Privacy

What we collect

SentientUI collects only what is needed to run the bandit and report results:

• A random session UUID stored in a first-party cookie (_snt_uid)
• Device class (mobile / tablet / desktop) derived from the User-Agent header
• Traffic source (direct / search / social / referral) derived from the Referer header
• UTM parameters if present in the URL
• Variant assignment events and goal events fired by your SDK integration
• A snapshot of the rendered variant HTML (up to 30 KB) for dashboard previews

What we do not collect

• No names, email addresses, or any personally identifiable information from your visitors
• No IP addresses beyond what the hosting infrastructure logs transiently
• No cross-site tracking
• No third-party ad pixels or data-sharing agreements

Cookies

The SDK sets one first-party cookie: _snt_uid. It contains a random UUID only — no personal data. It is used to maintain session continuity across page loads so the bandit can attribute goal events to the correct variant assignment.

You can prevent the SDK from initialising until consent is granted using the consent prop. See the consent documentation for details.

Data retention

Raw event data is retained for 90 days by default. Aggregated variant weight data — the bandit's learned knowledge — is retained indefinitely until you delete the project.

Your visitors' rights

Because we store no personal data and session UUIDs are not linkable to individuals, there is no individual data subject to access, correct, or delete under GDPR or CCPA. If you have a specific request, contact us and we will respond within 30 days.

Contact

Questions about this policy: hello@sentientui.dev