First-party tracking that ad blockers cannot touch.

The Universal Script

One snippet, no library bloat. The trackrift Universal Script weighs under 8 KB compressed and loads asynchronously. It captures every supported click ID, runs fingerprinting in a Web Worker, and forwards events to your t.{domain} subdomain so ad blockers see first-party traffic.

• < 8 KB compressed, async-loaded
• Captures fbclid, gclid, ttclid, msclkid, twclid, ldclid, rdt_cid, and 12 more
• Web Worker fingerprinting so it never blocks main-thread paint
• Iframe bridge for cross-domain funnels (e.g., landing → checkout)
• Consent Mode v2 native, never fires without consent if consent is required

The CNAME setup

On the first onboarding step, we ask for your domain. If your DNS lives at Cloudflare, Vercel, Netlify, or Route53, we provision the t.{your-domain} CNAME automatically via API. SSL is issued via Let's Encrypt within seconds.

• Auto-provisioned via Cloudflare / Vercel / Netlify / Route53 API
• Manual TXT verification fallback for other DNS providers
• SSL certificate via Let's Encrypt, auto-renewed
• No transatlantic DNS hops if you're on EU residency

Server-side webhook ingestion

The pixel is brittle. The webhook is durable. Every trackrift integration prefers server-side ingestion: Stripe, PayPal, Kajabi, GoHighLevel, ClickFunnels, Calendly, CallRail, Ringba, ThriveCart all push directly to api.trackrift.com — your visitor's browser is no longer the source of truth for revenue events.

Compliance

trackrift was built with GDPR in mind, not bolted on after. Consent Mode v2 is native. With consent denied, we ingest no PII and skip fingerprint storage. With consent granted, we anchor anonymous fingerprints to PII you provide. We publish a DPA, list all subprocessors, and offer EU data residency on the Scale tier.

• Consent Mode v2 native
• GDPR, CCPA, LGPD aware by default
• EU data residency available (Scale tier)
• Right-to-erasure API endpoint with audit log