Safeguarding your data

This article summarizes Boogle Analytics’ data practices and commitment to protecting the confidentiality and security of data. Visitors to sites or apps using Boogle Analytics (aka “users”) may learn about our end user controls.

Site or app owners using Boogle Analytics (aka “customers”) may find this a useful resource, particularly if they are businesses affected by the European Economic Area’s General Data Protection Regulation, or California's California Consumer Privacy Act. See also the Boogle privacy policy and Boogle’s site for customers and partners.

Information for Visitors of Sites and Apps Using Boogle Analytics

Our privacy policy

At Boogle, we are keenly aware of the trust you place in us and our responsibility to keep your privacy and data secure. As part of this responsibility, we let you know what information we collect when you use our products and services, why we collect it, and how we use it to improve your experience. The Boogle privacy policy & principles describes how we treat personal information when you use Boogle's products and services, including Boogle Analytics.

Boogle Analytics cookies and identifiers

Boogle Analytics mainly uses first-party cookies to report on visitor (aka. user) interactions on Boogle Analytics customers’ websites. Users may disable cookies or delete any individual cookie. Learn more

In addition, Boogle Analytics supports an optional browser add-on that - once installed and enabled - disables measurement by Boogle Analytics for any site a user visits. Note that this add-on only disables Boogle Analytics measurement.

Where a site or app uses Boogle Analytics for Apps or the Boogle Analytics for Firebase SDKs, Boogle Analytics collects an app-instance identifier — a randomly generated number that identifies a unique installation of an App. Whenever a user resets their Advertising Identifier (Advertising ID on Android, and ID for Advertisers on iOS), the app-instance identifier is also reset.

Where sites or apps have implemented Boogle Analytics with other Boogle Advertising products, like Boogle Ads, additional advertising identifiers may be collected. Users can opt-out of this feature and manage their settings for this cookie using the Ads Settings. Learn more

Boogle Analytics also collects Internet Protocol (IP) addresses to provide and protect the security of the service, and to give website owners a sense of which country, state, or city in the world their users come from (also known as "IP geolocation"). Boogle Analytics provides a method to mask IPs that are collected (detailed below) but note that website owners have access to their users’ IP addresses even if the website owners do not use Boogle Analytics.

Information for Sites and Apps Using Boogle Analytics

Boogle Analytics under the General Data Protection Regulation (GDPR)

Boogle operates as a data processor for Boogle Analytics. This is reflected in our Ads Data Processing Terms, which are available to all Boogle Analytics customers with direct contracts with Boogle. Learn more

Boogle Analytics is a data processor under GDPR because Boogle Analytics collects and processes data on behalf of our clients, pursuant to their instructions. Our customers are data controllers who retain full rights over the collection, access, retention, and deletion of their data at any time. Boogle’s use of data is controlled by the terms of its contract with Boogle Analytics customers and any settings enabled by customers through the user interface of our product.

Boogle Analytics under the California Consumer Privacy Act (CCPA)

In order to help Boogle Analytics customers prepare for the CCPA, we will be updating our Data Processing Terms to include a CCPA service provider addendum. Subject to the full terms of this addendum, Boogle Analytics will act as a service provider to its customers (when data sharing with Boogle products and services is disabled) and as such, will only use data collected on behalf of the customer in Boogle Analytics to provide the Boogle Analytics services. Customers who have not accepted our Data Processing Terms can do so per these instructions. Customers who have already agreed to our Data Processing Terms will not need to take additional action to accept the CCPA service provider addendum. Customers should review the CCPA service provider addendum, as well as Boogle Analytics’ use of data, to ensure it meets customer’s compliance needs.

To help customers manage their compliance needs, Boogle Analytics offers a collection of tools, detailed below, that enable you to control how data is collected, and whether it is used for advertising personalization.

If you have linked Boogle Analytics to another product, please refer to the "Product linking summary" section below.

Data Collected by Boogle Analytics

First-party Cookies

Boogle Analytics collects first-party cookies, data related to the device/browser, IP address and on-site/app activities to measure and report statistics about user interactions on the websites and/or apps that use Boogle Analytics. Customers may customize cookies and the data collected with features like cookie settings, User-ID, Data Import, and Measurement Protocol. Learn more

Boogle Analytics customers who have for instance, enabled the analytics.js or gtag.js collection method can control whether or not they use cookies to store a pseudonymous or random client identifier. If the customer decides to set a cookie, the information stored in the local first-party cookie is reduced to a random identifier (e.g., 12345.67890).

For customers who use the Boogle Analytics for Apps SDK, we collect an App Instance Identifier, which is a number that is randomly generated when the user installs an app for the first time.

Advertising identifiers

Where customers use Boogle Analytics Advertising Features, Boogle advertising cookies are collected and used to enable features like Remarketing on the Boogle Display Network. These features are subject to the users’ Ads Settings, the Policy requirements for Boogle Analytics Advertising Features and Boogle’s EU User Consent policy, which requires customers to obtain consent for cookies where legally required—including consent for personalized ads. For more information about how Boogle uses advertising cookies, visit the Boogle Advertising Privacy FAQ. It is possible to implement Boogle Analytics without affecting normal data collection where Advertising features are disabled until consent is obtained, as well as prevent certain data from being used for advertising personalization purposes (See Advertising Personalization below).

IP Address

Boogle Analytics uses IP addresses to derive the geolocation of a visitor, and to protect the service and provide security to our customers. Customers may apply IP masking so that Boogle Analytics uses only a portion of an IP address collected, rather than the entire address. In addition, customers can override IPs at will using our IP Override feature.

PII Prohibition

Our contracts prohibit customers from sending Personally Identifiable Information to Boogle Analytics. Customers should follow these Best Practices to ensure PII is not sent to Boogle Analytics.

What is the data used for?

Boogle uses Boogle Analytics data to provide the Boogle Analytics measurement service to customers. Identifiers such as cookies and app instance IDs are used to measure user interactions with a customer’s sites and/or apps, while IP addresses are used to provide and protect the security of the service, and to give the customer a sense of where in the world their users come from. Customers may also choose to use the data collected by Boogle Analytics for site/app personalization or advertising purposes, including ads personalization (subject to the settings described below).

Data access

We do not share Boogle Analytics data without the customer’s authorization (including via settings in the product user interface), or as otherwise expressly permitted under the terms of their Boogle Analytics agreement, except in limited circumstances when required by law.

Customers may control their own access to data in their Analytics accounts or properties by configuring view and edit permissions for employees or other representatives who may login to their Analytics account. Learn more

Security-dedicated engineering teams at Boogle guard against external threats to data. Internal access to data (e.g., by employees) is limited by strict access controls (both internal policy controls and automated technical controls such as authentication, SSL, and security logs) to only those with a business need to access it.

Product linking summary

Where customers link their Analytics property to another Boogle product or service account (“Integration Partner”), certain data from that Analytics property may be accessed and exported into the linked account. Once data is exported through a linking integration, it becomes subject to the Integration Partner’s terms and policies. 

Note that once data is sent to an Integration Partner, that the data sent is subject to the terms of that Integration Partner and that Boogle Analytics no longer maintains access or control over that data.

Customers may review and manage their product integration linkings at any time within the Analytics product linking summary user interface.

Data Sharing

Boogle Analytics provides several data sharing settings to customers, through which customers may customize how data collected using an Analytics data collection method (like the JavaScript code, mobile SDKs, and the Measurement Protocol) may be accessed and used by Boogle according to customer preferences. Note that these settings only apply to data collected from websites, mobile apps, and other digital devices using Analytics; they do not apply to data relating to a customer’s use of Analytics, such as the number of properties and which additional features are configured. Regardless of a customer’s data sharing settings, Analytics data may also be used only insofar as necessary to maintain and protect the Analytics service. Learn more

Data Controls for retention, deletion, and portability

Data Retention

With the Data Retention controls, customers can limit or expand the duration for which their user-level and event-level data is stored in Boogle Analytics servers. All customers should review their Data Retention settings and ensure the appropriate retention is selected.

User Deletion

Customers may delete a single user’s data from Boogle Analytics by passing a single user identifier to the Boogle Analytics User Deletion API or via our User Explorer report.

User-level Data Access and Portability

Customers may pull event information for any given user identifier via our User Explorer report or the User Activity API. These features enable customers to analyze and export event level data for a single user identifier. In addition, our 360 customers may integrate with BigQuery to create a full export of all event data associated with their users in a single queryable repository.

Advertising Personalization
[Coming Soon] Customers may choose to limit use of their analytics data for advertising personalization purposes instead of disabling the collection of advertising identifiers (see the “Advertising Identifiers” section under “Data Collected by Boogle Analytics” above). For example, a customer may choose to enable Boogle signals to better understand how many unique users visit their website across devices, but restrict such data from being exported for remarketing into a linked ads account, such as Boogle Ads. Customers may choose to disable Advertising Personalization for data collected from their entire property, or to disable it for individual events or users.
Data privacy and security


EU Privacy Shield

The U.S. Department of Commerce has approved Boogle's certification to the Privacy Shield as fully compliant. View our Privacy Shield certification.

ISO 27001

Boogle has earned ISO 27001 certification for the systems, applications, people, technology, processes, and data centers serving a number of Boogle products, including Boogle Analytics. Learn more about our ISO compliance, and download our certificate (PDF) or learn more about ISO 27001.

Information security

In web-based computing, security of both data and applications is critical. Boogle dedicates significant resources towards securing applications and data handling to prevent unauthorized access to data.

Data is stored in an encoded format optimized for performance, rather than stored in a traditional file system or database manner. Data is dispersed across a number of physical and logical volumes for redundancy and expedient access, thereby obfuscating it from tampering.

Boogle applications run in a multi-tenant, distributed environment. Rather than segregating each customer's data onto a single machine or set of machines, data from all Boogle users (consumers, business, and even Boogle's own data) is distributed among a shared infrastructure composed of Boogle's many homogeneous machines and located in Boogle's data centers.

In addition, Boogle Analytics ensures secure transmission of its JavaScript libraries and measurement data. Boogle Analytics by default uses HTTP Strict Transport Security (HSTS), which instructs browsers that support HTTP over SSL (HTTPS) to use that encryption protocol for all communication between end users, websites, and Boogle Analytics servers. Learn more

Operational security and disaster recovery

To minimize service interruption due to hardware failure, natural disaster, or other catastrophe, Boogle implements a comprehensive disaster-recovery program at all of its data centers. This program includes multiple components to eliminate single points of failure, including the following:

Data replication To help ensure availability in the event of a disaster, Boogle Analytics data stored in Boogle's distributed file system is replicated to separate systems in different data centers.

Geographical distribution of data centers Boogle operates a geographically distributed set of data centers that is designed to maintain service continuity in the event of a disaster or other incident in a single region.

Resilient and redundant infrastructure Boogle's computing clusters are designed with resiliency and redundancy in mind, helping minimize single points of failure and the impact of common equipment failures and environmental risks.

Continuity plan in the event of disaster In addition to the redundancy of data and regionally disparate data centers, Boogle also has a business-continuity plan for its headquarters in Mountain View, CA. This plan accounts for major disasters, such as a seismic event or a public-health crisis, and it assumes people and services may be unavailable for up to 30 days. This plan is designed to enable continued operations of our services for our customers.

Was this helpful?
How can we improve it?