GrowLytics is committed to protecting your privacy. We collect only what we need, we don't sell your data, and we don't use it for advertising.
When you create an account, we collect your email address, name (optional), and a hashed password. We never store plain-text passwords.
We collect data about how you use GrowLytics — URLs you submit, audit jobs you run, SEO reports generated, and credits used. This data is associated with your account.
When you connect GSC, we store your OAuth access token and refresh token. These are used exclusively to submit URLs via the Google Indexing API and run URL inspections on your behalf. We never access your GSC data for any other purpose.
We collect standard web server logs including IP addresses, browser type, and page visits. This data is used for security monitoring and retained for 30 days.
We do NOT use your data for advertising. We do NOT sell your data to third parties. We do NOT use your URLs or site data for any purpose other than performing the service you requested.
Your account data is retained as long as your account is active. URL job history and SEO reports are retained for 2 years. You can delete your account at any time from Settings, which will permanently delete all associated data within 30 days.
GrowLytics uses HTTPS/TLS encryption for all data in transit, encrypted storage for sensitive tokens, regular security updates, and restricted access to production systems.
GrowLytics communicates with: Google Search Console API (indexing + inspection), Bing Webmaster Tools / IndexNow (Bing/Yandex notifications), and various crawler ping services.
We use essential cookies only: session authentication cookies and CSRF protection tokens. We do not use advertising or tracking cookies.
You have the right to access, correct, or delete your personal data. You can export your data from Settings. To request deletion or a data export, contact us at privacy@grow-lytics.com.
For privacy questions: privacy@grow-lytics.com