Privacy Policy

1. Overview

SEOGEO360 is an AI-powered SEO and GEO (Generative Engine Optimisation) platform at seogeo360.com, operated by SEOGEO360. The platform comprises 23 AI-powered products for AI search visibility analysis, a personal dashboard, and a companion Chrome browser extension.

Our service helps content creators, SEO professionals, digital marketers, and agencies understand and improve how their content performs in AI-powered search engines including ChatGPT, Perplexity, Google AI Overviews, Claude, Gemini, and Bing Copilot.

We are committed to collecting only what is necessary, being transparent about every piece of data we handle, and never monetising your personal information.

2. What We Collect

2a. Chrome Extension — scan records (signed in)

Each time you run a page scan with the extension, the following is sent to our server and stored in the sgeo_scans table in our database:

• URL — the full address of the page you scanned
• Domain — extracted from the URL (e.g. example.com)
• Page title — the <title> tag of the scanned page
• AI Visibility Score — a number (0–100) computed locally by the extension
• GEO Score — a number (0–100) computed locally by the extension
• Timestamp — date and time the scan was performed, stored in UTC

We do not store the page's body content, headings, paragraphs, images, or any on-page material. The extension analyses these locally in your browser and discards them immediately after computing the scores.

2b. Platform — product/tool run logs (signed in)

When you run any of the 23 AI-powered products on seogeo360.com, the following is stored in the sgeo_tool_logs table:

• Tool/product slug — identifies which product was used (e.g. ai-keyword-intelligence)
• Keyword or input — the primary keyword, domain, or URL you entered into the product
• Niche — the niche/industry field if you provided one
• Duration (ms) — how long the API call took, used for performance monitoring
• Quality rating — optional thumbs up/down you provide on the result (👍/👎)
• Timestamp — when the run was performed, stored in UTC

We do not store the full AI-generated output, the text prompt sent to the AI model, or any content you paste into product inputs beyond the keyword/URL fields listed above.

2c. Account data

When you create an account at seogeo360.com:

• Email address — your login identifier
• Display name — optional name shown in the dashboard and extension header
• Password — stored as a salted bcrypt hash via WordPress; we never see or store plain-text passwords
• Plan / subscription status — Free, Pro, or Agency, updated when you purchase or cancel
• Registration date — used to calculate trial eligibility and subscription age
• Community data — if you use the SEOGEO360 Community, we store: your community username, posts you publish, comments you write, votes you cast, posts you bookmark, and your Signal Points score. This data is associated with your account and visible to other community members according to your privacy settings.

2d. Google Sign-In (optional)

If you use "Continue with Google" we receive your name, email address, and a Google account identifier (sub) via Google's OAuth 2.0 API. We do not receive your Google password, contacts, calendar, Google Drive files, or any other Google account data beyond the profile fields listed.

2e. Extension authentication token

When you sign into the extension, we generate a 48-character random alphanumeric token and store it in chrome.storage.local on your device. This token authenticates your scan records with our API. It is not a password and cannot be used to access your seogeo360.com account directly. You can revoke it by signing out of the extension. We store a hash of the token server-side in WordPress user meta.

2f. Billing data

We do not collect or store credit card details, bank information, or any payment credentials. Billing is handled entirely by Lemon Squeezy (our payment processor and Merchant of Record). We receive only a signed webhook from Lemon Squeezy confirming your plan name, customer email, subscription ID, and subscription status (active/cancelled/expired).

2g. Newsletter subscribers

If you subscribe to our newsletter via the homepage or any opt-in form, we collect your email address and the date of subscription. This is used exclusively to send the SEOGEO360 newsletter. See Section 6 for full details.

2h. Anonymous users (not signed in)

Users who run platform tool analyses without an account are subject to rate limits tracked by a temporary anonymised key derived from their IP address (stored in a WordPress transient with a 1-hour expiry, not in permanent storage). The IP address itself is not logged or stored in our database.

3. Platform — Products, Dashboard & Data

The 23 AI-Powered Products

SEOGEO360 offers 24 AI-powered SEO and GEO products across six categories. 22 of these products use the Google Gemini API to generate analysis and recommendations. One product (GEO ROI Calculator) operates entirely with JavaScript calculations and does not call any external AI API.

The six product categories are: AI Search Intelligence, Keyword Intelligence, Content Creation & Optimisation, Competitive & Brand Intelligence, Technical SEO & Strategy, and Marketing Command Centre.

When you use any AI-powered product, a text prompt is constructed from your inputs (keyword, domain, URL, or pasted content) and sent to the Google Gemini API via our server. We act as a proxy — the prompt passes through our server and Gemini's response is returned to you. Neither the prompt nor the response is stored permanently. See Section 7 (Third-Party Services) for full details on Gemini data handling.

Your Dashboard

The dashboard at seogeo360.com/dashboard/ displays your personal data from two sources:

• Extension scan history — from the sgeo_scans table: URLs scanned, domains, AI scores, GEO scores, timestamps. Visualised as trend charts, heatmaps, domain tables, and score progression over time.
• Product usage history — from the sgeo_tool_logs table: which products you ran, when, how many times, and against which keywords/domains. Visualised as bar charts, radar charts, funnel views, and per-product breakdowns.

The dashboard supports date range filtering (7 days, 30 days, 90 days, custom ranges) and PDF export via browser print. All dashboard data is private to your account — it is not shared with other users and is not used to train any AI model.

LLMs.txt Generator

The LLMs.txt Generator product at /llms-txt-generator/ creates a structured llms.txt file for your domain to help AI crawlers understand your site. Inputs are your domain name, site description, and content preferences. These inputs are sent to Google Gemini and are not stored permanently. The generated llms.txt content belongs entirely to you.

WebMCP Readiness Checker

The WebMCP Readiness Checker evaluates whether a domain is correctly configured for Model Context Protocol (MCP) access. It reads publicly accessible information from the domain you enter (robots.txt, sitemap.xml, MCP endpoint availability). No credentials or private data from the target domain are collected or stored by our platform.

Reddit Intelligence

The Reddit Intelligence product analyses public Reddit content for a given keyword or niche to identify audience intent and question patterns. This product does not access your Reddit account, does not collect any Reddit user data, and only processes publicly available Reddit content via the Gemini API's knowledge of public discussions. No Reddit API credentials are required or requested from you.

4. How the Chrome Extension Works

The SEOGEO360 Chrome extension operates in two modes:

Local analysis (no data leaves your browser)

When you click the extension icon on any page, a content script is injected into the active tab. It reads the page's HTML — headings, paragraphs, meta tags, schema markup, links, images, and technical metrics such as page load time — and computes the AI Visibility Score and GEO Score entirely within your browser. This analysis data is never transmitted to our servers. It exists only in browser memory and is discarded when you close the extension popup or navigate away.

The extension also surfaces: E-E-A-T signal overlay, entity coverage inspector, schema detection panel, content freshness indicator, and page-level GEO score badge. All of these operate locally on the page content already loaded in your browser tab.

AI-powered recommendations (optional, server-proxied)

If you trigger an AI-powered recommendation inside the extension, a brief prompt (the page title, a short content summary, and your target keyword if provided) is sent to our server at seogeo360.com, which proxies it to Google Gemini. The response is returned to you and is not permanently stored on our server. The prompt is held in server memory only for the duration of the HTTP request (typically under 30 seconds) and then discarded.

Bulk page audit

The bulk page audit feature allows you to analyse multiple URLs from a list you provide. Each URL is fetched and analysed by the extension locally in your browser. No batch job is stored on our server beyond the individual scan records described in Section 2a. The URL list you enter is not stored permanently.

Scan recording

After a successful scan, the extension sends the scan summary (URL, domain, page title, AI score, GEO score) to our REST API at seogeo360.com/wp-json/seogeo360/v1/scan/record. This is stored in the sgeo_scans table and displayed in your personal dashboard. Signed-out users may have scans tracked anonymously against a temporary session key (see Section 2h).

PDF and export features

The extension's PDF export and the dashboard's PDF export function both use the browser's native print-to-PDF capability (window.print()). No data is uploaded to any server during export. The generated file is saved directly to your device.

5. Chrome Extension Permissions — Explained

We request the minimum permissions required for each feature. Here is why each one is needed and what it does not permit:

• activeTab — reads the content of the tab you are actively viewing, only when you click the extension icon. We never read any tab you have not explicitly opened the extension on. This permission does not give us access to your other open tabs, your tab history, or background browsing.
• scripting — injects the analysis content script into the active tab when you click the extension icon. This is the mechanism that extracts SEO signals (headings, schema, links, meta tags) from the page for local analysis. Required to perform a scan. The injected script runs in an isolated context and cannot access other extensions or browser internals.
• storage — saves your authentication token, plan status, scan quota, and user preferences (theme, language) locally in your browser so you remain signed in between sessions. Nothing stored here is shared with third parties or accessible to other websites.
• tabs — used for two specific purposes: (1) open the sign-in page in a new tab during the authentication flow and detect when sign-in is complete so the extension can capture your token, and (2) display the extension badge count on the active tab. We do not read your tab history, do not monitor browsing activity, and do not track which websites you visit.
• downloads — allows you to save exported scan data (PDF, Excel, CSV) to your device (Pro and Agency plans). Files are saved directly to your device; no data is uploaded during export.
• host_permissions: <all_urls> — required so you can scan any webpage, not just a pre-approved list of domains. Without this permission, the extension could only analyse pages from a fixed set of domains the extension is pre-configured for. This permission is used only when you actively click the extension icon on a page — not for background monitoring.

We do not request: browsing history, bookmarks, cookies from other sites, geolocation, camera, microphone, clipboard (automatic), notifications (unless explicitly enabled), or any other sensitive browser capability beyond those listed above.

6. Newsletter & Marketing Email

SEOGEO360 operates a weekly newsletter covering GEO strategy, AI search visibility updates, and platform product news.

What we collect

When you subscribe via the homepage newsletter form or any opt-in on seogeo360.com, we collect:

• Your email address
• The date and source of your subscription (e.g. "homepage newsletter form")

How we use it

Your email is used exclusively to send: (1) the SEOGEO360 weekly newsletter, (2) product update announcements, and (3) occasional promotional offers for SEOGEO360 products only. We do not use your email for third-party marketing, do not sell or rent it to any other organisation, and do not add it to any advertising audience or lookalike list.

Unsubscribing

Every marketing email includes a one-click unsubscribe link. You can also request removal by emailing help@seogeo360.com with the subject "Unsubscribe". Removal is processed within 5 business days.

Transactional emails

Account-related emails (welcome, password reset, plan activation confirmation, team invitation) are transactional and are sent regardless of marketing email preference. You cannot unsubscribe from transactional emails while your account is active, as they are required for account operation.

7. Third-Party Services & APIs

SEOGEO360 uses the following external services. Each entry describes its purpose, what data it receives, and how it is governed.

Google Gemini API

Purpose: Powers 22 of the 23 AI-powered products on seogeo360.com and optional AI recommendations inside the Chrome extension.

Data sent: A text prompt containing a keyword, domain, URL, content excerpt, or niche — constructed from the inputs you provide in the product. Prompts do not contain your name, email address, account identifier, or any other personal information beyond the SEO/content inputs you deliberately supply.

Storage: We do not store prompts or responses permanently. Google's handling of API inputs is governed by their API data usage policies — inputs sent via the Gemini API are not used to train Google's base models by default under the API terms.

Who receives it: Google LLC. Governed by Google's Privacy Policy and the Gemini API Terms of Service.

When triggered: Only when you explicitly run an AI-powered product or use the AI recommendations feature in the extension.

Google OAuth 2.0

Purpose: Optional "Continue with Google" sign-in on the login page and extension authentication flow.

Data received: Your name, email address, and Google account ID (sub). We do not receive your password, contacts, Drive files, Gmail, or any other Google service data.

Who receives it: Google LLC. Governed by Google's Privacy Policy.

Google Fonts

Purpose: Load the DM Sans typeface used on seogeo360.com.

Data sent: Your IP address and browser user-agent (standard HTTP request for a CDN resource). No personal account data is involved.

Who receives it: Google LLC. Governed by Google's Privacy Policy.

Lemon Squeezy

Purpose: Payment processing and subscription management for Starter ($49/month), Pro ($99/month), or Agency ($249/month) plans. Lemon Squeezy is the Merchant of Record — all card data is processed by Lemon Squeezy, never by SEOGEO360.

Data sent to Lemon Squeezy: Your email address and selected plan during checkout. Lemon Squeezy handles all payment credentials directly.

Data we receive from Lemon Squeezy: A signed webhook payload containing your email address, plan name, subscription ID, and subscription status. We use this exclusively to activate or deactivate your plan in our system.

Who receives it: Lemon Squeezy Inc. Governed by Lemon Squeezy's Privacy Policy.

Chart.js and jsDelivr CDN

Purpose: Render interactive analytics charts in the user dashboard (trend lines, radar charts, donut charts, activity heatmaps, funnel visualisations).

Data sent: Your IP address is sent to jsDelivr's CDN servers as part of the standard HTTP request for the library file. No personal account data or chart data is transmitted to jsDelivr. Chart data is processed entirely in your browser.

jsPDF / browser print API

Purpose: Dashboard PDF export uses the browser's native window.print() function. No data is sent to any server during PDF export. The file is generated locally and saved to your device.

Hostinger (web hosting)

Purpose: Web hosting and database infrastructure for seogeo360.com.

Data handled: All user data stored in our database (scan records, product logs, account data) resides on Hostinger's servers. Hostinger may log server-level metadata (IP addresses, request timestamps) as part of standard server operation.

Who receives it: Hostinger International Ltd. Governed by Hostinger's Privacy Policy.

8. How Your Data Is Used

• Extension scan records (URL, domain, page title, AI score, GEO score, timestamp) — displayed in your personal dashboard as scan history, domain trend tables, activity heatmaps, and score progress charts. Visible to SEOGEO360 staff for support and abuse prevention only.
• Product run logs (product slug, keyword, niche, duration, rating, timestamp) — displayed in your dashboard as product usage analytics including trend charts, radar charts, funnel visualisations, and per-product breakdowns. Used to calculate quota usage against your plan limit.
• Email address — used for: account login, plan activation, welcome email, password reset, team invitation (Agency plan), transactional notifications, and newsletter (if subscribed). Never sold or used for unsolicited marketing without explicit consent.
• Authentication token — used solely to authenticate API requests from the extension (scan recording, quota checks, plan verification). Not used for tracking or analytics.
• Plan / subscription status — used to enforce scan quota limits (Free: 15 runs/month + 50 extension scans, Starter: 100 runs + 200 extension scans, Pro: unlimited runs + unlimited extension scans, Agency: unlimited) and to gate paid features across both the platform and the extension UI.
• AI prompt inputs — forwarded to Google Gemini to generate the product output you requested. Not stored after the response is returned. Not used to train any AI model. Not associated with your account identity in the prompt.
• Quality ratings (👍/👎) — used in aggregate to identify products where output quality may need improvement. Individual ratings are not used for personalisation or profiling.

9. Data Sharing

We share your data with third parties only in the following specifically defined circumstances:

• Payment processing — your email and plan choice are shared with Lemon Squeezy to complete your checkout and manage your subscription.
• AI inference — text prompts (keyword/domain inputs, no personal data) are sent to Google Gemini when you explicitly run an AI-powered product or use the extension AI recommendations feature.
• Google Sign-In — an OAuth authorisation code is exchanged with Google's OAuth 2.0 token endpoint if you choose to sign in with Google.
• Legal requirements — we may disclose data if required by applicable law, valid court order, or regulatory authority. We will notify affected users where legally permitted to do so.
• Business transfer — if SEOGEO360 is acquired or merged, user data may be transferred to the acquiring entity, subject to at least the same privacy protections described in this policy.

We do not sell, rent, trade, license, or otherwise share your personal data with any advertiser, data broker, analytics company, or other third party for commercial purposes.

10. What We Don't Do

• We do not track your browsing history or monitor which websites you visit
• We do not collect page content, body text, images, or any on-page material from pages you scan or analyse
• We do not sell, rent, or trade your personal data to any third party
• We do not display advertisements or allow third-party ad tracking on seogeo360.com or in the extension
• We do not use your data to train AI or machine learning models
• We do not collect or store precise geolocation data
• We do not read emails, contacts, calendar events, files, or any data outside the active browser tab you explicitly scan
• We do not collect any data from pages when the extension popup is closed or not actively in use
• We do not run background scripts that execute when you are browsing without interacting with the extension
• We do not store the full AI-generated outputs produced by our products — only the input fields described in Section 2b
• We do not share newsletter subscriber email addresses with any third party for advertising or marketing purposes

11. Chrome Web Store Compliance

SEOGEO360 complies with the Chrome Web Store Developer Program Policies. Specifically:

• Single purpose: The extension has one clearly defined purpose — analyse webpages for AI search visibility and GEO optimisation signals, and provide actionable improvement recommendations.
• Minimum permissions: Every permission requested (activeTab, scripting, storage, tabs, downloads, host_permissions: <all_urls>) is required for a specific, documented feature. No permission is requested for convenience or future use.
• No browsing activity collection: We do not collect web browsing activity, visited URLs, or tab history for any purpose unrelated to the extension's single scanning function.
• No remote code execution: We do not use remotely hosted code in ways that circumvent Chrome Web Store review. All core extension logic is bundled in the extension package.
• Data minimisation: Data transmitted to seogeo360.com is limited to the minimum required to provide the service: scan summary records (URL, domain, page title, scores, timestamp) and authentication tokens.
• No sensitive data collection: We do not collect financial credentials, authentication credentials for other services, health data, personal communications content, or any other data category designated as sensitive by the Chrome Web Store policies.
• User consent: AI-powered features that involve sending data to Google Gemini are clearly triggered by explicit user action. They do not run automatically or in the background.

12. Data Retention

• Extension scan records — retained while your account is active. You can export your full history as CSV from your dashboard. Contact us to request deletion of scan records without closing your account.
• Product run logs — retained while your account is active. You can request deletion independently of your account. Aggregate anonymised usage data may be retained after deletion for service improvement.
• Account data — retained while your account exists. Deleted within 30 days of receiving a verified deletion request.
• Authentication tokens — stored on your device (chrome.storage.local) and as a server-side hash. Cleared when you sign out of the extension. Automatically invalidated when you change your password.
• AI prompt inputs — not stored after the response is returned. Retained only transiently in server memory during the HTTP request lifecycle (typically under 30 seconds).
• Newsletter subscriptions — retained until you unsubscribe or request removal. Removed within 5 business days of a valid unsubscribe request.
• Anonymous scan counters — stored as WordPress transients with a 1-hour expiry. Automatically purged. Not stored in permanent database tables.
• Server logs — managed by Hostinger per their infrastructure retention policies (typically 30 days for access logs).

13. Your Rights

Depending on your location, you may have the following rights under GDPR, UK GDPR, CCPA, or other applicable privacy legislation:

• Access — request a copy of personal data we hold about you
• Portability — download your scan history as CSV from your dashboard at any time, without contacting us
• Rectification — update your name or email address in your account settings at seogeo360.com/dashboard/
• Erasure ("right to be forgotten") — request deletion of your account and all associated personal data
• Restriction — request that we restrict processing of your data while a dispute is under investigation
• Objection — object to processing of your personal data for specific purposes
• Withdraw consent — sign out of the extension and close your account at any time without penalty

To exercise any right, email help@seogeo360.com with the subject line "Privacy Request — [Right Name]" (e.g. "Privacy Request — Erasure"). We will respond within 30 days. We may ask you to verify your identity before processing certain requests.

14. Children's Privacy

SEOGEO360 is not directed at children under 13 (or under 16 in the EU/UK). We do not knowingly collect personal information from children. If you believe a child under the applicable age has created an account or provided personal information, please contact us at help@seogeo360.com and we will delete it promptly.

15. Policy Changes

We may update this Privacy Policy when we add new products, integrate new third-party services, or when legal requirements change. The "Last updated" date at the top of this page reflects the most recent revision.

For significant changes — such as a new category of data being collected, a new third-party service receiving personal data, or a change to your rights — we will send a notification email to all registered users at least 14 days before the change takes effect. For non-material clarifications, we will update the page without advance notice.

Continued use of SEOGEO360 after a change takes effect constitutes acceptance of the updated policy.

16. Contact

For privacy questions, data subject requests, or concerns about how we handle your data:

• Email: help@seogeo360.com — subject line "Privacy Request"
• Contact form: seogeo360.com/contact

We aim to respond to all privacy enquiries within 5 business days and to complete data subject requests within 30 days.