Legal

Privacy Policy

Last updated: January 2025

This Privacy Policy explains how KeywordIQ ("we", "our", "us") collects, uses, and shares information when you use our lead discovery and qualification platform. We are based in the UK/EEA and aim to keep this policy clear and concise.

1. What data we collect

  • Account data: email address, password hash, optional avatar, plan/subscription status.
  • Billing data: payments are processed by Stripe; we do not store full card numbers.
  • Prospect data: business URLs, domains, names, contact names, emails, and phone numbers found on public websites/directories during discovery.
  • User-generated content: lists, tags, notes, and outreach draft text you create.
  • Usage data: logs, analytics, feature usage counts, and diagnostic data.
  • Cookies: session cookies and preference cookies (e.g., dark mode).

2. How we collect data

  • Information you provide directly (account setup, lists, notes).
  • Automated collection when you run discovery, scraping, qualification, or exports.
  • Cookies and similar technologies for sessions and preferences.
  • Analytics tools (we may use these in the future to improve the product).

3. Why we process data

  • Provide and improve KeywordIQ features (discovery, qualification, exports, drafts).
  • Generate assist-only outreach drafts (you send from your own inbox; we do not send emails on your behalf).
  • Maintain account access, security, and fraud prevention.
  • Billing and subscription management.
  • Customer support and troubleshooting.

4. Legal bases (UK/EEA)

  • Contract: to provide the service you sign up for.
  • Legitimate interests: to secure, operate, and improve the product.
  • Consent: where required (e.g., marketing emails from us).

5. Sharing and third parties

We share data only as needed to operate the service:

  • Service providers: hosting, databases, logging, and analytics.
  • Google APIs: Custom Search (and OAuth if enabled later).
  • Stripe: billing and subscription payments.
  • Integrations: Google Sheets or Airtable if you connect them (future).
  • Scraping infrastructure: browsers/proxies used to fetch public web pages.

6. Data retention

  • Account data is retained while your account is active.
  • Prospect data remains until you delete it or close your account.
  • Logs and analytics are retained for a limited period for security and debugging.

7. Security

  • Password hashes are stored using strong one-way hashing.
  • Sensitive tokens are encrypted at rest where applicable.
  • Access to production systems is restricted and monitored.

8. Your rights

Depending on your location, you may have rights to access, correct, delete, or export your data. To request this, contact us using the details below.

9. International transfers

Our providers may store or process data outside the UK/EEA. Where required, we rely on appropriate safeguards such as standard contractual clauses.

10. Children

KeywordIQ is not intended for anyone under 18.

11. Contact

Email: support@keywordiq.co.uk
Address: [Company Address Placeholder]

12. Changes to this policy

We may update this policy from time to time. We will post the new version here and update the "Last updated" date.