0

There are two Swiss (.ch) websites, let's call them A and B. A is owned by me and B by a customer.

Because of legal data protection issues B is hosted in Switzerland and not allowed to store any user information abroad. Which means that software like Google Analytics is not available on B. A is a Swiss website but hosted in a (European) cloud.

Now we would like to find out how many common users we both have over the duration of 30 days. In short:

numberOfUsersAnumberOfUsersB

For the sake of simplicity: Instead of users we are perfectly happy to measure common browsers.

What would you suggest is the simplest way to solve this problem?

Javier
  • 2,491
  • 4
  • 36
  • 57

1 Answers1

1

First off all, best regards from Zurich/Zug :) Swiss people are everywhere...

I don't think you're correct that it's not legal to collect data in Switzerland at all (also abroad). As I'm working in the financial industry I know this topic very well and we also had to do a lot research to use GA at all.

It's always the question what and how you collect data. What you can't do - beside you got in upfront the permission of the user - is storing personal identifiable information. That's anyway not allowed by GA - you can't import/save in custom dimension/metrics for example email addresses.

Please check https://support.google.com/adsense/answer/6156630?hl=en as general basic information about this topic.

If you save the IP addresses via IP anonymization, you shouldn't run into problems if you're declaring this in your data-privacy statements. Take this approach: https://support.google.com/analytics/answer/2763052?hl=en I'm not a lawyer and also not want to give you legal advises, but ours told us that's fine. If you are real paranoid about sending data to the USA - like we have to be - you can exclude your tracking from very sensitive forms.

To go back to your basic question, if you want to find this out via Google Analytics, your key is "cross domain tracking". Check https://support.google.com/analytics/answer/1034342?hl=en for more information in this direction.

The only work-around I have in my mind beside this, is if you start collecting browser-fingerprints yourself and then connect both collections over the finger prints together (that's not save, as your visitors will use more than one device/configuration). I personally would go for the IP anonimization, exclude very sensitive forms and ensure that your data-privacy declaration contains all necessary parts for and offer an opt-out option then you should be on the safe side.

All the best and TGIF :)

Andy
  • 129
  • 1
  • 2
  • 14
  • Thanks for your feedback fellow Swiss! :) I will have to take a closer look at the data-privacy declaration of my customer (from the financial sector as you might have guessed ;-)). What I don't like about the suggested cross domain tracking solution is that neither the customer nor I want to give eachother full access to the GA data which some of us would have in that case...but that is not a technical problem. ;) – Javier Feb 17 '17 at 13:29
  • I can imagine the problem more or less... If you just want to see which did visited both sites with some transparency restrictions I guess you will need to build a custom solution. Maybe http://stackoverflow.com/questions/4085230/ways-to-create-a-unique-user-fingerprint-in-php will give you some ideas ;) (what ever solution you use, hash the data and then connect - primary-key/foreign-key - the unique hashes together). You can even upload the hash information into GA and then segment for each site individually.This would allow to detect users which were on both sites but isolated for each GA. – Andy Feb 17 '17 at 13:39