GEOnative.ai
DESign inStart free

Privacy (GDPR)

Who gets your data — and why.

This page is an overview. The full legally-binding privacy policy is shown inside the app — mandatory before every purchase and on every login. Here, in plain text, is what you should know.

What we process

  • Account data: email, name, avatar (via Clerk).
  • Brand data: domain, industry, competitors, prompts (entered by you).
  • Measurement data: AI-engine responses to your prompts (fetched by us).
  • Usage data: which features you use, in aggregated form.

Why we process it

  • Contract fulfilment — the platform only works with the data you enter.
  • Legitimate interest — telemetry for product improvement (anonymised).
  • Legal obligation — tax / accounting retention of invoice data.

Where the data lives

  • Servers in Germany (Hetzner, Frankfurt).
  • Backups in EU regions.
  • Sub-processors: Clerk (auth, US provider with GDPR-compliant SCCs), Stripe (billing, US provider with SCCs), OpenAI/Anthropic (AI-engine calls, US providers with SCCs).

Your rights

  • Access: what we store about you (privacy@geonative.ai).
  • Correction: have inaccurate data corrected.
  • Deletion: delete the entire account incl. all data (self-serve in the app).
  • Portability: export your data as CSV / JSON.
  • Objection / complaint: with the competent supervisory authority.

Data Processing Agreement (DPA)

  • On request we provide a DPA under Art. 28 GDPR. Standard template or your own version.
  • Request via: legal@geonative.ai

Cookies

  • On the marketing site (geonative.ai): no tracking cookies, no analytics.
  • In the app (app.geonative.ai): only functional cookies (session, auth, preferences).
  • No advertising cookies. No cross-site tracking.

This overview is not a full privacy policy. The legally binding version is shown in the app.