I agree wholeheartedly with this, and also toss simpleanalytics into the ring. They explicitly advertise the ability to bypass blockers and set up custom subdomains on their frontpage, which IMO _the person that is blocking it does not wish to send telemetry_, forcing them to do it is both a forced opt-in and rude as hell.<p>If you are going to try to turn a profit by yelling about how you're so respectful and compliant, maybe not intentionally try to bypass end-users' explicit, human-set, consensual opt-out with your forced shady opt-in.<p>You are not being "privacy friendly", you are refusing the user's explicit "no consent, please don't do this" and forcing yourself on them anyway.<p>--<p>An unrelated note on technical infrastructure: many of these projects are EU based and proudly tell everyone that they are EU based.<p>Unfortunately, for example - see <a href="https://en.wikipedia.org/wiki/CLOUD_Act" rel="nofollow">https://en.wikipedia.org/wiki/CLOUD_Act</a>:<p>- Plausible hosts on DigitalOcean<p>- Plausible uses Cloudflare<p>- Simpleanalytics uses Cloudflare<p>- Fathom is on AWS
Both Fathom [1] and Plausible [2] claim to be GDPR compliant, but they are not.<p>They use a technique called "device fingerprinting" by collecting online identifiers, such as IP addresses, and browser characteristics for identification. Thus user consent is needed.<p>1: <a href="https://usefathom.com/gdpr-ccpa-pecr-compliant" rel="nofollow">https://usefathom.com/gdpr-ccpa-pecr-compliant</a>
2: <a href="https://plausible.io/data-policy" rel="nofollow">https://plausible.io/data-policy</a>