Privacy Policy

Last updated: March 17, 2026

MapMyVisitors.com ("MapMyVisitors", "we", "us", or "our") operates a visitor map widget service that allows website owners ("Widget Users") to display a real-time map showing the approximate geographic locations of their website visitors ("End Users"). This Privacy Policy explains how we collect, use, store, and protect information through our website and services.

1. Our Role: Controller and Processor

MapMyVisitors acts in two capacities:

• Data Controller — for our own website (mapmyvisitors.com), user accounts, and any data we process for our own purposes (analytics, service improvement).
• Data Processor — when processing End User visitor data on behalf of Widget Users who embed our widget on their websites. In this case, the Widget User is the Data Controller and is responsible for obtaining appropriate consent from End Users where required by applicable law.

2. Information We Collect

2.1 End Users (visitors to websites using our widget)

When you visit a website that has our widget installed, we automatically collect:

• IP address — stored in a compact binary format; used to determine approximate geographic location
• Approximate geographic location — country, city, latitude/longitude coordinates, and postal code, derived from your IP address using an offline geolocation database (MaxMind GeoIP2)
• Browser and device information — user agent string (browser type, operating system)
• Page information — the URL of the page you visited and the referring URL
• Visit metadata — date and time of the visit, session identifier

We do not track End Users across different websites. The widget collects data only in the context of the specific website where it is installed.

2.2 Widget Users (registered website owners)

When you create an account, we collect:

• Email address
• Website URL(s) where the widget will be installed
• Account credentials (password stored in hashed form)

2.3 Contact Requests

If you contact us via our contact form, we collect your email address, subject line, and message content.

2.5 Automatically Collected Data on Our Website

When you visit mapmyvisitors.com directly, we collect standard server log data and use Google Analytics for website usage analysis.

3. How We Use Your Information

Purpose	Data Used	Legal Basis (GDPR)
Display visitor locations on the map widget	IP address, geolocation data	Legitimate interest of Widget User; consent where required by ePrivacy laws
Provide aggregate visitor statistics to Widget Users	Geolocation, visit metadata, browser info	Performance of contract with Widget User
Operate and maintain user accounts	Email, website URL, credentials	Performance of contract
Respond to support requests	Email, message content	Legitimate interest
Prevent fraud and abuse	IP address, usage patterns	Legitimate interest
Improve our services	Aggregated usage data	Legitimate interest

4. Cookies and Tracking Technologies

4.1 On Our Website (mapmyvisitors.com)

• Essential cookies — session management, authentication (login cookie), flash messages
• Google Analytics — website usage analysis using cookies set by Google
• Google reCAPTCHA v3 — bot protection on forms, which may set cookies

4.2 Widget on Third-Party Websites

The widget loads as a tracking pixel (image) on the Widget User's website. It does not set cookies on the End User's browser. Data is collected through the HTTP request made when the image loads.

For Widget Users: If your website is subject to the EU ePrivacy Directive or similar cookie/consent laws, you are responsible for obtaining appropriate consent from your visitors before loading the widget, as the widget processes IP addresses (which constitute personal data under GDPR).

5. Data Sharing and Third Parties

We do not sell personal information.

We share data with the following categories of third parties, solely as necessary to operate our service:

Third Party	Purpose	Data Shared
MaxMind	IP geolocation (offline database — no data transmitted)	None (processing is local)
Google Analytics	Website usage analysis (mapmyvisitors.com only)	Usage data, cookies
Google reCAPTCHA	Bot protection	Browser interaction data
CloudFlare	CDN and security	Request data routed through their network

We may also disclose personal data when required by law, court order, or to protect our legal rights.

6. International Data Transfers

Our servers are located in Europe. If data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, or reliance on the EU-US Data Privacy Framework where applicable.

7. Data Retention

• End User visitor data (IP, geolocation, visit metadata) — retained for the duration of the Widget User's active account. Aggregated statistics may be retained indefinitely.
• Widget User account data — retained for as long as the account is active and for a reasonable period afterward to comply with legal obligations.
• Contact form submissions — retained for up to 2 years or until the inquiry is resolved.
• Server logs — retained for up to 90 days for security and debugging purposes.

8. Data Security

We implement technical and organizational measures to protect personal data, including encrypted connections (HTTPS/TLS), secure password hashing, access controls, and regular security reviews. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

9. Your Rights Under GDPR

If you are in the European Economic Area, United Kingdom, or Switzerland, you have the following rights:

• Access — request a copy of the personal data we hold about you
• Rectification — request correction of inaccurate or incomplete data
• Erasure — request deletion of your personal data
• Restriction — request that we limit processing of your data
• Portability — request your data in a structured, machine-readable format
• Objection — object to processing based on legitimate interest
• Withdraw consent — where processing is based on consent, you may withdraw it at any time

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

You also have the right to lodge a complaint with your local data protection supervisory authority.

For End Users: If you visited a website that uses our widget and wish to exercise your data rights regarding data collected through that widget, please contact the website owner (Data Controller) directly. You may also contact us and we will assist in directing your request.

10. Your Rights Under CCPA/CPRA

If you are a California resident, you have the following rights under the California Consumer Privacy Act and California Privacy Rights Act:

• Right to Know — request disclosure of the categories and specific pieces of personal information we have collected about you
• Right to Delete — request deletion of your personal information
• Right to Correct — request correction of inaccurate personal information
• Right to Opt Out — we do not sell or share personal information for cross-context behavioral advertising
• Right to Non-Discrimination — we will not discriminate against you for exercising your rights

To exercise these rights, contact us at [email protected].

Categories of personal information collected in the past 12 months: identifiers (IP address, email), internet activity information (pages visited, referring URLs, browser type), and geolocation data.

11. Children's Privacy

Our service is not directed at children under the age of 13 (or 16 in jurisdictions where applicable). We do not knowingly collect personal information from children. Widget Users must not install our widget on websites directed at children without ensuring compliance with applicable child protection laws (including COPPA). If you believe a child's data has been collected through our service, please contact us and we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email to registered Widget Users or by a prominent notice on our website. The "Last updated" date at the top of this page indicates when the policy was last revised.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights:

• Email: [email protected]
• Website: Contact Form