GDPR Compliance


Future-proof your analytics with Webtrekk

Cutting-edge analytics is about more than data. Evolving regulations require policies that protect companies and their end users. Webtrekk ensures that your data collection, data processing and data storage meet current and future regulations. There is not opt-in requirement for first-party data collection for analytics purposes.

Why Webtrekk for GDPR compliance

100% European
Data ownership
Privacy as policy
Custom tracking domains

100% European

Whatever we do, we do it in Europe.

  • European headquarters: Webtrekk was founded in Berlin and is 100% European-owned
  • German infrastructure: All Webtrekk servers, as well as our data center, are located in Germany
  • EU development: No retrofitting required – Webtrekk software is born compliant
  • Formal certification: We are certified by the German Technical Inspection Association (TÜV), the International Organization for Standardization and ePrivacy

Data ownership

Owning your data is one of the best ways to ensure compliance with data privacy regulations.

With Webtrekk, you will never worry about where your data is stored or who has access to it. It will live in our ISO-certified data center here in Germany, and you will be on the only one with the keys.



Privacy as policy

For us, privacy compliance is a way of doing business. Protecting your users’ data is not a setting – it’s a guarantee.

  • Webtrekk does not use personal data or PII (personally identifiable information)
  • User profiles are built with pseudonymized data, such as hashed emails
  • Analytics data cannot be connected to users

Custom tracking domains and track servers

Custom tracking domains and servers protect your analytics operation from regulatory changes. No matter how regulations evolve, companies that use their own domains and track servers will be a step ahead. Take control of your infrastructure and protect today and beyond.


Our customers care as much about data privacy as we do. This is why insurance companies and financial institutions from all over Europe such as BNP Paribas, ING-DiBa and many more use Webtrekk – to comply with the strictest data privacy regulations.

Webtrekk is certified by the German Technical Inspection Association (TÜV), the International Organization for Standardization (ISO) and ePrivacy.



GDPR in 16 Steps

Check out our GDPR checklist and read
our step by step guide to the GDPR.

May the data privacy be with you [Seminar]

As part of the official dmexco conference program, we hosted a seminar session on data privacy and GDPR. Learn about the impact the EU data privacy will have on businesses and how to prepare for it. Check out the presentation.

6 GDPR passages that analysts and marketers should know [Blog post]

This blog post looks at some actual GDPR text to see exactly what is (and isn't) about to change. Read it now.

GDPR: Frequently Asked Questions

Our Data Privacy Officer answers FAQs about GDPR. What surprises are coming? How will GDPR affect your business? Read it here

GDPR and Analytics

The GDPR – General Data Privacy Regulation – clarifies the European Commission’s philosophy on data privacy. The GDPR and the ePrivacy Regulation, a corresponding Commission document, will take affect in May 2018 and will have a big impact on the digital analytics and marketing landscape.

  • First-party analytics tracking is allowed under the GDPR – although there is uncertainty about third-party data
  • Data ownership is a key component of any company’s analytics
  • Restrictions make third-party data less effective for marketers

These points run counter to the way that many analytics providers operate – especially ones from the US. Webtrekk, meanwhile, is positioned to meet these criteria.

  1. Webtrekk offers support for custom track domains and, if desired, custom track servers. These ensure that the technical requirements of first-party cookies is met.

  2. In contrast to some other analytics providers, Webtrekk – with headquarters and data center in Europe – offers contractual and legal guarantees that clients own the data they collect. That makes the client the so-called "data controller" (the term used by the European Commission).