Privacy Policy

GA4 Monitor ("we", "our", or "us") is a web application that provides automated Google Analytics 4 (GA4) auditing and monitoring services. Our website is located at https://ga4monitor.com.

If you have questions about this policy, contact us at hello@ga4monitor.com.

Account information: When you sign up with Google OAuth, we receive your name and email address from Google. We store this to identify your account.

Google Analytics data: With your explicit permission, we access your GA4 property data via the Google Analytics Admin API and Google Analytics Data API. This includes property configuration, event data, and audit-relevant metrics. We only access properties you explicitly connect.

Billing information: Payments are processed by Stripe. We store your Stripe customer ID and subscription status, but never your card details — those are held securely by Stripe.

Usage data: We collect audit results, health scores, and notification preferences you configure within the app.

Technical data: Standard server logs including IP addresses, browser type, and pages visited. We use this for security and to improve the service.

• To provide and operate the GA4 Monitor service
• To run automated audits on your connected GA4 properties
• To send you audit digest emails and health score alerts (if enabled)
• To process your subscription via Stripe
• To improve the accuracy and coverage of our audit checks
• To respond to support requests

We do not sell your data. We do not use your GA4 data to train machine learning models. We do not share your data with third parties except as described in this policy.

GA4 Monitor's use of data received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

• We only request Google Analytics API scopes necessary to run audits on your connected properties
• We do not share Google user data with third parties except as required to provide the GA4 Monitor service
• We do not use Google user data for advertising purposes
• We do not allow humans to read your Google user data unless you have given explicit permission or it is required for security purposes

You can revoke GA4 Monitor's access to your Google account at any time via your Google Account permissions page.

We retain your account data and audit results for as long as your account is active. If you cancel your subscription and close your account, we will delete your data within 30 days of your request.

To request deletion of your data, email hello@ga4monitor.com.

We use session cookies to keep you logged in. We do not use advertising or tracking cookies. We do not use third-party analytics scripts on our marketing pages.

We use the following third-party services to operate GA4 Monitor:

• Supabase — database and authentication hosting
• Stripe — payment processing
• Resend — transactional email delivery
• Vercel — application hosting
• Google APIs — Analytics Admin API and Analytics Data API

Each of these services has its own privacy policy governing how they handle data.

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Withdraw consent to Google API access at any time
• Export your audit data

To exercise any of these rights, email hello@ga4monitor.com.

We implement industry-standard security measures including row-level security on our database, encrypted connections (TLS), and OAuth 2.0 for authentication. We never store Google OAuth refresh tokens in plaintext.

We may update this policy from time to time. We will notify you of significant changes by email or via an in-app notice. Continued use of GA4 Monitor after changes constitutes acceptance of the updated policy.