Privacy Policy

Last updated: April 28, 2026

                SigmaCount was built because we believe you shouldn't have to trade your privacy for a place to connect with friends. We collect usage data to understand which features matter most and to keep the platform running, but we don't track you outside this site and we never sell your data. Period.
            

What We Collect

When you use SigmaCount, we store only what's needed to make the site work and improve it:

Account information: username and email address (used for login and authentication)
Profile information: display name, bio, and profile photo (if you choose to add them)
Content you create: posts, messages to other members
Media you upload: photos and videos, along with file metadata (size, dimensions)
Join requests: name and email submitted through the request access form
IP addresses: temporarily stored for rate limiting to prevent abuse, and automatically deleted after a short period
Usage metrics: aggregated resource consumption per account (storage used, API requests, emails sent, bandwidth) collected monthly to understand platform costs and prioritize feature development
Page visit counts: when someone visits a public profile, post, or collection page, we record a visit count tied to the content owner's username and the date — no visitor identity is stored (see "Page Visit Analytics" below)

How We Use Usage Data

We track how much each account uses the platform's resources — things like storage space, page requests, and bandwidth. This data helps us:

Understand which features are actually being used so we can focus development effort where it matters
Calculate the real cost of running the platform and keep it sustainable
Show you a transparent breakdown of what your account costs to operate

Usage data is aggregated monthly and visible to you on your usage page. It is never shared externally or used for advertising.

What We Don't Do

No tracking outside this site — we have zero presence on any other website or app
No third-party analytics or tracking scripts — no Google Analytics, no pixels, no ad networks
No behavioral profiling or interest tracking
No fingerprinting
No data is sold to or shared with third parties, ever
No data is used for advertising of any kind
No visitor identity is recorded in page visit analytics — we count visits, not visitors

Cookies

We use a single cookie:

auth_token — a session authentication cookie, set with Secure and SameSite=Strict flags. It exists solely to keep you logged in. If you select "Remember me," it persists for 30 days. Otherwise, it expires when you close your browser.

That's it. No tracking cookies, no third-party cookies.

Email

We send transactional emails only:

Password reset links
Member-to-member messages (routed through our domain)

We will never send marketing emails or share your email address with anyone.

Where Your Data Lives

All data is stored on infrastructure provided by major cloud providers, within a single geographic region. Your data is not replicated to third-party services outside our hosting infrastructure.

Third-Party Scripts

The site uses a small number of open-source libraries for client-side functionality such as content rendering and security sanitization. Some of these may be loaded from external content delivery networks (CDNs). When your browser fetches a script from an external CDN, the CDN provider can see your IP address as part of standard HTTP requests. No data about your activity on SigmaCount is sent to these services.

Page Visit Analytics

We count visits to public pages (profiles, posts, and collections) so content owners can see how their work is performing. Here's exactly what happens:

What we record:

Which page was visited (e.g. "profile/alice" or "post/abc123")
The date of the visit
The content owner's username
A running visit count for that page on that date

What we don't record:

The visitor's identity, IP address, or location
The visitor's browser, device, or operating system
Where the visitor came from (no referrer tracking)
How long the visitor stayed or what they clicked

What you can see: If you're a logged-in member, you can view analytics for your own content on the Analytics page. This shows total visit counts, a breakdown by page type (profile, posts, collections), your top 5 most-visited pages, and daily visit records with date range filtering. You can only see analytics for pages you own — you cannot see other members' analytics.

CDN Access Logs

The site is served through a content delivery network (CDN). The CDN writes standard access logs to private storage for operational and debugging purposes. These logs contain:

Visitor IP addresses
Request URLs and HTTP methods
Response status codes and bytes transferred
User agent strings (browser/device identification)
Referer headers (where the request came from)
CDN edge location and timing data
Cookie values included in the request

These raw logs are stored encrypted in private storage with all public access blocked. They are automatically moved to archival storage after 90 days and permanently deleted after 365 days. The logs are used solely for debugging delivery issues and understanding traffic patterns at an infrastructure level. They are not processed into per-user profiles, not shared externally, and not used for advertising or behavioral tracking. Only the site administrator has access to the raw log files.

Account Deletion

If you want your account and all associated data removed, contact the site administrator. We will delete your account, profile data, posts, and messages. We're working on a self-service option.

Changes to This Policy

If this policy changes, we'll update the date at the top. For significant changes, we'll post a notice on the site.

Contact

Questions about this policy? Reach out to the site administrator through the messaging feature or the contact information on the admin's profile.