展示HN：Respectlytics – 开源、注重隐私的移动分析 (MIT+AGPL)

展示HN：Respectlytics – 开源、注重隐私的移动分析 (MIT+AGPL)
Show HN: Respectlytics – Open-source, privacy-first mobile analytics (MIT+AGPL)

原始链接: https://github.com/respectlytics/respectlytics

## Respectlytics：注重隐私的移动分析 Respectlytics 是一款自托管的移动分析服务器，其核心设计原则是隐私保护——通过最小化数据收集来优先考虑*规避回报* (ROA)。它仅存储每个事件的 5 个必要字段：`event_name`、轮换的 `session_id`（仅在 RAM 中，每 2 小时刷新一次）、`timestamp`、`platform` 和近似 `country`（从 IP 推断得出，并立即丢弃）。**不保留任何个人数据、用户 ID、设备 ID 或精确的位置数据。** 该服务器易于使用 Docker 或 Python/PostgreSQL 环境部署。提供快速入门指南，以及全面的 API（包含事件摄取、摘要和漏斗分析端点）和 SDK。主要功能包括基于会话的分析、严格的数据限制以及可选的 GeoIP 集成（使用 MaxMind）。数据保留时间可通过 `purge_old_events` 命令进行配置。 Respectlytics 采用 AGPL-3.0 许可，鼓励开放贡献。对于不兼容的使用场景，提供商业许可。还提供完全托管的云版本。**请咨询法律顾问，以确保符合相关的隐私法规。**

## Respectlytics：注重隐私的移动分析开发者 cesncn 发布了 Respectlytics，这是一款以隐私为核心原则构建的开源移动分析解决方案。由于对现有 SDK 隐藏的数据收集行为和可疑的合规声明感到沮丧，Respectlytics 优先考虑数据最小化。与竞争对手不同，Respectlytics 每次事件只收集五个数据点：事件名称、会话 ID、时间戳、平台和国家/地区——在国家/地区查询后立即丢弃 IP 地址。它积极*阻止*收集敏感标识符，如设备 ID 和广告追踪器。该项目包括 Swift、Flutter、React Native 和 Kotlin 的 SDK（MIT 许可）以及一个可自我托管的分析服务器（Django + PostgreSQL，AGPL-3.0），可使用 Docker 轻松部署。社区版也提供托管 SaaS 选项，没有限制。开发者欢迎反馈，特别是关于在 API 级别拒绝不需要的数据以实现最大透明度的决定。

原文

Privacy-first mobile analytics server. Self-hosted, session-based, 5-field storage.
No personal data retained.

Quick Start • API Reference • SDKs • Configuration • Contributing

Respectlytics helps developers avoid collecting personal data in the first place. Our motto is Return of Avoidance (ROA) — we believe the best way to handle sensitive data is to never collect it.

We use anonymized identifiers stored only in device memory (RAM) that rotate automatically every two hours or upon app restart. IP addresses are processed transiently for approximate country lookup and immediately discarded — no personal data is ever persisted.

Only 5 fields are stored per event:

Field	Description
`event_name`	Name of the analytics event
`session_id`	Anonymized session identifier (RAM-only, rotates every 2 hours)
`timestamp`	When the event occurred
`platform`	Device platform (iOS, Android, etc.)
`country`	Approximate country (derived from IP, IP never stored)

Our system is transparent about exactly what data is collected, defensible because we minimize data by design, and clear about why each field exists. Consult your legal team to determine your specific requirements.

Get a running instance in under 2 minutes:

# 1. Clone the repository
git clone https://github.com/respectlytics/respectlytics.git
cd respectlytics

# 2. Copy environment file
cp .env.example .env

# 3. Generate a secret key
python3 -c "from secrets import token_urlsafe; print(f'SECRET_KEY={token_urlsafe(50)}')" >> .env

# 4. Start the services
docker compose up -d

# 5. Create your admin account
docker compose exec web python manage.py createsuperuser

Open http://localhost:8080 — you're ready to go.

Python 3.12+
PostgreSQL 14+ (required — SQLite is not supported)
Node.js 18+ (only for Tailwind CSS development)

# Clone and enter
git clone https://github.com/respectlytics/respectlytics.git
cd respectlytics

# Create virtual environment
python -m venv venv
source venv/bin/activate

# Install dependencies
pip install -r requirements.txt

# Configure environment
cp .env.example .env
# Edit .env — set DATABASE_URL and SECRET_KEY at minimum

# Run migrations
python manage.py migrate

# Create admin user
python manage.py createsuperuser

# Collect static files
python manage.py collectstatic --noinput

# Start the server
gunicorn core.wsgi:application --bind 0.0.0.0:8080 --workers 2 --threads 3

Important: PostgreSQL is required. We use django.contrib.postgres aggregates (e.g., ArrayAgg) that are not available in SQLite.

All configuration is via environment variables. See .env.example for the complete list.

Variable	Description	Default
`SECRET_KEY`	Django secret key	`change-me-in-production`
`DATABASE_URL`	PostgreSQL connection string	`postgres://respectlytics:changeme@localhost:5432/respectlytics`

Variable	Description	Default
`DEBUG`	Enable debug mode	`True`
`ALLOWED_HOSTS`	Comma-separated allowed hostnames	`localhost,127.0.0.1`
`PORT`	Server port	`8080`
`DATABASE_SSL`	Require SSL for PostgreSQL connection	`False`
`SECURE_SSL`	Force HTTPS redirect (enable behind reverse proxy)	`False`
`ADMIN_REQUIRE_OTP`	Require 2FA for admin access	`False`
`MAXMIND_ACCOUNT_ID`	MaxMind account for GeoIP	(empty)
`MAXMIND_LICENSE_KEY`	MaxMind license for GeoIP	(empty)
`EMAIL_BACKEND`	Django email backend	`console` (prints to stdout)
`EMAIL_HOST`	SMTP server host	`localhost`
`EMAIL_PORT`	SMTP server port	`587`
`EMAIL_USE_TLS`	Use TLS for email	`True`
`EMAIL_HOST_USER`	SMTP username	(empty)
`EMAIL_HOST_PASSWORD`	SMTP password	(empty)
`DEFAULT_FROM_EMAIL`	From address for outgoing email	`Respectlytics <noreply@localhost>`

Production: Always set SECRET_KEY to a random string, DEBUG=False, and ALLOWED_HOSTS to your domain. If running behind an HTTPS reverse proxy (nginx, Caddy), also set SECURE_SSL=True. If using managed PostgreSQL (AWS RDS, DigitalOcean), also set DATABASE_SSL=True.

Country detection is optional but recommended. It uses the free MaxMind GeoLite2 database.

Create a free account at maxmind.com/en/geolite2/signup
Generate a license key in your MaxMind account

Set the environment variables:

MAXMIND_ACCOUNT_ID=your_account_id
MAXMIND_LICENSE_KEY=your_license_key

Download the database:
```
python manage.py update_geoip
```

With Docker, the GeoIP database is downloaded automatically on container startup when credentials are provided.

Without GeoIP, events will have country=null — everything else works normally.

The built-in API reference is available at /api/v1/reference/ when the server is running.

Method	Endpoint	Description
`POST`	`/api/v1/events/`	Ingest an analytics event
`GET`	`/api/v1/events/summary/`	Aggregated event summary
`GET`	`/api/v1/events/geo-summary/`	Country distribution
`GET`	`/api/v1/events/event-types/`	List event types
`GET`	`/api/v1/events/funnel/`	Funnel analysis
`GET`	`/api/v1/events/export/`	Export events (CSV)
`GET`	`/api/v1/analytics/dau/`	Daily active users
`GET`	`/api/v1/analytics/conversions/`	Conversion data
`GET`	`/api/v1/health/`	Health check

SDK / API endpoints use app key authentication via the X-App-Key header:

curl -X POST https://your-server.com/api/v1/events/ \
  -H "Content-Type: application/json" \
  -H "X-App-Key: your-app-key-here" \
  -d '{"event_name": "app_opened", "session_id": "abc123", "platform": "ios"}'

Dashboard uses session-based authentication (login via browser).

For detailed API documentation, see docs/REFERENCE.md.

Official SDKs for mobile platforms:

SDK documentation: https://respectlytics.com/sdk/

configure(appKey, serverUrl)  — Initialize the SDK
track(eventName)              — Track an analytics event
flush()                       — Force send queued events

Note: There is no identify() or reset() method. Respectlytics uses session-based analytics only — no persistent user tracking.

By default, events are stored indefinitely. Use the purge_old_events management command to clean up old data:

# Preview what would be deleted (no changes made)
python manage.py purge_old_events --dry-run

# Delete events older than 730 days (default)
python manage.py purge_old_events

# Delete events older than 365 days
python manage.py purge_old_events --days 365

# Run weekly on Sunday at 3 AM
0 3 * * 0 cd /app && python manage.py purge_old_events >> /var/log/respectlytics/purge.log 2>&1

With Docker:

docker compose exec web python manage.py purge_old_events

Respectlytics helps developers avoid collecting personal data in the first place.

Field	Why	Stored?
`event_name`	Analytics tracking	Yes
`session_id`	Group events within a session	Yes (anonymized, rotates every 2 hours)
`timestamp`	Time-series analysis	Yes
`platform`	Platform breakdown	Yes
`country`	Geographic distribution	Yes (approximate, from IP)
IP address	Country lookup only	No — processed transiently, immediately discarded

No user IDs or persistent identifiers
No device IDs or advertising IDs
No precise location (country only)
No personal information
No cross-session tracking
No cookies or local storage

Return of Avoidance (ROA): Avoid collecting data you don't need
RAM-only identifiers: Session IDs never written to disk on the device
2-hour rotation: Session IDs automatically rotate
New session on restart: Each app launch is a fresh start
Strict 5-field storage: API rejects any extra data

Legal Disclaimer: This information is provided for educational purposes and does not constitute legal advice. Regulations vary by jurisdiction and change over time. Consult your legal team to determine the requirements that apply to your situation.

Access the admin panel at /admin/. By default, no 2FA is required.

To enable 2FA (TOTP) for admin access:

See docs/REFERENCE.md for OTP setup instructions.

We welcome contributions! See CONTRIBUTING.md for guidelines.

All contributors must sign a Contributor License Agreement (CLA) via cla-assistant.io.

Respectlytics Community Edition is licensed under the GNU Affero General Public License v3.0 (AGPL-3.0).

This means you can:

Use it freely for any purpose
Modify and distribute it
Self-host it for your organization

If you modify the software and provide it as a network service, you must make your modifications available under the same license.

Commercial licensing is available for organizations whose license is incompatible with AGPL. Contact [email protected].

Don't want to self-host? Respectlytics Cloud offers:

Fully managed infrastructure
Automatic GeoIP updates
Built-in data retention policies
Priority support
No server maintenance

Start free →

_{Built with privacy in mind. Return of Avoidance (ROA).}

展示HN：Respectlytics – 开源、注重隐私的移动分析 (MIT+AGPL) Show HN: Respectlytics – Open-source, privacy-first mobile analytics (MIT+AGPL)

展示HN：Respectlytics – 开源、注重隐私的移动分析 (MIT+AGPL)
Show HN: Respectlytics – Open-source, privacy-first mobile analytics (MIT+AGPL)