What we collect, and why.
NSA Tracker reads a public government dataset and shows it to you. It has no accounts and nothing to sell. Apart from what you choose to send us through the contact form, what it collects is about how the site itself is used — enough to keep it fast and reliable and to understand which views are useful. We don’t sell your data or use it to build advertising profiles.
Two kinds of record
Access logs. Every request our API answers leaves a short technical record: the time, the route, the response status and size, a browser user-agent string, and a salted, one-way hash of your IP address — never the address itself. This is ordinary operational and security logging that keeps the service reliable and lets us spot abuse. It happens for everyone, and it does not identify you.
Product analytics. Unless you opt out, we record how the site is used — which views you open and a few interactions (opening a tab, sharing a link, running a search, clicking through to a source). These carry a random session id and, across visits, a random device id stored in your browser. They contain no name, no email, no account — nothing you typed into a search is stored, only that a search happened. The IP is hashed here too. We also use standard analytics providers to measure site performance and traffic; these are set up to avoid identifying you personally.
Where you came from. If you arrive from a campaign link, we record how you got here — the campaign tags in the link (the utm_* parameters and any ad-click id) and the referring site — so we can tell which outreach actually brings people in. This is ordinary marketing measurement; it stays in our own database and is never sold or used to build a cross-site profile.
When you contact us
If you use the contact form or email us, we store what you send — your name, email, and message — so we can read it, reply, and keep a record of the conversation. This is the only place we hold information that directly identifies you, and we hold it only because you chose to send it. It stays in our own database, is never sold or shared with an ad network, and your IP is recorded only as a salted, one-way hash. To have your message deleted, email contact@nsatracker.com.
Your choice
Analytics are on by default, and opting out is easy. If your browser sends a Global Privacy Control or Do-Not-Track signal, we honour it automatically — we stop counting you, with no prompt to click through. Either way the entire site works exactly the same; you are simply not measured.
Where it goes, and for how long
The usage data we keep lives in our own database — the same service that serves the public dataset — alongside the standard analytics providers we rely on to keep the site fast and reliable. We do not sell your data, and we do not build advertising profiles. Access logs and product analytics are automatically deleted after a fixed retention window (90 days by default). Contact-form messages are different: because they’re correspondence, we keep them for as long as we need to handle your request rather than on the 90-day schedule — email contact@nsatracker.com to have yours removed.