Privacy Policy
Last updated: June 29, 2026
At Map With Radius, we take your privacy seriously. This Privacy Policy explains what information we collect (and don't collect), how we use it, and your rights regarding your personal data. We believe in transparency and are committed to protecting your privacy while you use our free mapping tools.
Table of Contents
- Privacy Overview
- Information We Do NOT Collect
- Information We May Collect
- Cookies and Tracking Technologies
- Third-Party Services
- Browser Geolocation
- Shareable Links
- Map Exports
- Advertising
- Data Retention
- Data Security
- Children's Privacy
- Your Rights
- GDPR Compliance (European Users)
- CCPA Compliance (California Residents)
- International Data Transfers
- Changes to This Policy
- Contact Us
Privacy at a Glance
1. Privacy Overview
Map With Radius is designed so that the core tool — drawing a radius, searching an address, exporting a map — works without accounts and without any personal data reaching our servers. The processing happens in your browser.
To fund the service so it can stay free with no usage limits, the site is funded by display advertising provided by Raptive. Third-party ad partners (including Google) set advertising cookies to serve and measure ads. Section 9 sets out the full advertising disclosure, the vendors involved, and your opt-out choices.
Alongside advertising, the third-party measurement we use is Google Analytics 4, which we use to understand aggregate traffic. Sections 3, 4, and 5 describe what cookies it sets and how you can opt out.
In the EEA, UK, and Switzerland, Google Consent Mode v2 keeps non-essential cookies default-denied, so Google Analytics 4 runs in cookieless mode for those visitors until they consent. EEA/UK/Swiss visitors are shown a Google-certified consent management platform (CMP) before any non-essential (analytics or advertising) cookies are set. See Section 14 for details on EU/UK rights.
2. Information We Do NOT Collect
For clarity on what the mapwithradius.com application itself does not collect — separate from the standard web-technology data described in Section 3 (server logs, Google Analytics 4):
- No user accounts: We don't require registration, login, or profile creation. There are no usernames, passwords, or account settings to store.
- No directly identifying information: We don't ask for or store names, email addresses, phone numbers, physical addresses, or other directly identifying personal information.
- No location history: When you use the "Use My Location" feature, your GPS coordinates are processed entirely in your browser. We never receive, store, or transmit your location to our servers.
- No search history: Address searches are sent directly to OpenStreetMap's Nominatim service from your browser. We don't log, store, or have access to your search queries.
- No map configurations: The circles you draw, settings you choose, and maps you create are not stored on our servers. Everything exists only in your browser session (or in shareable links you create).
- No payment information: We don't sell anything, so there's no credit card numbers, billing addresses, or financial data to collect.
3. Information We May Collect
While we minimize data collection, some information may be automatically collected through standard web technologies:
- Server logs: Our hosting infrastructure (Vercel) automatically logs basic request information for security and operational purposes. This may include:
- IP addresses (may be anonymized or truncated)
- Request timestamps
- Pages visited
- Browser user agent strings
- Referring URLs
- HTTP status codes
These logs are used for security monitoring, troubleshooting, and abuse prevention. They are not used for tracking, profiling, or marketing purposes.
- Google Analytics 4: We use Google Analytics 4 (GA4) to understand aggregate usage patterns — which pages get traffic, where users come from, what devices and browsers they use. GA4 uses cookies and assigns each browser an anonymous identifier. We have configured GA4 with Google Consent Mode v2 — for visitors in the EEA, UK, and Switzerland, ‘analytics_storage’ is default-denied, so GA4 runs in cookieless mode and sets no analytics cookies for those visitors unless they consent. We do not link GA4 data to personally identifying information, because we don't collect any. See Google's Privacy Policy for how Google handles this data, and Google Analytics Opt-out to opt out across all sites.
- Error reports: If an error occurs while using the site, technical information about the error may be logged to help us fix bugs. This does not include personal information.
5. Third-Party Services
Our tools rely on the following third-party services. When you use our site, your browser may make requests directly to these services:
OpenStreetMap Tile Servers
Map tiles (the images that make up the map) are loaded from OpenStreetMap's tile servers. When you view the map, your browser requests tiles directly from OpenStreetMap.
What they may log: IP address, tile coordinates, timestamp (Tile usage policy)
Nominatim Geocoding
When you search for an address or location, the query is sent to OpenStreetMap's Nominatim geocoding service. This service converts addresses to coordinates.
What they may log: IP address, search query, timestamp (Nominatim documentation)
Vercel (Hosting)
Our website is hosted on Vercel. They provide the infrastructure that serves our website to you.
What they may log: Standard server logs for security and operations (Vercel Privacy Policy)
Google Analytics 4
We use Google Analytics 4 to measure aggregate traffic to the site. GA4 sets cookies in your browser and sends pageview and basic interaction data to Google. We do not link GA4 data to any personally identifying information, because we don't collect any.
What it may collect: Anonymous client identifier, page URLs, referrer, device/browser, approximate geographic region (Google Privacy Policy) · Opt out of Google Analytics
Advertising (Raptive)
Display advertising on this site is managed by Raptive (CMI Marketing, Inc., d/b/a Raptive). Raptive's ad partners (including Google) use cookies to serve and measure ads. See Section 9 for the full advertising disclosure and your opt-out choices.
What they may collect: Cookie identifiers, IP address, and ad-interaction signals used to serve and measure advertising (Raptive Advertising Privacy Statement)
When you load a page on Map With Radius, your browser may make requests directly to the third parties above. We do not share additional user data with them beyond what is transmitted through normal web requests and, for analytics and advertising, the standard signals their scripts collect on your device.
6. Browser Geolocation
When you click "Use My Location," your browser's geolocation API is used to determine your current position. Here's how this works:
- Your browser asks for your permission to access location
- If you grant permission, your device determines your coordinates using GPS, Wi-Fi, cell towers, or other methods
- The coordinates are sent to JavaScript code running in your browser
- The map centers on your location
Important: Your coordinates are not sent to our servers. The geolocation lookup runs entirely in your browser. The browser then uses those coordinates to centre the map, which causes OpenStreetMap to receive tile requests for the surrounding viewport (see Section 5 for how tile and Nominatim requests work); but no copy of your coordinates reaches Map With Radius infrastructure.
You can revoke location permission at any time through your browser's settings. The site will continue to work — you'll just need to search for locations manually instead of using the "Use My Location" button.
8. Map Exports
When you export maps as PNG images or KML files:
- The export is generated entirely in your browser
- The file is downloaded directly to your device
- No copy is sent to or stored on our servers
- We have no record of what maps you export
The exported files contain the geographic information you've input (coordinates, radius, etc.) and are under your control once downloaded.
9. Advertising
CMI Marketing, Inc., d/b/a Raptive (“Raptive”) is a service provider of this Site for the purposes of placing advertising on the Site, and Raptive will collect and use certain data for advertising purposes. To learn more about Raptive's data usage, click here: https://raptive.com/creator-advertising-privacy-statement/
The site is funded by display advertising served through Raptive. This section describes how advertising cookies work and the choices available to you.
How advertising works
- Third-party ad vendors (Raptive's partner networks, including Google) use cookies to serve ads, including ads tailored to your interests based on your previous visits to this and other sites where consented.
- Some of these ads are personalized based on inferred interests where consent permits; others are contextual (matched to page content) and do not rely on profiling.
- We do not sell personal information, and we do not share user identifiers with advertisers beyond the standard signals their ad code transmits.
Your choices
- You may opt out of personalized advertising by visiting Google Ads Settings. You will still see ads — they just won't be personalized to you.
- You may opt out of a third-party vendor's use of cookies for personalized advertising by visiting www.aboutads.info (US) or www.youronlinechoices.eu (EU).
- You can block third-party cookies in your browser settings, which will prevent most ad-targeting cookies from being set in the first place.
EEA, UK, and Switzerland consent
For visitors in the European Economic Area, the United Kingdom, and Switzerland, non-essential storage is set to denied on every page load through Google Consent Mode v2. Advertising is served through Raptive, whose Google-certified consent management platform (CMP) is shown to EEA/UK/CH visitors before any advertising cookies are set; the advertising and analytics categories are granted only after the visitor consents.
10. Data Retention
Because we collect minimal data, our retention practices are straightforward:
- Server logs: Automatically deleted after 30 days
- Error logs: Retained for up to 90 days for debugging purposes
- Analytics data tied to your browser: GA4 client ID and aggregated event data are retained per our Google Analytics retention configuration; see Section 3 for opt-out.
11. Data Security
We implement appropriate technical and organizational measures to protect any data we process:
- HTTPS encryption: All connections to our website are encrypted using TLS (HTTPS), protecting data in transit
- Minimal data collection: The best protection is not collecting sensitive data in the first place
- Secure hosting: We use reputable hosting providers with strong security practices
- No database of user information: Without user accounts or stored personal data, there's no database that could be breached
While no system can guarantee absolute security, our privacy-by-design approach means that even in the unlikely event of a security incident, there would be minimal personal data at risk.
12. Children's Privacy
Our Service is not directed at children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information about children.
The site requires no account creation and does not ask for names, email addresses, or other directly identifying information from users of any age. The pseudonymous web-technology data described in Section 3 (server logs and Google Analytics 4) is collected without distinction by age, and we do not attempt to identify visitors as children.
If you are a parent or guardian and believe your child has provided personal information to us, please contact us.
13. Your Rights
Depending on your location, you may have certain rights regarding personal data we process. The only data we process that could be associated with you is what Google Analytics 4 collects: a pseudonymous client ID and aggregated interaction events (page views, device and browser type, approximate country, visit timing). We don't collect or process names, email addresses, account history, or other directly identifying information. Within that limited scope, these rights may include:
- Right to access: You may ask what categories of data are tied to your GA4 client ID. We can describe the categories but cannot return user-level records, because we do not link the pseudonymous ID to your identity.
- Right to rectification: You may request correction of inaccurate data. Aggregated page-view and device-category data is not the type of data that can be inaccurate about you in a meaningful sense.
- Right to erasure: You may request deletion. The fastest path is self-serve — use the Google Analytics opt-out linked in Section 3, or clear your browser cookies (see Section 4), which detaches your browser from any future GA4 client ID. For data tied to an existing client ID in Google's records, we will forward your deletion request to Google where feasible; we do not operate a server-side deletion workflow ourselves.
- Right to data portability: You may request a portable copy of the data we hold. Given the categories above, there is generally no user-level record to export.
- Right to object: You may object to analytics processing using the opt-out methods in Section 3, by enabling Global Privacy Control in your browser, or by declining analytics in any future consent prompt.
If you have questions about your rights or wish to make a request, please contact us. We will respond to legitimate requests and explain what, if any, data is associated with the information you provide.
14. GDPR Compliance (European Users)
For users in the European Economic Area (EEA), United Kingdom, and Switzerland, we comply with the General Data Protection Regulation (GDPR):
- Legal basis: Essential site operation and security rely on our legitimate interests. For analytics and advertising, we run Google Consent Mode v2 with non-essential cookie categories default-denied for EEA/UK/Swiss visitors, so Google Analytics 4 runs in cookieless mode for those visitors unless they consent. Advertising is served through Raptive; a Google-certified consent management platform (CMP) is shown to EEA/UK/Swiss visitors before any advertising cookies are set, and the advertising categories are granted only on the basis of the visitor's consent.
- Data minimization: We collect only what is technically necessary to provide our service.
- Purpose limitation: Any data we collect is used only for the purposes stated in this policy.
- Your rights: You have all rights described in Section 13 above, plus the right to lodge a complaint with your local data protection authority.
Data Protection Authority: If you are in the EU and have concerns about our data practices, you may contact your local Data Protection Authority. A list of authorities can be found on the European Commission website.
15. CCPA/CPRA Compliance (California Residents)
For California residents, the California Consumer Privacy Act (as amended by the California Privacy Rights Act) provides additional rights regarding personal information:
- Right to know: You have the right to know what personal information we collect, use, disclose, sell, or share. We do not directly collect personal information beyond what is described in Section 3. The information collected by our third-party analytics and advertising providers is described in Section 5.
- Right to delete: You have the right to request deletion of personal information. Because we don't hold personal information directly, deletion requests for analytics or advertising identifiers should be directed to the relevant third party (Google) using the opt-out and account-management tools they provide.
- Right to opt out of selling: We do not sell personal information.
- Right to opt out of sharing: Under CPRA, the use of advertising cookies that enable cross-context behavioral advertising may constitute “sharing”. You can opt out of personalized advertising at Google Ads Settings. We also honor the Global Privacy Control (GPC) browser signal: when GPC is present on a request, we treat it as a signal not to share personal information for cross-context behavioral advertising.
- Right to correct: You have the right to request correction of inaccurate personal information. We do not hold personal information directly.
- Right to limit use of sensitive information: We do not collect sensitive personal information as defined by CPRA.
- Right to non-discrimination: We will not discriminate against you for exercising your CCPA/CPRA rights.
Do Not Sell or Share My Personal Information: We do not sell personal information. Advertising is served through Raptive, which may involve “sharing” under CPRA. The opt-out is the Google Ads Settings link above and the Global Privacy Control browser signal — both of which we honor.
16. International Data Transfers
Our website is hosted in the United States. If you access the Service from outside the United States, your connection data (IP address and browser information) and the pseudonymous interaction data collected by Google Analytics 4 (see Section 3) may transit to the United States and to Google's infrastructure. The categories of data that may cross borders are limited and described below:
- Standard web requests (IP address, browser information) necessary to serve the website
- Google Analytics 4 events: pseudonymous client ID and aggregated interaction data, transferred to Google's infrastructure (see Section 3)
- Requests to OpenStreetMap services (based in various locations globally)
Our hosting provider (Vercel) maintains appropriate data protection agreements and safeguards for international data transfers.
17. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:
- We will update the "Last updated" date at the top of this page
- For significant changes, we may provide additional notice (such as a banner on our website)
- The updated policy will be effective immediately upon posting
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your privacy.
18. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Email: contact@mapwithradius.com
Web: mapwithradius.com/contact
We will respond to privacy-related inquiries within 30 days.