Privacy
Policy

1. Information We Collect

We collect information necessary to provide our AI Google Review Manager service effectively and securely. This includes both information you provide directly and information collected automatically through your use of our service.

Personal Information

• Account Information: Name, email address, phone number, and business details
• Business Data: Business name, address, Google My Business information
• Payment Information: Billing details processed through secure third-party providers
• Communication Records: Support tickets, emails, and chat conversations

Review and Business Data

• Review Content: Customer reviews from Google and other platforms
• Response Data: AI-generated and manual responses to reviews
• Analytics Data: Review performance metrics and sentiment analysis
• Business Insights: Reputation trends and competitor analysis

Technical Information

• Usage Data: How you interact with our platform and features
• Device Information: Browser type, operating system, IP address
• Log Data: Access times, error logs, and system performance data
• Cookies: Authentication tokens and preference settings

2. How We Use Your Information

Service Provision

• AI Response Generation: Creating personalized responses to customer reviews
• Review Monitoring: Tracking new reviews across platforms in real-time
• Analytics and Insights: Generating reputation reports and business intelligence
• Account Management: Maintaining your account and subscription services

Communication

• Service Updates: Notifications about new features and system changes
• Support Services: Responding to questions and technical issues
• Marketing Communications: Product updates and educational content (with consent)
• Legal Notices: Important policy changes and compliance requirements

Improvement and Development

• AI Training: Improving response quality and accuracy (anonymized data only)
• Feature Development: Building new tools based on usage patterns
• Performance Optimization: Enhancing platform speed and reliability
• Security Enhancement: Detecting and preventing fraudulent activity

3. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We only share information in the limited circumstances described below.

Service Providers

• Cloud Infrastructure: Secure hosting and data storage providers
• Payment Processors: Stripe and other secure payment platforms
• Communication Tools: Email and customer support platforms
• Analytics Services: Performance monitoring and error tracking

Platform Integration

• Google APIs: Accessing Google My Business data with your authorization
• Review Platforms: Retrieving reviews from authorized sources
• AI Services: Processing data through secure AI providers

Legal Requirements

• Compliance: When required by law or valid legal process
• Safety: To protect rights, property, or safety of users
• Fraud Prevention: Detecting and preventing illegal activities

4. Data Security and Protection

Technical Safeguards

• Encryption: All data encrypted in transit using TLS 1.3 and at rest using AES-256
• Access Controls: Multi-factor authentication and role-based permissions
• Network Security: Firewalls, intrusion detection, and DDoS protection
• Regular Audits: Third-party security assessments and penetration testing

Operational Security

• Employee Training: Regular security awareness and privacy training
• Background Checks: Thorough vetting of personnel with data access
• Incident Response: 24/7 monitoring and rapid response procedures
• Data Backup: Secure, encrypted backups with disaster recovery plans

Compliance Standards

• SOC 2 Type II: Comprehensive security and availability controls
• GDPR Compliance: European data protection standards
• CCPA Compliance: California consumer privacy protections
• Industry Standards: Following security best practices and frameworks

5. Your Rights and Choices

Data Subject Rights

• Access: Request a copy of all personal data we hold about you
• Correction: Update or correct inaccurate personal information
• Deletion: Request deletion of your personal data (subject to legal requirements)
• Portability: Receive your data in a structured, machine-readable format
• Restriction: Limit how we process your personal information
• Objection: Object to processing based on legitimate interests

Communication Preferences

• Marketing Emails: Unsubscribe from promotional communications
• Notifications: Control service-related alerts and updates
• Data Processing: Opt-out of certain data uses (where applicable)

Account Management

• Account Deletion: Permanently delete your account and associated data
• Data Export: Download your business data and review history
• Privacy Settings: Control data sharing and processing preferences

6. Data Retention

Retention Periods

• Account Data: Retained while your account is active plus 30 days after closure
• Review Data: Kept for 3 years to maintain historical analytics and trends
• Payment Records: Stored for 7 years for tax and accounting purposes
• Support Communications: Maintained for 2 years for quality assurance
• Log Data: Automatically deleted after 90 days unless required for security

Deletion Procedures

When data reaches the end of its retention period, it is securely deleted using industry-standard methods. Personal identifiers are removed from analytics data, and all backups are purged according to our data lifecycle policies.

7. Cookies and Tracking Technologies

Types of Cookies

• Essential Cookies: Required for basic platform functionality and security
• Performance Cookies: Help us understand how users interact with our service
• Functional Cookies: Remember your preferences and personalization settings
• Marketing Cookies: Used to deliver relevant advertising (with consent)

Third-Party Tracking

• Analytics: Google Analytics for usage statistics (anonymized)
• Customer Support: Intercom for chat functionality
• Marketing: HubSpot for customer relationship management

Managing Cookies

You can control cookies through your browser settings or our cookie preference center. Note that disabling essential cookies may affect platform functionality.

8. International Data Transfers

Our services are primarily hosted in the United States, but we may transfer data internationally to provide our global service. All international transfers are protected by appropriate safeguards.

Transfer Mechanisms

• Adequacy Decisions: Transfers to countries with adequate data protection
• Standard Contractual Clauses: EU-approved contract terms for data protection
• Binding Corporate Rules: Internal policies ensuring consistent protection
• Certification Programs: Privacy Shield successors and equivalent frameworks

9. Children's Privacy

Our service is not intended for children under 16 years of age. We do not knowingly collect personal information from children. If we discover that we have collected information from a child under 16, we will delete it immediately.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately so we can take appropriate action.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. Material changes will be communicated through:

• Email Notification: Sent to your registered email address
• Platform Notifications: Displayed when you log into your account
• Website Updates: Posted prominently on our website

Continued use of our service after changes become effective constitutes acceptance of the updated Privacy Policy.

11. Contact Information