Privacy Policy | GeoLens

1. What We Collect

GeoLens is a single-page AI visibility audit tool operated by Polsia Inc. ("Polsia", "we", "us"). When you use GeoLens, we collect the following:

URL submitted for audit — The website address you enter for analysis. This is processed to generate your GEO score and is stored as part of your audit record.
Audit results — GEO scores, platform breakdowns, and issue analysis generated from the submitted URL.
Email address — Collected only when you purchase a full report (€19 one-time). Used to deliver your report and any related communications.
Payment information — Processed entirely by Stripe. GeoLens does not store your card number, bank account, or full credit card details.
Browser data — Basic analytics (page visits, session data) collected via our own analytics system. No personally identifiable browsing history is stored.

We do not collect passwords, government IDs, health data, or any other special-category personal data.

2. How We Use Your Data

Your data is used for three purposes only:

Audit processing — The submitted URL is analysed by AI models (via OpenAI-compatible API) to generate GEO scores. The URL and results are stored to allow report retrieval.
Report delivery — If you purchase a full report, your email address is used to deliver the report PDF and a download link. We may also send one follow-up email with tips for improving your GEO score.
Service improvement — Aggregated, anonymised audit data (e.g., average GEO scores by industry) may be used to improve GeoLens. This data cannot be linked back to individual users or submitted URLs.

We will never sell your email address, use your submitted URLs for training AI models, or serve third-party advertising based on your data.

3. Data Retention

                Audit data (URL + results) is retained for 12 months from the date of the audit. After 12 months, the URL and associated results are permanently deleted from our systems.
            

Email addresses from report purchasers are retained until you request deletion or until 24 months after your last interaction with GeoLens, whichever comes first.

Payment records are retained for the minimum period required by EU financial regulations (7 years for tax/accounting purposes) — even if you request deletion of your audit data.

4. Third-Party Services

GeoLens uses the following third-party services:

Stripe — Payment processing. When you purchase a full report for €19, you are redirected to Stripe's secure checkout. Stripe's Privacy Policy applies to all payment data. GeoLens receives only your email address and a transaction confirmation from Stripe.
AI Analysis Providers — URLs are analysed using AI models via an OpenAI-compatible API. Data sent to these providers is used solely for the purpose of generating your audit results and is not used to train their models.
Polsia Platform — GeoLens is hosted on the Polsia infrastructure. The Polsia Privacy Policy governs data stored on their platform.

5. Data Security

We take data security seriously:

All data is transmitted over TLS 1.2 or higher encryption.
Database credentials are stored in environment variables, never in code.
OAuth tokens (e.g., API keys for AI providers) are encrypted at rest using AES-256-GCM.
Access to production systems is restricted to authorised Polsia personnel.

No security system is impenetrable. If you become aware of a potential data breach, please contact us immediately at privacy@polsia.app.

6. Your Rights (GDPR & CCPA)

Because GeoLens serves businesses globally, including in the EU, we honour the following rights for all users regardless of location:

Right of access — Request a copy of all data GeoLens holds about you (audit records, email address).
Right to rectification — Request correction of any inaccurate personal data.
Right to erasure — Request deletion of your audit data and email address (subject to the payment records exception above).
Right to restrict processing — Request that we limit how we use your data while a dispute is resolved.
Right to data portability — Receive your data in a machine-readable format (JSON).
Right to object — Object to our use of your data for service improvement (aggregated analytics).
Right to lodge a complaint — If you believe your rights have been violated, you have the right to lodge a complaint with your local data protection authority.

To exercise any of these rights, email privacy@polsia.app. We will respond within 30 days.

7. Cookies

GeoLens uses minimal cookies for the following purposes:

Analytics session — A single anonymous session token to track page visits in aggregate. This does not identify you personally.
Report access — A short-lived cookie to maintain access to your report page during an active session. It is deleted when you close your browser.

See our Cookie Policy for full details on how we use cookies and how to manage your preferences.

8. Changes to This Policy

If we make material changes to this Privacy Policy — such as adding new data collection, changing third-party providers, or altering your rights — we will update the effective date at the top of this page and, where required by applicable law, notify you by email if you have provided an email address.

Continued use of GeoLens after any change constitutes acceptance of the updated policy.

9. Contact

For any privacy-related questions, data access requests, or breach notifications:

Email: privacy@polsia.app

Operator: Polsia Inc., incorporated in Ireland

We aim to respond to all privacy requests within 30 days.

Privacy Policy for GeoLens