Some third-party services as well as some essential server-side programs may collect data. Any data I’m responsible for is NEVER collected to be sold!
General HTTP requests to the server (and data surrounding them) are saved, which may include: IP address, timestamps, exact page request, user agent, etc. My current web server software (program, which handles website requests) of choice is apache2, and the data format (mostly) corresponds to it’s defaults.
One such data line would look something like:
184.108.40.206 - - [11/Jul/2023:14:28:11 +0300] "GET / HTTP/1.1" 200 668 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0"
These logs could be useful for certain issues, like bad server performance or malicious webpage access.
My domain is bought with namecheap and it’s associated DNS entries are managed with namecheap servers. This means that DNS entries, or in simpler terms - domain configurations, first go through namecheap, and that may or may not mean they can collect data from you.
Analogously, my website is hosted on hetzner servers, which may or may not be doing some sort of data collection, outside of my control.