Replace Adjust: open-source

Q: Where can we audit the source?

GitHub: `github.com/respectlytics`. Each SDK has its own repository with source, tests, CI configuration, and release tags. The server lives in a separate repo with the same conventions.

▸Example Adjust call (the "before")

swift Respectlytics

import AdjustSdk

let config = ADJConfig(appToken: "YOUR_APP_TOKEN", environment: ADJEnvironmentProduction)
config?.logLevel = ADJLogLevelInfo
Adjust.appDidLaunch(config)

let event = ADJEvent(eventToken: "purchase_token")
event?.setRevenue(price, currency: "USD")
event?.addCallbackParameter("user_id", value: userId)
Adjust.trackEvent(event)

Closed-source analytics SDKs require you to trust vendor claims about behaviour. Open-source SDKs let your security team verify those claims from source. For regulated industries this is often a procurement-gating requirement. Respectlytics's SDKs are MIT-licensed and fully open; the server is AGPL-3.0.

☑Remove Adjust cleanly

1
Remove the Adjust SDK from your build (Adjust / adjust-android / react-native-adjust / adjust_sdk)
2
Remove Adjust.appDidLaunch(config) and Adjust.trackEvent(...) call sites
3
Decide whether you still need ATT — if Adjust was your only ATT-triggering SDK, remove NSUserTrackingUsageDescription from Info.plist
4
Remove the AD_ID permission from the merged Android manifest if no other SDK needs it
5
Plan SKAdNetwork / Google Play Install Referrer as the first-party attribution replacement

⇋Adjust vs Respectlytics — open-source sdk + server

	Adjust	Respectlytics
SDK source publicly available	— see tool note above	Yes (MIT)
Server source publicly available	— typically no	Yes (AGPL-3.0)
Reproducible builds from source	— varies	Yes (CI publishes from same commit)
Fork-and-modify allowed	— varies by license	Yes
Public commit history	— typically no	Yes (GitHub)

❓Frequently asked questions

Where can we audit the source?

GitHub: github.com/respectlytics. Each SDK has its own repository with source, tests, CI configuration, and release tags. The server lives in a separate repo with the same conventions.

Are the published binaries reproducible from source?

Yes — CI builds use deterministic build commands. The artifacts published to CocoaPods / SPM / Maven Central / npm / pub.dev are produced by the same pipeline that runs against each commit. Reproducible builds are a goal we test against; report any discrepancy as an issue.

Can we modify the SDK and ship our fork?

Yes — MIT permits modification and redistribution with attribution. Many enterprises fork to adjust logging, add internal tracing, or vendor the SDK into their build.

Why MIT for SDK and AGPL for server?

Standard split for source-available SaaS (GitLab, Sentry, MinIO, Plausible). MIT on the SDK maximises consumer freedom — your app picks up the dependency without obligation. AGPL on the server prevents competing closed-source SaaS forks while allowing internal self-hosting freely.

⇢Related migration guides

Replace Adjust: no att prompt Same tool, No ATT prompt Replace Adjust: no pii collected Same tool, No PII collected Replace Adjust: no phi collected Same tool, No PHI collected Replace Adjust: 5-field event schema Same tool, 5-field event schema Replace Adjust: ram-only event queue Same tool, RAM-only event queue Replace Adjust: fewer third-party sdks Same tool, Fewer third-party SDKs Replace Adjust: smaller app binary Same tool, Smaller app binary Replace Adjust: faster cold start Same tool, Faster cold start Replace Adjust: eu data residency Same tool, EU data residency Replace Adjust: self-hosted deployment Same tool, Self-hosted deployment Replace Firebase Analytics: open-source sdk + server Same outcome, Firebase Analytics Replace Google Analytics for Firebase: open-source sdk + server Same outcome, Google Analytics for Firebase

Replace Adjust with an open-source analytics stack