Claymore
Get in touch
Claymoreยฎ

Session & Identity Architecture

Secure, privacy-compliant session tracking with complete data ownership and automatic user isolation

100%
Data Ownership
30min
Session Timeout
0
Third-Party Sharing
Auto
User Isolation
E2E
Encryption

๐Ÿ” Three-Tier Identity Architecture

๐Ÿ’ปDevice ID
localStorage
Survives restarts
๐Ÿ“ฑSession ID
sessionStorage
Per browser tab
๐Ÿ‘คUser ID
via identify()
Cross-device

๐Ÿ›ก๏ธ GDPR & Privacy Compliance

๐Ÿ“‹ Lawful Basis

Recording starts only after your consent mechanism approves. Respects existing cookie consent.

๐Ÿ—‘๏ธ Right to Erasure

Full data deletion via API. Remove all sessions, replays, and events for any user on demand.

๐Ÿ” Data Minimization

Privacy-by-default masking. All inputs masked automatically. Sensitive data detection blocks PII.

๐Ÿ  Data Residency

Self-hosted deployment means your data stays in your infrastructure. Choose your region.

๐Ÿ”’ Automatic User Isolation

Safe User Switching on Shared Devices

When identify() detects a different user, Claymore automatically isolates sessions

// User A logs in
Claymore.push('identify', ['user-alice@example.com']);
// Session: abc-123, linked to Alice

// Later, User B logs in on same device
Claymore.push('identify', ['user-bob@example.com']);
// Automatic: Session abc-123 flushed
// Automatic: New session xyz-789 created
// Automatic: xyz-789 linked to Bob
// Result: Alice and Bob histories are completely separate

๐Ÿ”„ OAuth & Redirect Resilience

๐Ÿ›’Start Checkout
Session backup
to localStorage
๐Ÿ”—Redirect Out
Payment provider
sessionStorage cleared
โ†ฉ๏ธReturn
SDK checks
localStorage backup
โœ…Restored
<30min + same project
Session continues

๐Ÿ† Security & Privacy Comparison

FeatureClaymoreHotjarMS ClarityFullStory
Self-Hosted Optionโœ“ Full Controlโœ— SaaS Onlyโœ— SaaS Onlyโœ— SaaS Only
Data Ownershipโœ“ 100% YoursSharedMicrosoftShared
Data Residency Controlโœ“ Any RegionEU/USAzure RegionsUS/EU
Auto User Isolationโœ“ Automaticโœ— Manualโœ— Manualโœ“ Automatic
Default PII Maskingโœ“ All Inputsโœ“ Inputsโœ“ InputsOpt-in
Third-Party Data Sharingโœ“ NoneAnalyticsMicrosoftLimited
OAuth Redirect Supportโœ“ Built-inโœ— Breaksโœ— Breaksโœ“ Yes
GDPR Data Deletionโœ“ Full APIโœ“ Yesโœ“ Yesโœ“ Yes
PricingSelf-hosted$32-171/moFree$199+/mo

๐Ÿ“ Industry Standards Compliance

๐Ÿ‡ช๐Ÿ‡บ GDPR

Full EU compliance

Consent-first, data deletion API

๐Ÿ‡บ๐Ÿ‡ธ CCPA

California Privacy Act ready

Do-not-sell signals respected

๐Ÿ” SOC 2

Architecture ready

Inherits your certifications

๐Ÿฅ HIPAA

Self-hosted capable

Deploy in BAA infrastructure

๐Ÿ“‹ What We Have & What's Coming

โœ… Available Now

  • Three-tier identity model (Device โ†’ Session โ†’ User)
  • Automatic user isolation on shared devices
  • OAuth redirect resilience
  • Privacy-by-default input masking
  • Self-hosted deployment option
  • GDPR/CCPA compliance ready
  • Full data deletion API
  • 30-minute session timeout

๐Ÿš€ Coming Soon

  • Per-tenant encryption keys
  • SSO/SAML integration
  • Advanced RBAC permissions
  • Audit log export
  • Configurable data retention
  • Consent management integration
  • AI-powered PII detection
  • Mobile SDK (iOS/Android)

๐Ÿ’ก The Claymore Difference

Other services: Your session data lives on their servers, shared across their platform, subject to their policies.

Claymore: Self-hosted deployment means 100% data ownership. Your infrastructure, your rules, your compliance.

Privacy isn't a feature. It's the architecture.