georank

Privacy Policy

Last updated: April 21, 2026

1. Who we are

Georank(“we,” “us,” or “our”) operates the GEO audit tool available at this domain. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and your rights in relation to it. If you have questions, contact us at support@georank.io.

2. What we collect and why

We collect the following categories of data:

  • Account information. When you register, we collect your email address and an authentication token managed by Supabase. This is used to identify your account and secure your access.
  • URLs you submit. We store the URLs you ask us to audit, together with the fetched content and the resulting scores and fixes. This data is necessary to provide the Service and to let you retrieve past audit results.
  • Payment information. Credit purchases are handled by Stripe. We do not store your payment card details. We receive a payment confirmation event and record the credit balance change.
  • Analytics events. We may log basic usage events (pages visited, audit actions taken) to understand how the Service is used and to improve it. These events are associated with your account or an anonymous session identifier.
  • Cookies. We use session cookies required for authentication (set by Supabase SSR). We do not use third-party advertising cookies. You can configure your browser to reject cookies, but doing so will prevent you from logging in.

3. Third-party services

We share data with the following third parties as necessary to operate the Service:

  • Supabase— database, authentication, and storage. Data is stored in Supabase's EU region.
  • Stripe— payment processing. Stripe's privacy policy applies to information you provide during checkout.
  • Upstash QStash — background job queue used to dispatch audit tasks. URLs submitted for auditing are passed through this queue.
  • Anthropic— AI model API used to generate written fix suggestions. Page content extracted from submitted URLs is sent to Anthropic's API. Anthropic's data processing terms apply.
  • Fly.io — application hosting for the audit worker. Submitted URL content is processed on Fly.io infrastructure.
  • Vercel — hosting for the web application front end.
  • Cloudflare Turnstile — bot protection on forms. Cloudflare may receive anonymized browser signals to assess challenge responses.

We do not sell your personal data to any third party.

4. Data retention

We retain your account data and audit records for as long as your account is active. If you delete your account, we will remove your personal data within a reasonable period, subject to any legal retention obligations. Anonymized, aggregated data derived from audits may be retained indefinitely.

5. Your rights

Depending on your location, you may have the right to access, correct, export, or delete the personal data we hold about you. To exercise any of these rights, email us at support@georank.io. We will respond within 30 days. If you are located in the EU, you also have the right to lodge a complaint with your local supervisory authority.

6. Security

We apply reasonable technical and organizational measures to protect the data we hold, including encrypted connections (HTTPS), Row Level Security on our database, and access controls on production systems. No system is completely secure. If you believe your data has been compromised, contact us immediately.

7. Children

The Service is not directed to children under 13. We do not knowingly collect personal data from anyone under 13. If we become aware that we have collected data from a child under 13, we will delete it promptly.

8. International transfers

Your data is primarily stored on Supabase infrastructure located in the European Union. Where we transfer data outside the EU (for example, to Anthropic's API or Upstash), we rely on appropriate safeguards, including standard contractual clauses or transfers to countries with adequacy decisions.

9. Changes to this policy

We may update this Privacy Policy from time to time. We will post the revised policy with an updated effective date. For material changes, we will make reasonable efforts to notify you before they take effect.

10. Contact

Privacy questions or requests: support@georank.io.

11. For users in the European Economic Area (EEA)

Georank is operated from the United States, but our primary data store is located in the Supabase EU region (eu-west-1). This section describes how we handle your data under the GDPR.

Sub-processors

We share data with the following sub-processors to operate the service:

  • Anthropic (Claude API) — AI scoring
  • Stripe — billing and payments
  • Resend — transactional email
  • Vercel — hosting
  • Upstash — job queue
  • Fly.io — worker execution
  • PostHog — product analytics (if enabled)

Your rights

You have the right to access, rectify, erase, restrict processing of, and receive a portable copy of your personal data. You may withdraw consent at any time. To exercise these rights, contact support@georank.io. If you believe your rights have been violated, you may lodge a complaint with your local supervisory authority.

Retention

  • Account data: kept until you request deletion
  • Audit result cache: 90 days
  • Billing records: 7 years (tax compliance)

Data Protection Officer

For GDPR-specific inquiries, contact our support team at support@georank.io. We will respond within 30 days.

georank

GEO audit tooling that tells you exactly how AI search engines see your site — and what to fix.

Product

Company

Legal

© 2026 Georank, Inc. All rights reserved.

Zero-variance GEO scoring