SDK Dashboard

Privacy Policy

Last updated: January 2026

Overview

Noxtica ("we", "our", or "us") is a browser fingerprinting and bot detection platform. This Privacy Policy explains how we handle data when you use our services, including the demo at demo.noxtica.com, the admin dashboard at backoffice.noxtica.com, and this website.

What Data We Collect

Browser Fingerprint Data

When you use our fingerprinting demo or when our collector is integrated into a customer's website, we collect browser signals including:

  • Canvas and WebGL rendering characteristics
  • Audio processing fingerprints
  • Available fonts and screen properties
  • Browser plugins and capabilities
  • JavaScript API behavior patterns
  • Network-level information (IP address, connection type)

This data is used to generate a device fingerprint and risk score for bot detection purposes.

Server-Side Data

We collect network and request metadata, including:

  • IP address (may be hashed or anonymized)
  • Geographic location (country, city, region)
  • ASN and ISP information
  • TLS version and HTTP protocol
  • Additional bot detection signals

Admin Dashboard Data

If you have an account on our admin dashboard, we collect:

  • Email address
  • Hashed password (using PBKDF2-HMAC-SHA256)
  • Login timestamps and session information
  • Audit logs of administrative actions

How We Use Your Data

We use collected data to:

  • Generate browser fingerprints and device identifiers
  • Calculate risk scores for bot and fraud detection
  • Provide analytics and insights through the admin dashboard
  • Authenticate users and manage sessions
  • Improve our fingerprinting and detection algorithms
  • Comply with legal obligations

Data Storage and Security

All data is stored in encrypted databases with industry-standard security practices including:

  • HTTPS/TLS encryption for all data in transit
  • Secure password hashing with salting (PBKDF2, 100,000 iterations)
  • HttpOnly, Secure, SameSite cookies for sessions
  • Rate limiting to prevent abuse
  • Audit logging for sensitive operations

Data Retention

Fingerprint data is retained as long as needed for the service to function effectively. Data retention periods may vary based on your service agreement.

Customer Responsibilities

When you use Noxtica's SDK on your websites, you are responsible for:

  • Complying with applicable privacy laws (GDPR, CCPA, etc.)
  • Providing appropriate notices to your end users about fingerprinting
  • Obtaining any required consent from your users
  • Including fingerprinting disclosure in your own privacy policy

Noxtica acts as a data processor on behalf of our customers. The customer is the data controller for fingerprint data collected on their websites.

Your Rights

Depending on your jurisdiction, you may have rights to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict processing
  • Data portability

To exercise these rights, contact us at [email protected].

Third-Party Services

We use the following third-party services:

  • Infrastructure providers - Hosting, CDN, and security services
  • Google Fonts - Web fonts (subject to Google's privacy policy)

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy, please contact us at [email protected].