GEO-friendly logoGEO-friendly
Run free audit

// Privacy Policy

Privacy Policy

Last updated: 6 May 2026

1. Who is the data controller?

GEO-friendly is a sole-trader business trading as GEO Compass, established in England, United Kingdom. For the purposes of UK GDPR and the Data Protection Act 2018, we are the "data controller" for personal data collected through this site.

Contact: contact@geo-friendly.com · Address: Dover Road, Gravesend, Kent, DA11 9PJ, United Kingdom.

2. What we collect and why

  • Email address – when you join the waitlist or buy the course. Used to send launch updates and product communications. Lawful basis: consent (waitlist) and contract (course).
  • URLs you submit to the audit – we fetch and analyse the page. We may store the URL and the resulting audit report to improve the service. Lawful basis: legitimate interest in operating and improving the audit tool.
  • Technical data – IP address, browser type, pages visited, referrer. Used for security, debugging and basic analytics. Lawful basis: legitimate interest.
  • Payment data – if you buy the course, our payment provider processes your payment details. We never see or store your full card details.

3. How long we keep it

Waitlist emails: until you unsubscribe or we close the waitlist. Audit data: typically up to 24 months. Customer records: up to 7 years (UK tax record-keeping requirement). Server logs: typically up to 90 days.

4. Who we share it with

We use a small number of trusted processors to operate the Services. They process data on our instructions only:

  • Hosting and database – our website, database and serverless functions are hosted on infrastructure provided by Lovable Cloud (Supabase) and Cloudflare.
  • AI processing – the audit may use AI services (such as Google Gemini or OpenAI) to analyse pages you submit. We do not send your email address to these services.
  • Payments – when paid products launch, payments will be processed by Stripe and/or Paddle. They have their own privacy policies.
  • Email delivery – transactional and marketing emails are sent via an email service provider.

Some of these providers are based outside the UK/EEA. Where that is the case, transfers are protected by appropriate safeguards such as Standard Contractual Clauses or the UK International Data Transfer Addendum.

5. Cookies

We use only essential cookies required for the site to function (such as session and security cookies). If we add analytics or marketing cookies later, we will ask for your consent first via a cookie banner.

6. Your rights

Under UK GDPR you have the right to: access your personal data; correct it; erase it; restrict or object to processing; portability; and withdraw consent at any time. To exercise any of these rights, email contact@geo-friendly.com.

You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

7. Security

We use industry-standard measures to protect personal data: encryption in transit (HTTPS), access controls on our database, and least-privilege principles for who can access what. No system is perfectly secure, and we cannot guarantee absolute security.

8. Children

The Services are not intended for children under 16. We do not knowingly collect personal data from children.

9. Changes

We may update this policy. The "Last updated" date above shows the latest revision. Material changes will be communicated by email where appropriate.

10. Contact

Questions about your data? Email contact@geo-friendly.com.