Free Trial
Assertionhub AH Debugger Blog Docs Pricing Login Assertion Automated Free Trial Download AH Debugger extension

Privacy Policy

Last Updated: February 15, 2026

Introduction

AssertionHub ("we," "us," or "our") operates assertionhub.com (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our automated analytics quality assurance platform.

Information We Collect

Account Information

When you create an account, we collect:

  • Email address
  • Full name
  • Company name
  • Website URL

Google Account Data

When you connect your Google Analytics 4 or Google Tag Manager accounts to AssertionHub, we access the following data:

Google Analytics 4 (GA4) Data Access

We use the Google Analytics Admin API and Google Analytics Data API to:

What We Access:

  • GA4 property configurations (properties, data streams, custom dimensions, conversion events)
  • Account and property metadata (names, IDs, creation dates)
  • Measurement protocol settings and data retention settings
  • User property and event parameter configurations
  • Conversion event data
  • Real-time and historical event data from your GA4 properties

How We Use This Data:

  • Automated Audits: We analyze your GA4 configuration to identify setup issues, missing events, incorrectly configured parameters, and data quality problems
  • Compliance Checks: We verify your tracking setup against best practices and privacy regulations (GDPR, CCPA)
  • Reporting & Dashboards: We generate automated reports showing audit results, data quality metrics, and tracking issues on daily or weekly schedules
  • Anomaly Detection: We monitor your GA4 data to detect sudden drops in events, missing conversions, or tracking failures
  • Historical Analysis: We compare current configurations against past snapshots to identify breaking changes

Data Storage:

  • Configuration data is cached for up to 24 hours to enable dashboard views
  • Historical audit results are stored for up to 90 days for trend analysis
  • Event-level data is processed in real-time and not permanently stored
  • All data is stored on secure servers within the EU

Google Tag Manager (GTM) Data Access

We use the Google Tag Manager API to:

What We Access:

  • Container configurations (tags, triggers, variables, folders)
  • Workspace and version information
  • Tag firing rules and trigger conditions
  • Variable values and configurations
  • Built-in variables settings
  • Container notes and version history

How We Use This Data:

  • Container Audits: We analyze your GTM setup to identify misconfigured tags, unused variables, orphaned triggers, and implementation errors
  • Consent Mode Validation: We verify that your tags properly implement Google Consent Mode v2 and respect user consent preferences
  • Performance Analysis: We identify tags that may slow down your website or cause tracking issues
  • Best Practice Recommendations: We provide automated suggestions to improve your GTM implementation
  • Change Detection: We monitor container changes and alert you to potentially breaking modifications
  • Compliance Checks: We ensure your tagging follows privacy regulations and Google's policies

Data Storage:

  • Container snapshots are stored for up to 30 days
  • Audit results and recommendations are retained for 90 days
  • All GTM data is encrypted at rest and in transit

Browser Recording Sessions

AssertionHub includes a browser recording feature that allows you to record and test user journeys on websites.

What We Record During Sessions

Session Data:

  • Screenshots of pages you visit during recording
  • User interactions (clicks, scrolls, keyboard input)
  • URLs visited during the session
  • Network requests made by the recorded website
  • Google Tag Manager data layer events
  • Session metadata (timestamp, duration, session ID)

How We Use This Data:

  • Recording Playback: Display your recorded sessions for review and editing
  • Test Creation: Generate automated tests based on your recorded interactions
  • Analytics Validation: Verify tracking events fire correctly during user journeys
  • Issue Detection: Identify tracking errors and broken flows

Data Storage:

  • Recording sessions are stored for up to 90 days
  • All session data is encrypted at rest and in transit
  • Screenshots and interactions are permanently deleted after 90 days
  • You can delete recordings manually at any time

⚠️ Your Responsibility

You are solely responsible for ensuring you have permission to record websites. Do not record websites you don't own or have authorization to test. Do not record login credentials, payment information, or sensitive personal data. AssertionHub is not liable for misuse of the recording feature.

How We Access Your Google Data

We use OAuth 2.0 to securely connect to your Google accounts. You explicitly grant AssertionHub permission to access your GA4 and GTM data through Google's authorization flow.

You can revoke this access at any time through:

  • Your AssertionHub account settings (Connections page)
  • Your Google Account permissions page (myaccount.google.com/permissions)

Automatic Data Collection

We automatically collect:

  • Usage data (feature usage, pages visited, time spent)
  • Device information (browser type, operating system, IP address)
  • Cookies and similar technologies for authentication and preferences

How We Use Your Information

We use collected information for:

  • Service Delivery: Providing automated analytics audits, GTM analysis, and tracking validation
  • Dashboard Generation: Creating personalized dashboards showing audit results and data quality metrics
  • Alert Systems: Sending notifications when tracking issues are detected
  • Product Improvement: Analyzing usage patterns to enhance our features
  • Customer Support: Responding to inquiries and troubleshooting issues
  • Legal Compliance: Meeting regulatory requirements

Data Sharing and Disclosure

We DO NOT:

  • Sell your data to third parties
  • Share your Google Analytics or GTM data with other users
  • Use your data for advertising purposes
  • Share data with competitors

We MAY Share Data With:

  • Service Providers: Cloud hosting (AWS/Google Cloud), email services (SendGrid), and analytics platforms that help us operate our Service
  • Legal Requirements: When required by law, court order, or governmental regulations
  • Business Transfers: In the event of a merger, acquisition, or asset sale

Data Retention

  • Account Data: Retained while your account is active
  • GA4 Configuration Data: Cached for 24 hours, historical audits for 90 days
  • GTM Container Data: Stored for 30 days, audit results for 90 days
  • Usage Logs: Retained for 12 months
  • Deleted Accounts: All data permanently deleted within 30 days of account deletion

Your Data Rights

You have the right to:

  • Access: Request a copy of your data
  • Correction: Update inaccurate information
  • Deletion: Request deletion of your account and all associated data
  • Portability: Export your audit results and configuration data
  • Revoke Access: Disconnect Google Analytics and Tag Manager at any time
  • Object: Opt-out of certain data processing activities

To exercise these rights, contact us at [email protected] or use the data management tools in your account settings.

Data Security

We implement industry-standard security measures:

  • Encryption: All data encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Role-based access and least-privilege principles
  • Authentication: OAuth 2.0 for Google services, secure password hashing
  • Monitoring: Continuous security monitoring and logging
  • Compliance: SOC 2 Type II and GDPR compliant infrastructure

Google API Services User Data Policy Compliance

AssertionHub's use of information received from Google APIs adheres to the Google API Services User Data Policy , including the Limited Use requirements.

Specific Commitments:

  • We only use Google user data to provide and improve AssertionHub's analytics auditing features
  • We do not transfer Google user data to third parties except as necessary to provide our Service
  • We do not use Google user data for serving advertisements
  • We do not allow humans to read Google user data unless:
    • We have your explicit consent
    • It's necessary for security purposes
    • It's required to comply with applicable law

International Data Transfers

Our servers are located in the European Union. If you access AssertionHub from outside the EU, your data may be transferred and processed in the EU under GDPR protections.

Children's Privacy

AssertionHub is not intended for users under 16 years old. We do not knowingly collect data from children.

Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through the Service. Continued use after changes constitutes acceptance.

Contact Us

For privacy-related questions or to exercise your data rights:

Email: [email protected]

Company: AssertionHub

KvK: 92904807

Location: The Netherlands

Cookie Policy

We use the following cookies:

  • Essential Cookies: Required for authentication and core functionality
  • Preference Cookies: Remember your settings and choices
  • Analytics Cookies: Understand how you use AssertionHub (anonymized)

You can manage cookie preferences in your browser settings.

Powered by beluacode Logo