Privacy Policy
Last updated: 28 May 2026
This site (cilock.dev, the CI/lock documentation, operated by TestifySec, Inc.)
uses first-party analytics and a B2B visitor-identification service to understand how
the docs are used and which organizations are interested in CI/lock. This page explains
what we collect, why, and your choices.
This notice is provided for transparency and is not legal advice; it should be reviewed by counsel before being relied upon for compliance.
Consent
In regions where prior consent is legally required (the EU/EEA, UK, Switzerland, Brazil, and others), none of the analytics or identification below runs until you accept via the cookie banner. Choosing "Necessary only" — or being outside those regions — is handled as described in Cookies. You can withdraw consent at any time by clearing this site's cookies.
What we collect
First-party analytics (ours, no third party):
- A persistent visitor id (
cl_vid) and a short session id (cl_sid) so we can distinguish new vs returning readers and group page views into sessions. - Pages viewed, referring URL, on-site search queries, link clicks, copied code snippets, and engagement signals (time on page, scroll depth).
- Server-side request signals: IP address, approximate location (country/region/city), network operator / ASN, browser and device (user-agent, client hints), and a derived TLS fingerprint used for bot filtering.
B2B account identification (third party — Factors.ai):
- We use Factors.ai to estimate the company/organization a visit may originate from,
based on the network IP. This is account-level, not an attempt to identify you
personally. Factors sets a first-party cookie (
_fuid).
Infrastructure (processor — Cloudflare):
- Cloudflare delivers the site and provides bot/security signals at the edge.
Why we collect it
To measure documentation usage and improve content, and — for business visitors — to understand which organizations are evaluating CI/lock. We do not sell personal data, and we do not attempt to identify individuals or obtain personal email addresses.
Legal bases (GDPR/UK GDPR)
- Consent for the analytics cookies and Factors identification in regulated regions.
- Legitimate interest for aggregate, security, and bot-filtering processing.
Cookies
| Cookie | Purpose | Lifetime | Party |
|---|---|---|---|
cl_consent | Records your consent choice | 180 days | First-party |
cf_country | Country hint to decide if a banner is required | 1 hour | First-party |
cl_vid | Returning-visitor analytics | 2 years | First-party |
cl_sid | Session analytics | 30 minutes | First-party |
_fuid | Factors.ai account identification | per Factors | First-party (Factors) |
Sharing
Data is processed by Cloudflare (hosting/edge) and Factors.ai (account identification) as our processors/providers. We do not sell personal information.
Your rights & contact
Depending on your region you may have rights to access, correct, delete, or object to processing of your personal data. To exercise them, contact [email protected].