Visitor map
Country totals only
Like every web server, Shtory.ie receives a network address long enough to return the requested page. The country collector is installed but paused until a working public privacy contact is published. Once enabled, the server will check that address against a country database held locally, then write only the UTC calendar day and two-letter country code to a dedicated collector log. The map dataset contains only delayed country totals. It does not contain an IP address, IP prefix, IP hash, user agent, referrer, page path or exact event time.
Public totals accumulate from the date the collector starts, end at least 72 hours before publication, and omit countries below the minimum publication threshold. Dots use fixed country centres; they are not measured locations. VPNs, proxies and undetected automated requests can make a country total inaccurate.
No identity layer
No map cookie or fingerprint
The map does not set cookies, request browser location, fingerprint a device or attempt to count unique people. A theme preference may be kept in the browser's local storage so the light or dark choice survives a return visit; that preference is not used by the map and is not sent as an analytics identifier.
Exclusions
Privacy signals come first
Requests carrying Sec-GPC: 1 or DNT: 1 are excluded from the map collector. Known crawler,
command-line client, uptime-monitor and asset requests are also excluded on a best-effort basis. Bot detection
cannot be perfect, which is why the public page describes requests rather than people.
Operations
Security logs are separate
New dedicated web-server security logs may contain network addresses and are kept separately from the visitor map for no more than seven days, except when a specific record is needed to investigate an active security incident. Older inherited Nginx logs created before this separation are not reused for map totals and are aging out under their previous rotation rather than being repurposed.
Basis and choices
Why this processing happens
Once enabled, the country-level aggregate will be processed on the basis of the controller's legitimate interest in understanding the broad reach of this personal site, using the least detailed practical method. Security logging supports the separate interest in keeping the server reliable and safe.
You may object to country aggregation through GPC or DNT. The controller is Edward Dunne. A direct public privacy contact will be published here before country-event intake is enabled; until then, the map accepts no new events. Because the published map contains no visitor identifier, an individual cannot be extracted from it after aggregation.
You may also contact Ireland's Data Protection Commission.