GDPR compliance
Two settings under Privacy and Security decide how visitors are identified and how much personal data is collected. Turning the first one off puts the site into GDPR and CCPA friendly mode in one click.
These two controls live under your site's Settings, in the Privacy & Security section. Together they decide how visitors are identified and how much personal data is collected.
Privacy & Security
Control how visitors are identified and protected.
Cookie tracking
ON: full tracking with cookies, IP, and cross-session attribution. OFF: GDPR-compliant mode with no cookies, no IP, no cross-session, no persistent user IDs.
Block bot traffic
Traffic from known bots and crawlers will not be tracked.
Cookie tracking
This is the main privacy switch.
ON (default): Full tracking. The visitor's browser stores cookies, the IP address is recorded, and visitors are recognized across multiple sessions and visits over time. This gives the most complete attribution and reporting.
OFF (compliant mode): GDPR and CCPA friendly mode. No cookies are stored on the visitor's device, the IP address is not retained, there is no cross-session tracking, and no persistent identifier is kept. Each visitor is counted using an anonymous identifier that resets every day, so no individual can be followed over time.
One click on this toggle handles everything: cookies, IP, and persistent identifiers all switch together. Turn it off if you want to run analytics without a cookie banner or consent prompt.
Block bot traffic
This keeps automated traffic out of your reports.
ON (default, recommended): Traffic from known bots and crawlers is filtered out and never counted, so your numbers reflect real people.
OFF: Bot and crawler traffic is counted alongside real visitors.
This setting is purely about data quality. It has no effect on privacy or compliance, so you can leave it on at all times.
Turn on compliant mode
To make a site GDPR and CCPA friendly:
- Open the site's Settings and go to Privacy & Security.
- Turn Cookie tracking off.
- Leave Block bot traffic on.
- Click Save changes.
That is it. The site now runs cookieless, with no IP retention and no persistent visitor identifiers.
Frequently asked questions
How do I make TrueMetriks GDPR compliant?
Open the site's Settings, go to Privacy and Security, and turn Cookie tracking off. The site then runs cookieless, with no IP retention and no persistent visitor identifiers, so you can run analytics without a cookie banner.
Do I still need a cookie banner in compliant mode?
No. With Cookie tracking off, no cookies are stored on the visitor's device and no persistent identifier is kept, so you can run analytics without a cookie banner or consent prompt.
Does Block bot traffic affect privacy?
No. Block bot traffic is purely about data quality, keeping known bots and crawlers out of your reports. It has no effect on privacy or compliance, so you can leave it on at all times.