GEO Tool

Legal · § 01

Privacy policy

Last updated — 2 July 2026

GEO Tool is operated by AIVEYO(“we”, “us”). We are based in the United Kingdom and serve customers worldwide. This policy explains what personal data we collect, why, who we share it with, and the rights you have over it. It applies to geotool.aiveyo.com and every service we provide through it.

The short version: we collect the minimum we need to run audits, accounts and billing; we never sell personal data; the free anonymous audit publishes its results at a shareable link but never your identity; and you can reach us about any of it at hello@aiveyo.com.

1. Who is responsible for your data

AIVEYO is the data controller for the personal data described in this policy. Contact: hello@aiveyo.com. If you are in the UK you can also complain to the Information Commissioner’s Office (ico.org.uk); if you are in the EU/EEA, to your local supervisory authority.

2. What we collect, and why

Free audits (no account)

Email capture on results pages

Accounts

Billing

Operations

3. The AI engines we query on your behalf

The product’s job is to ask AI engines how visible a site is. To do that we send the public content of audited pages and the questions we generate about them to one or more of: OpenAI (ChatGPT), Anthropic (Claude), Google (Gemini) and Perplexity. We send the page and brand being audited — we do not send your account email, name or billing details to these providers. Their handling of API data is governed by their respective enterprise API terms, which exclude training on API inputs by default.

4. Who else we share data with (subprocessors)

ProviderPurposeData involved
ClerkAuthenticationName, email, profile image, sign-in metadata
StripePayments & invoicingEmail, billing details, payment method (held by Stripe)
ResendSending emailEmail address, message content
SentryError monitoringTechnical error context
OpenAI / Anthropic / Google / PerplexityRunning visibility checksAudited page content and generated questions
Our hosting infrastructureRunning the application and databaseAll of the above at rest, encrypted in transit

We do not sell personal data, and we do not share it with advertisers or data brokers. Some providers process data outside the UK/EEA (principally in the United States); where they do, transfers rely on the UK International Data Transfer Agreement / EU Standard Contractual Clauses and each provider’s data processing agreement.

5. How long we keep things

6. Your rights

Wherever you are, we extend the same rights: access to your data, a copy of it in a portable format, correction, deletion, restriction of or objection to processing, and withdrawal of consent (for example, unsubscribing). UK/EU residents have these rights under the UK GDPR and GDPR; California residents have equivalent rights under the CCPA/CPRA — including the right to know, delete, and opt out of sale (we do not sell data).

You can delete your account and its data from Settings, or email hello@aiveyo.com for any request. We respond within one month.

7. Security

All traffic is encrypted in transit (TLS, with HSTS). Authentication is delegated to Clerk; payment data to Stripe. Access to production data is limited to those who operate the service. Webhooks are signature-verified, tenant data is isolated per workspace, and sensitive administrative actions are audit-logged. If we ever suffer a breach that puts you at risk, we will notify you and the relevant authority as the law requires.

8. Cookies

We use only strictly-necessary and preference cookies — no advertising or cross-site tracking. The full list lives in the cookie policy.

9. Children

The service is for businesses and is not directed at children under 16. We do not knowingly collect their data.

10. Changes to this policy

When we change this policy we update the date at the top; for material changes affecting account holders we will also email you. Questions, requests, complaints: hello@aiveyo.com.