily add the Tinylytics tracking script to your site.
This feature is currently in beta testing and may be subject to changes.
```
### Per-Content Tracking (Recommended)
Track individual posts or content pieces by adding a path parameter:
```html
```
Replace `/your-post-slug` with a unique identifier for each piece of content.
## Platform-Specific Implementation
### RSS Feeds
#### Jekyll RSS Template
Add to your `feed.xml` template:
```xml
';
$content = $content . $pixel;
}
return $content;
}
add_filter('the_content_feed', 'add_tinylytics_pixel_to_feed');
```
#### Ghost RSS
Edit your RSS template in the Ghost admin:
```handlebars
{{#foreach posts}}
|
Your newsletter content... 
|
```
#### ConvertKit
Add to your email sequence or broadcast:
```html
```
### Static Site Generators
#### 11ty (Eleventy)
Add to your post template:
```html
{% if permalink %}
{% endif %}
```
#### Astro
Add to your post layout:
```astro
---
const { slug } = Astro.params;
---
```
## Advanced Tracking Scenarios
### Newsletter Campaign Tracking
Track different newsletter campaigns by using descriptive paths:
```html
```
### Social Media Content
Track content shared on platforms that support HTML:
```html
```
### PDF Documents
If you're distributing PDFs that support HTML content:
```html
```
## Understanding Your Pixel Tracking Data
### What Gets Tracked
- **Views**: Each time the pixel image is loaded
- **Sources**: RSS readers, email clients, and other platforms
- **Geographic data**: Country-level location (anonymized)
- **Timing**: When content was viewed
- **Content**: Which specific posts or campaigns were viewed
### RSS Reader Detection
The system automatically detects and categorizes different RSS readers:
- Feedly
- Inoreader
- NewsBlur
- The Old Reader
- And many more
### Data in Your Dashboard
- View counts per content piece
- RSS subscriber estimates
- Email open rates (where applicable)
- Geographic distribution of pixel hits
- Timeline of content consumption
## Troubleshooting
### Pixel Not Loading
- Verify your site code is correct
- Check that the content platform allows external images
- Some email clients block images by default
### Low Tracking Numbers
- RSS readers often cache content, reducing pixel loads
- Email clients may block images until user action
- Some privacy-focused readers/clients block tracking pixels
### Testing Your Implementation
1. Add the pixel to a test RSS feed or email
2. View the content in different readers/clients
3. Check your Tinylytics dashboard for new hits
4. Verify the path parameter is being recorded correctly
## Best Practices
### Path Naming Conventions
Use consistent, descriptive paths:
- `/rss/post-title-slug`
- `/newsletter/2024/01/weekly-update`
- `/email/campaign-name`
- `/social/platform/post-id`
### Privacy Considerations
- Always include empty `alt=""` attributes
- Use minimal styling to keep pixels invisible
- Inform users about analytics tracking in your privacy policy
- Consider offering opt-out mechanisms where appropriate
### Performance Tips
- Place pixels at the end of content when possible
- Use the `.gif` extension for better compatibility
- Keep path parameters simple and URL-encoded
## Limitations
- **Email Clients**: Many block images by default
- **Privacy Tools**: Some browsers/extensions block tracking pixels
- **Cached Content**: RSS readers may cache and not reload pixels
- **Offline Reading**: Won't track content read offline
## Getting Help
If you're having trouble implementing pixel tracking:
1. Check your Tinylytics dashboard for any error messages
2. Test with a simple HTML file first
3. Verify your site code is active and correct
4. Contact support with specific implementation details
Remember: Pixel tracking complements, not replaces, regular JavaScript-based analytics. Use both methods for the most comprehensive view of your content's reach.
### Privacy Policy
Source: https://tinylytics.app/docs/privacy
# Privacy Policy
*Last updated: February 2026*
This document outlines the information gathering and data handling practices for Tinylytics and its associated services.
## Information Collection
We use [Sentry.io](https://sentry.io) for error monitoring (only your customer ID is logged on application errors) and [Cloudflare](https://cloudflare.com) for platform security and CDN. Server logs are filtered of sensitive data, deleted after 7 days, and do not contain client IPs unless someone attempts to circumvent Cloudflare. Log access is limited to debugging and security; we do not link this data to individual identities.
## Payment Processing
For payment processing, Tinylytics uses [Paddle](https://paddle.com/privacy) and [Lemon Squeezy](https://www.lemonsqueezy.com/privacy) (a Stripe company). Please refer to their respective privacy policies for detailed information.
We do not store or maintain any credit card information on our servers.
## Security Measures
We implement comprehensive security measures to protect against unauthorized access, alteration, or misuse of your information. All data transmission is secured using SSL encryption.
Platform security is enhanced through [Cloudflare](https://cloudflare.com), providing protection against malicious activities.
## Third-Party Data Handling
We maintain strict data privacy standards. We do not sell your data.
We share limited data only when needed for essential operations, including:
- debugging and error monitoring,
- image delivery,
- optional AI insights (described below), and
- optional API geolocation fallback lookups.
When you send `ip_address` in the hit ingestion API, Tinylytics first resolves country using a local lookup on our own infrastructure. If local resolution fails, Tinylytics may send that IP address to [IPinfo](https://ipinfo.io) to resolve a country code. The raw IP is not stored in Tinylytics hits.
When you opt in to AI insights, only aggregated analytics data is shared with our AI providers to generate insights. This data is not used for model training.
## Analytics
We use our own analytics solution exclusively on our homepage, demonstrating our commitment to privacy-first analytics.
## AI Insights
Optional AI Insights use third-party AI providers (including [xAI](https://x.ai) and [Google Gemini](https://deepmind.google/technologies/gemini/)) to analyze your aggregated analytics data.
**This feature is completely opt-in** — it is disabled by default. When enabled, we send only aggregated data (traffic counts, daily patterns, top paths, referrers) to our AI providers. No personally identifiable information about your visitors is shared. We use paid API plans; your data is not used for model training. You can enable or disable this at any time from your account settings.
## Cookie Usage
We do not use tracking cookies.
We use a single essential session cookie to maintain your login state. This cookie is removed when you log out.
## Uptime Monitoring
Uptime monitoring is powered by [updown.io](https://updown.io/r/mbB6q). No personal data is sent to updown.io. We send only the site URL and unique site ID needed for monitoring.
## Contact
If you have questions about this privacy policy, please contact us at [hello@tinylytics.app](mailto:hello@tinylytics.app).
### Privacy Compliance (GDPR & CCPA)
Source: https://tinylytics.app/docs/privacy_compliance
# Privacy Compliance
At Tinylytics, we take privacy seriously. Our analytics platform is built from the ground up to be compliant with major privacy regulations, specifically the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This document outlines how we achieve compliance with these regulations.
## Core Privacy Principles
Our approach to privacy is built on these fundamental principles:
- Collect only what's necessary
- Process transparently
- Store securely
- Delete promptly
- Give users control
## GDPR Compliance
We comply with GDPR requirements through the following measures:
### 1. Data Minimization (Art. 5)
- Only essential analytics data is collected
- User agent strings are stored temporarily and automatically purged after 7 days
- IP addresses are never stored in Tinylytics hits
- If an API client sends `ip_address` for hit ingestion, Tinylytics first resolves country using a local lookup; only unresolved lookups are sent to IPinfo and then discarded
- Geographic data limited to country level only (via Cloudflare)
- No personally identifiable information (PII) is retained long-term
### 2. Right to Erasure (Art. 17)
- One-click account deletion available
- All associated data is immediately deleted upon account cancellation
- Automatic deletion of unconfirmed accounts after 7 days
- Server logs are filtered for sensitive data and deleted after 7 days
### 3. Transparency (Art. 12-14)
- Clear privacy policy explaining all data collection
- Detailed technical documentation about data handling
- No hidden tracking or data collection methods
- All data processing purposes clearly stated
- Clear disclosure of third-party services (Cloudflare, Sentry.io, Lemon Squeezy, Paddle, and IPinfo for optional API IP geolocation)
### 4. Data Security (Art. 32)
- SSL encryption for all data transmission
- Cloudflare as security buffer and CDN provider
- Server logs filtered and deleted after 7 days
- Regular salt rotation for hash generation
- Rate limiting to prevent abuse
- Hosted in Europe
### 5. Consent & Right to Object (Art. 7, 21)
- Simple mechanism to ignore your own hits via URL parameters
- No tracking cookies used (only session cookies for logged-in users)
- Clear instructions for opting out in documentation
## CCPA Compliance
Our CCPA compliance is built into our core service design. We exceed CCPA requirements by not collecting, selling, or sharing any personal information:
### 1. No Personal Information Sale
- We never sell any data to third parties
- No data sharing for marketing purposes
- No advertising or tracking mechanisms
- Limited third-party usage (Cloudflare, Sentry.io, Lemon Squeezy, and Paddle) for essential services only
### 2. Data Rights
- Immediate account deletion available
- Automated data removal process
- Clear documentation of all data handling
- Transparent data collection practices
- Clear disclosure of all third-party relationships
### 3. Data Collection Transparency
- Clear listing of all collected data categories
- Explicit purposes for each data type
- No collection of personal information beyond essential analytics
- All data processing is documented and necessary for service operation
- Full disclosure of third-party service providers and their roles
## Technical Implementation
Our privacy-first approach is implemented through:
1. **Unique Hit Generation**
- Daily reset of unique identifiers
- One-way hash generation
- No persistent identifiers
2. **Data Storage**
- User agent strings automatically purged after 7 days
- Server logs deleted after 7 days
- Secure, EU-based hosting
- Regular data cleanup
3. **Security Measures**
- Rate limiting
- Request filtering via Cloudflare
- Regular security updates
## Third-Party Services
We limit third-party service usage to essential operations only:
- Cloudflare (Security & CDN)
- Lemon Squeezy and Paddle (Payment processing)
- Sentry.io (Error tracking, customer ID only)
- Local lookup (country resolution on Tinylytics infrastructure)
- IPinfo API (fallback country lookup only for unresolved API hit payloads that include `ip_address`)
As stated in our privacy policy, we do not sell your data. Third-party services are limited to essential operations and optional features.
## Verification and Updates
We regularly review and update our privacy practices to ensure continued compliance. Our commitment to privacy goes beyond mere regulatory compliance – it's a core part of our service offering.
For specific implementation details about how we handle analytics data, see our [unique hits documentation](https://tinylytics.app/docs/unique_hits).
## Contact
For privacy-related questions or to exercise your rights under GDPR or CCPA, please contact us at hello@tinylytics.app.
### Reports & Notifications
Source: https://tinylytics.app/docs/reports_and_notifications
# Reports & Notifications
Tinylytics keeps you in the loop about your website's performance and health through automated email reports and instant alerts. This guide explains how to configure and manage these communications.
## Email Reports
Get a periodic summary of your website's traffic delivered straight to your inbox. This is a great way to keep a pulse on your project without needing to log in to the dashboard constantly.
### What's Inside?
The email report includes a snapshot of your site's performance for the reporting period:
- **Total Hits**: How many times your site was visited (with unique count if enabled).
- **Top Pages**: Your most popular content (up to 30 pages).
- **Kudos by Page**: Pages that received kudos during the period (if kudos are enabled).
### Frequency
Reports are typically sent on a weekly basis, arriving every Monday. This gives you a fresh start to the week with insights from the previous 7 days.
### Manual Reports
Can't wait for Monday? You can trigger a report manually at any time:
1. Navigate to your site's **Edit** tab.
2. Look for the **Email Reports** section.
3. Click **Send Report Now**.
## Uptime Alerts
If you have enabled [Uptime Monitoring](https://tinylytics.app/docs/uptime_monitoring_guide), Tinylytics will send you immediate notifications for critical events.
### Types of Alerts
- **Downtime**: Received instantly when your site stops responding (confirmed by multiple locations).
- **Recovery**: Received when your site comes back online, including the total duration of the downtime.
- **SSL Issues**: Warnings about expiring or invalid SSL certificates.
### Testing Alerts
To ensure you are receiving emails correctly, you can send test alerts from the dashboard:
1. Go to your site's **Edit** tab and find the **Email Reports** section.
2. Under **Uptime Monitoring Email Preferences**, look for the test buttons.
3. Click **Test Down** or **Test Up** to simulate an event and verify your email setup.
## Content Monitoring Alerts
For subscribers using [Content Monitoring](https://tinylytics.app/docs/content_monitoring_guide), Tinylytics sends notifications when issues are detected during a scan.
- **Broken Links**: Alerts when internal or external links on your site break.
- **Mixed Content**: Alerts when insecure resources are found on secure pages.
You can pause these emails if you are performing maintenance on your site to avoid cluttering your inbox.
## Managing Recipients
You can control who receives these reports and alerts. By default, the account owner's email is used, but you can add friends, colleagues or stakeholders.
1. Navigate to your site's dashboard.
2. Go to the **Settings** or **Edit** tab.
3. Find the **Email Recipients** section.
4. **Add Recipient**: Enter the email address you want to add.
5. **Remove**: Click the trash icon next to an email to stop sending notifications to that address.
*Note: All recipients receive traffic reports. Critical alerts for a specific site currently go only to the account owner.*
### Showing a Hit Counter
Source: https://tinylytics.app/docs/show_hit_counter
# Showing a Hit Counter
With your embed script loaded, you can add a classic-style hit counter to your website and style it as needed. Remember those from the early web days? We're bringing them back, but better!
## Availability
This feature is available on all plans.
## Setting Up the Hit Counter
It's a simple two-step process:
### 1. Modify Your Embed Script
Add the `hits` parameter to your embed script URL:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?hits
```
This loads the additional hit counter functionality.
### 2. Add the Display Element
Add this HTML element wherever you want to display the hit count:
```html
```
**Note:** You're not limited to using a `span` - you can use any HTML element. The important part is the `class="tinylytics_hits"` attribute.
### Showing unique hits
To show the unique hit count, add the `unique` string to your `hits` parameter in the embed script URL:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?hits=unique
```
Unique hits are available on paid plans. Legacy free accounts ignore this parameter.
## How It Works
Once your page loads:
1. The script looks for any element with the `tinylytics_hits` class
2. When found, it replaces the element's content with your site's lifetime hit count
3. The count updates automatically
## Styling
You have complete control over the styling. The hit counter inherits your site's styles by default, but you can customize it with CSS to match your design.
## Examples
You can see the hit counter in action:
- On our homepage (check the footer)
- On various sites in our [webring](https://tinylytics.app/docs/showing_webring)
## Tips
- You can add multiple hit counters on the same page
- The count is updated in real-time
- Works great with any CSS framework
- Perfect for retro-style websites!
### Showing Visited Countries
Source: https://tinylytics.app/docs/showing_countries
# Showing Visited Countries
Add a global touch to your site by displaying which countries have visited your pages! Tinylytics makes it easy to show this information using emoji flags, arranged in alphabetical order.
## Setting Up Country Display
### 1. Modify Your Embed Script
Add the `countries` parameter to your embed script:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?countries
```
### Combining with Other Features
You can combine the countries feature with other Tinylytics features:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?kudos&hits&countries
```
## Implementation
### Adding the Countries Display
Add this HTML element where you want to show the country flags:
```html
```
**Note:**
- The element's content will be automatically populated
- Countries are displayed as emoji flags
- Flags are arranged alphabetically
- The display updates automatically as new countries visit
## Example
Here's how it looks in action:
🌍
## Styling Tips
- Add padding between flags for better readability
- Consider hover effects to show country names
- Works well in footers or sidebars
- Can be styled to match your site's design
## Best Practices
- Place it where it won't distract from main content
- Consider adding a title or label
- Use appropriate spacing around the flags
- Test the display at different screen sizes
## Features
- Automatic updates as new countries visit
- Emoji flags for visual appeal
- Alphabetical ordering for consistency
- No maintenance required - just set and forget!
### Adding Kudos to Your Pages
Source: https://tinylytics.app/docs/showing_kudos
# Adding Kudos to Your Pages
Once you've embedded the site script, you can add "kudos" (or "likes") to your pages. It's a great way to get feedback on articles or individual pages without relying on social media - bringing engagement right to your site on the open web.
## Setting Up Kudos
### 1. Modify Your Embed Script
Add the `kudos` parameter to your embed script:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?kudos
```
If you're also using the [hit counter](https://tinylytics.app/docs/show_hit_counter), combine them like this:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?hits&kudos
```
## Implementation Options
### Single Kudos Button
For a single kudos button on a page:
```html
```
Leave the button empty - we'll add the content automatically.
### Multiple Kudos Buttons
For multiple kudos buttons (e.g., on an index page with multiple posts):
```html
```
**Important:**
- The `data-path` attribute ensures correct kudos count for each path
- Paths must start with a forward slash (`/`)
- Incorrect paths may result in kudos not being recorded properly
## How It Works
When your page loads with kudos enabled:
1. The script checks for kudos elements on your page
2. For each button:
- Retrieves the current kudos count (e.g., `👋 42`)
- Checks if the visitor has already given kudos
- Enables/disables the button accordingly
3. When a visitor gives kudos:
- Sends the request to our servers
- Adds `.did_select` class to the button
- Disables the button
- Stores a unique kudos ID in localStorage
## Customization Options
### Custom Emoji
Change the default 👋 emoji:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?kudos=❤️
```
### Custom Styling
Use your own image or styling:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?kudos=custom
```
This returns only the count, allowing you to add your own images or styling.
### Private Kudos
Keep kudos counts private (visible only to you):
```html
```
**Note:** You'll need to style this to provide visual feedback to users. Check the classes we add (`.did_select`) for styling hooks.
## Plan Features
- **Legacy free accounts:** Can use kudos functionality.
- **Paid plans:** Access detailed kudos analytics in the dashboard.
## Try It Out
## Tips
- Use `.did_select` class for styling active states
- Consider adding loading states for better UX
- Combine with hit counters for more engagement metrics
- Perfect for blogs, portfolios, and documentation sites
### Showing Uptime on Your Site
Source: https://tinylytics.app/docs/showing_uptime
# Showing Uptime on Your Site
Once you've set up uptime monitoring for your site, you can easily display these statistics on your website. It's a great way to showcase your site's reliability!
## Setting Up Uptime Display
### 1. Modify Your Embed Script
Add the `uptime` parameter to your embed script:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?uptime
```
### Combining with Other Features
You can combine uptime with other features:
```text
With hit counter:
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?hits&uptime
With hits and kudos:
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?hits&kudos&uptime
```
## Implementation
### Adding the Uptime Display
Add this HTML element where you want to show your uptime:
```html
```
**Important Notes:**
- Create only one uptime element per page
- The script will automatically populate it with your uptime data
- Uptime monitoring is available for paid accounts only
## Example
Here's how it looks in action:
💯🔥✅
## Tips
- Place the uptime display in your footer or status page
- Combine with hit counters for more comprehensive stats
- Great for business sites to show reliability
- Perfect for SaaS products and professional services
## Plan Features
- **Legacy free accounts:** Uptime monitoring is not available.
- **Paid plans:** Full uptime monitoring and display capabilities.
### Showing the Webring
Source: https://tinylytics.app/docs/showing_webring
# Showing the Webring
Tinylytics offers a unique webring feature that connects personal websites together. The webring is hand-curated by us and displays random websites from our community. It's a great way to discover and connect with other personal websites!
## Basic Setup
### 1. Modify Your Embed Script
Add the `webring` parameter to your embed script:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?webring
```
Combining with other features:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?kudos&hits&webring
```
### 2. Add the Webring Link
Add this HTML element where you want to show the webring:
```html
🕸️💍
```
**Note:**
- Keep the `href` empty - it will be populated automatically
- The link content (🕸️💍) can be customized to your liking
## Advanced: Showing Site Avatars
### 1. Enable Avatar Support
Modify your embed script to include avatars:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?webring=avatars
```
### 2. Enhanced Markup
Basic avatar implementation:
```html
🕸️💍
```
Alternative layout (avatar first):
```html
🕸️💍
```
## How Avatars Work
The avatar system:
- Automatically populates `src` and `srcset` attributes
- Removes `display: none` when avatar is loaded
- Serves images at 100x100px (200x200px for retina)
- Includes retina support via `srcset`
## Styling Tips
- Avatar images are max 100x100px (200x200px @2x)
- Hidden by default to prevent placeholder flashing
- Fully customizable with CSS
- Consider hover states for better interactivity
## Example
Try it out:
🕸️💍
## Best Practices
- Place the webring in your footer or sidebar
- Consider adding hover effects for better UX
- Use appropriate spacing around the webring
- Make it visually consistent with your site's design
- Consider adding a title or description near the webring
## Notes
- The webring is curated for personal websites
- Each click shows a random site from the ring
- Avatars are optional but add visual interest
- All sites in the ring are manually reviewed
### Terms of Service
Source: https://tinylytics.app/docs/terms
# Terms of Service
## Introduction
Tinylytics ("the Service") is provided by Vincent Ritter Consulting ("the Provider"). The Service operates under Vincent Ritter Consulting until such time as business growth warrants separate incorporation.
As a privacy-focused analytics service, we maintain strict data handling practices. Unlike conventional analytics services, we do not monetize your data through third-party sharing or sales. The only data shared with third parties is for essential service operations, such as debugging (limited to user IDs for error tracking) and optional API hit geolocation (country lookup is performed locally first, and IP addresses are sent to IPinfo only as fallback when local lookup cannot resolve, and are not stored in Tinylytics hits).
## Prohibited Activities
**NOTICE: Accounts found to contain or facilitate illegal activities will be terminated immediately without prior notice. Vincent Ritter Consulting reserves the right to report such activities to relevant authorities.**
## Service Protection
Any attempts to compromise or harm our servers or other customers are strictly prohibited. Account holders are responsible for all activities conducted through their accounts. Violations of these Terms of Service will result in immediate account termination without refund.
## Service Discretion
We reserve the right to refuse, suspend, or terminate service at our sole discretion.
## Subscription and Pricing
We maintain the right to modify subscription fees at our discretion. Customers will receive at least 30 days' notice via email of any pricing changes, providing the opportunity to terminate their subscription before changes take effect. Continued use of the Service after price changes constitutes acceptance of the modified fees.
## Refund Policy
We offer a 30-day, no-questions-asked refund policy on initial payments.
## Fair Usage Policy
All paid plans are provided on an unlimited basis with no hard limits on hits or pageviews.
To ensure continued high performance and fairness for every user, we monitor overall platform load. Accounts that consistently exceed 1,000,000 hits per month (averaged over any 3-month period) may be reviewed. In such cases we will contact the account owner directly to discuss usage and explore suitable options (such as moving to a higher-tier plan). No automatic restrictions or extra charges will ever be applied without prior personal communication.
We reserve the right to suspend or terminate any account that uses the service in a way that materially harms our infrastructure or other users.
## Account Management
We reserve the right to mark accounts as inactive and schedule them for deletion as specified in our notification emails and website documentation.
Account status changes are always communicated in advance, and accounts can be reactivated prior to the scheduled deletion date.
**Important: Unconfirmed accounts are automatically deleted after 7 days** due to email verification requirements.
## Legacy Free Account Locking Policy
To ensure fair usage for all users, we maintain an account locking system for legacy free accounts that consistently exceed usage limits.
### Automatic Account Locking
Legacy free accounts that exceed our usage threshold (currently 1,000 hits per month, averaged over a 3-month period) will:
1. First receive several email notifications recommending an upgrade
2. If usage continues to exceed limits without upgrading, the account will be automatically locked
### Manual Account Locking
We reserve the right to manually lock any account at our discretion if we determine that:
1. The account usage significantly exceeds legacy free tier limits
2. The account is being used in a way that negatively impacts our service or other users
3. The account violates any part of our Terms of Service
### Effects of Account Locking
When an account is locked:
1. **Data Collection Continues**: Analytics data will continue to be collected without interruption or data loss
2. **Limited Dashboard Access**: Access to the dashboard will be restricted to the upgrade reminder page
3. **Email Reports Paused**: Weekly email reports will be temporarily suspended
4. **Immediate Restoration**: Upgrading to a paid plan will immediately unlock all features and restore full access
We will provide clear notification via email when an account is locked, including instructions on how to restore full access.
## Warranty Disclaimer
THE INFORMATION, SOFTWARE, PRODUCTS, SERVICES, AND CONTENT AVAILABLE IN tinylytics.app ARE PROVIDED TO YOU "AS IS" AND WITHOUT WARRANTY. VINCENT RITTER CONSULTING AND ITS SUBSIDIARIES, AFFILIATES, OFFICERS, EMPLOYEES, AGENTS, PARTNERS, AND LICENSORS HEREBY DISCLAIM ALL WARRANTIES WITH REGARD TO SUCH INFORMATION, SOFTWARE, PRODUCTS, SERVICES AND CONTENT, INCLUDING, WITHOUT LIMITATION, ALL IMPLIED WARRANTIES AND CONDITIONS OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE AND NONINFRINGEMENT. VINCENT RITTER CONSULTING AND ITS SUBSIDIARIES, AFFILIATES, OFFICERS, EMPLOYEES, AGENTS, PARTNERS, AND LICENSORS MAKE NO WARRANTY THAT:
a) THE SERVICE WILL MEET YOUR REQUIREMENTS;
b) THE SERVICE WILL BE UNINTERRUPTED, TIMELY, SECURE, OR ERROR-FREE;
c) THE RESULTS THAT MAY BE OBTAINED FROM THE USE OF THE SERVICE WILL BE ACCURATE OR RELIABLE;
d) THE QUALITY OF ANY PRODUCTS, SERVICES, INFORMATION, OR OTHER MATERIAL PURCHASED OR OBTAINED BY YOU THROUGH THE SERVICE WILL MEET YOUR EXPECTATIONS; AND
e) ANY ERRORS IN tinylytics.app WILL BE CORRECTED.
## Limitation of Liability
YOU EXPRESSLY AGREE TO RELEASE VINCENT RITTER CONSULTING, ITS SUBSIDIARIES, AFFILIATES, OFFICERS, AGENTS, REPRESENTATIVES, EMPLOYEES, PARTNERS AND LICENSORS (THE "RELEASED PARTIES") FROM ANY AND ALL LIABILITY CONNECTED WITH YOUR ACTIVITIES, AND PROMISE NOT TO SUE THE RELEASED PARTIES FOR ANY CLAIMS, ACTIONS, INJURIES, DAMAGES, OR LOSSES ASSOCIATED WITH YOUR ACTIVITIES.
YOU ALSO AGREE THAT IN NO EVENT SHALL THE RELEASED PARTIES BE LIABLE TO YOU OR ANY THIRD PARTY FOR ANY DIRECT, INDIRECT, PUNITIVE, INCIDENTAL, SPECIAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF OR IN ANY WAY CONNECTED WITH:
a) YOUR USE OR MISUSE OF tinylytics.app,
b) YOUR DEALINGS WITH THIRD PARTY SERVICE PROVIDERS OR ADVERTISERS AVAILABLE THROUGH tinylytics.app,
c) ANY DELAY OR INABILITY TO USE tinylytics.app EXPERIENCED BY YOU,
d) ANY INFORMATION, SOFTWARE, PRODUCTS, SERVICES, OR CONTENT OBTAINED THROUGH tinylytics.app,
WHETHER BASED ON CONTRACT, TORT, STRICT LIABILITY, OR OTHERWISE, EVEN IF VINCENT RITTER CONSULTING HAS BEEN ADVISED OF THE POSSIBILITY OF DAMAGES. BECAUSE SOME STATES/JURISDICTIONS DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES, THE ABOVE LIMITATION MAY NOT APPLY TO YOU.
## Indemnification
Users agree to indemnify and hold harmless Vincent Ritter Consulting, its affiliates, officers, employees, and partners from any claims arising from Service usage, Terms violations, or rights infringement.
## Service Availability
Service availability varies by region and may change without notice. We reserve the right to modify service availability at our discretion.
## Terms Acceptance
By activating an account, users acknowledge and accept these terms and policies. Account activation records include acceptance of these terms.
Vincent Ritter Consulting reserves the right to modify these terms and policies without notice. We also maintain the right to adjust pricing and service plans at our discretion.
### Understanding Unique Hit Tracking
Source: https://tinylytics.app/docs/unique_hits
# Understanding Unique Hit Tracking
## What are Unique Hits?
Unique hits represent distinct visits to your website pages. While total hits count every page view (including refreshes and repeat visits), unique hits provide a more accurate picture of individual visitor sessions on a per-page basis.
## How We Track Unique Hits
Our unique hit tracking system is built with privacy at its core, using advanced anonymisation techniques:
### Data Collection
- **Page Information:**
- Current URL path
- Page title
- Referrer (when available)
- **Browser Data:**
- User agent string (truncated for privacy)
- **Request Data:**
- Cloudflare-provided information
- Timestamp
- Geographic region (country only)
### Privacy-First Processing
1. **Anonymisation:** All potentially identifying information is stripped or truncated before processing
2. **Hash Generation:** We combine the collected data with:
- Current date
- Rotating salt (changes every 12 hours)
- Site identifier and page path
- Anonymised request data
3. **One-Way Encryption:** The final hash is irreversible, ensuring visitor privacy
## Privacy and Security Measures
- Zero personal data storage
- IP addresses from Cloudflare edge locations are used only for hash generation (which are not the same as your visitor's IP address)
- Regular salt rotation (every 12 hours)
- Cloudflare as a privacy buffer
- GDPR and CCPA compliant approach ([learn more about our compliance](https://tinylytics.app/docs/privacy_compliance))
- No cookies or local storage used
- Rate limiting to prevent abuse
## What This Means for Site Owners
- **Accurate Analytics:** Get meaningful visitor insights without compromising privacy
- **Time-Based Stats:** View unique visitors within a 24-hour window
- **Geographic Insights:** Country-level analytics without personal tracking
- **Zero Setup:** Privacy protection works out of the box
## Technical Considerations
- Unique hits reset daily at midnight UTC
- Geographic data is approximate (country-level only)
- Bot traffic and other automated requests are automatically filtered
- Cached responses don't trigger new hits
- Rate limiting of 25 hits per minute per source, and other limits to prevent abuse
- User agent strings are truncated to 50 characters
For implementation details and get started, see our [script embedding guide](https://tinylytics.app/docs/embedding_your_script).
### Guide to Uptime Monitoring
Source: https://tinylytics.app/docs/uptime_monitoring_guide
# Guide to Uptime Monitoring
## What is Uptime Monitoring?
Uptime monitoring is a service that regularly checks if your website is online and functioning properly. Tinylytics uptime monitoring provides:
- Regular health checks of your website
- Immediate notifications when your site goes down or comes back up
- SSL certificate monitoring and expiration alerts
- Historical uptime statistics and event tracking
- Easy display of uptime stats on your website
Uptime monitoring is powered by the awesome folks at [updown.io](https://updown.io/r/mbB6q), a proven uptime monitoring service that we've used for many years (which actually powers our own [status page](https://status.tinylytics.app) too).
## How It Works
### Monitoring Process
1. **Regular Checks**: Tinylytics checks your website every 5-10 minutes when it's functioning normally.
2. **Multiple Verification**: When a potential downtime is detected, the system:
- Marks it as potential downtime behind the scenes
- Performs multiple verification checks across different regions
- Only sends notifications once downtime is confirmed
3. **Adaptive Monitoring**: Check frequency automatically adjusts based on site status:
- When your site is up: Checks every 5-10 minutes
- When your site just went down: Checks every 5 minutes
- After 24 hours of downtime: Reduces to every 10 minutes
- After 48 hours of downtime: Reduces to every 30 minutes
- After 3 days of downtime: Reduces to every 1 hour
- After 7 days of downtime: Auto-pauses monitoring (can be resumed anytime)
### SSL Certificate Monitoring
For HTTPS sites, Tinylytics also monitors your SSL certificate:
- Validates certificate authenticity
- Tracks expiration dates
- Sends notifications 30, 14, 7 & 1 day before expiration
- Provides detailed SSL status in your dashboard
- Detects and reports specific SSL issues:
- SNI (Server Name Indication) problems
- Certificate chain issues
- Protocol compatibility problems
- Configuration errors
## Notifications
Tinylytics sends email notifications for important events:
- **Downtime Alerts**:
- Initial detection with verification status
- Confirmed downtime with detailed error information
- Accurate timing of when the issue started
- **Recovery Notices**:
- Precise downtime duration
- Time of recovery
- Previous error state for context
- **SSL Warnings**:
- Certificate expiration warnings (30 days notice)
- Configuration issues with specific details
- Renewal confirmations
- **Auto-Pause Notifications**: When monitoring is paused after extended downtime of more than 7 days
The system includes detailed error information to help diagnose problems:
- HTTP error codes with user-friendly explanations:
- Authentication issues (401, 403)
- Missing content (404)
- Server errors (500, 502, 503, 504)
- Rate limiting (429)
- Connection issues:
- Timeout/expired connections
- Connection refused errors
- DNS resolution problems
- Network routing issues
- SSL/TLS errors
## Dashboard Features
Monitor your website's status through the Tinylytics dashboard:
- **Uptime Percentage**: View your site's reliability over time
- **Current Status**: See if your site is currently up or down
- **Event History**: Track all downtime events
- **SSL Certificate Status**: Monitor certificate validity and expiration
- **Manual Controls**: Pause and resume monitoring, great for when you're working on a site during maintenance
## Displaying Uptime on Your Site
Once you've set up uptime monitoring, you can display your uptime stats on your website:
### 1. Modify Your Embed Script
Add the `uptime` parameter to your embed script:
```html
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?uptime
```
### 2. Add the Uptime Element
Add this HTML element where you want to show your uptime:
```html
```
### Combining with Other Features
You can combine uptime with other Tinylytics features:
```text
With hit counter:
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?hits&uptime
With hits and kudos:
https://tinylytics.app/embed/YOUR_EMBED_CODE.js?hits&kudos&uptime
```
## Troubleshooting Common Issues
### Site Shows as Down But It's Working
Possible causes:
- Bot protection or firewall blocking monitoring requests
- Rate limiting from security tools
- Regional networking issues
Solutions:
- Whitelist the Tinylytics User Agent in your firewall settings
- Configure Cloudflare to allow Tinylytics monitoring requests
- Verify bot protection settings
- Contact support if issues persist
### Firewall and CDN Configuration
Tinylytics uses a specific User Agent for uptime checks:
```text
Tinylytics Uptime Monitor/1.0
```
You may also encounter the following User Agent if your monitor was set up before April 1st, 2025:
```text
updown.io daemon 2.11
```
If you're using Cloudflare or similar services, you should create a rule to allow requests with this User Agent. Otherwise, your firewall might block our health checks, resulting in false downtime alerts.
#### For Cloudflare users:
1. Go to your Cloudflare dashboard
2. Navigate to Security → WAF → Create Rule
3. Create a rule that allows traffic when the User Agent contains "Tinylytics Uptime Monitor" and/or "updown.io daemon"
4. Set the rule to "Skip" security features for matching requests
### IP addresses for Monitoring
These are the addresses used by monitoring, in case you need to whitelist these.
IPv4:
- 45.32.107.181
- 45.32.74.41
- 91.121.222.175
- 104.238.159.87
- 178.63.21.176
- 135.181.102.135
- 45.76.104.117
- 104.238.136.194
- 45.63.29.207
- 192.99.37.47
IPv6:
- 2001:19f0:6c01:145::1
- 2607:5300:60:4c2f::1
- 2001:19f0:6001:2c6::1
- 2001:19f0:7001:45a::1
- 2001:19f0:4400:402e::1
- 2a01:4f8:141:441a::2
- 2a01:4f9:c010:d5f9::1
- 2001:41d0:2:85af::1
- 2001:19f0:9002:11a::1
- 2001:19f0:5801:1d8::1
### SSL Certificate Warnings
Common issues:
- Certificate approaching expiration
- Self-signed certificates
- Incomplete certificate chains
- SNI (Server Name Indication) configuration problems
Solutions:
- Renew certificates before they expire
- Use trusted certificate authorities
- Configure proper certificate chains
- Set up SNI correctly for shared hosting
## Plan Features and Limitations
- **Legacy free accounts:** Uptime monitoring is not available.
- **Paid plans:** Full uptime monitoring and SSL certificate monitoring.
## Best Practices
- Place the uptime display in your footer or status page
- Combine with hit counters for more comprehensive stats
- Resume monitoring promptly after auto-pause
- Keep your SSL certificates up to date
- Use the monitoring data to improve your hosting setup
---
By following this guide, you'll be able to fully utilize Tinylytics' uptime monitoring to ensure your website stays reliable and secure.
### Webhooks Documentation
Source: https://tinylytics.app/docs/webhooks
# Tinylytics Webhooks
Webhooks let Tinylytics send a JSON `POST` to your application when selected events happen. Use them to pipe downtime alerts, live hits, and kudos into your own systems without polling the API.
Webhooks are available to Plus users. Tinylytics only creates outbound webhook events when the site owner is Plus, the webhook is active, the event type is selected, and the underlying write is accepted.
## 1. Quick Start
1. Open **Account Settings**.
2. Choose **Webhooks**.
3. Create a webhook with a public HTTP or HTTPS URL. HTTPS is recommended.
4. Select the events you want to receive.
5. Save the webhook and copy the signing secret.
6. Use **Send Test** from the webhook edit screen to confirm your endpoint and signature verification.
Your endpoint should return a `2xx` response as soon as it accepts the delivery. Do any slower processing in a background job on your side.
Treat webhook delivery as at-least-once. Store `X-Tinylytics-Delivery`, or the nested `hit.id` or `kudo.uid`, if duplicate processing would be a problem.
## 2. Delivery Contract
Tinylytics sends each delivery as an HTTP `POST` with a JSON body.
| Property | Value |
| --- | --- |
| Method | `POST` |
| Content type | `application/json` |
| Timeout | 30 seconds |
| Open timeout | 10 seconds |
| Success response | Any `2xx` status |
| Failed response | Network errors, unsafe URLs, timeouts, `3xx`, `4xx`, or `5xx` responses |
| Retry limit | Up to 10 failed attempts |
Each delivery includes these headers:
| Header | Description |
| --- | --- |
| `Content-Type` | Always `application/json`. |
| `X-Tinylytics-Event` | Event type, such as `new_hit` or `monitor_down`. |
| `X-Tinylytics-Delivery` | Unique delivery id. This is the `WebhookEvent` id and can be used for idempotency. |
| `X-Tinylytics-Timestamp` | Unix timestamp for the delivery attempt. |
| `X-Signature` | HMAC SHA-256 signature in the format `sha256=This feature is currently in beta testing and may be subject to changes.
