HiProSEO

Legal

Privacy Policy

Last updated: May 24, 2026

This is template legal language. Have an attorney review it before relying on it for your jurisdiction (including GDPR and CCPA obligations specific to your data flows).

This Privacy Policy explains how Main Edge, LLC ("we", "us") collects, uses, and shares personal information in connection with the HiProSEO service ("Service"). It applies to customers, prospects, and visitors of hiproseo.com.

1. Information we collect

  • Account info: email address, organization name, authentication identifier (Replit Auth subject ID), and billing address.
  • Site & audit data: the domains, URLs, audit results, schema proposals, and other content you submit to or generate through the Service.
  • Snippet telemetry: when our optional tag.hiproseo.com snippet is installed on your site, we collect anonymized page-view, performance, and audit-trigger events. We do not set tracking cookies on your visitors and we do not collect personally identifiable information about them.
  • Google Search Console tokens: if you connect GSC for rank tracking, we store the OAuth refresh token encrypted at rest (AES-256-GCM) and the granted scope. We never request scopes beyond Search Console read-only.
  • Payment metadata: Stripe handles your card details directly; we store only the Stripe customer ID, subscription state, and invoice metadata.
  • Server logs: standard request logs (IP, user agent, path) retained for up to 30 days for debugging and abuse prevention.

2. Why we collect it

  • To provide and operate the Service (audits, schema, rank tracking).
  • To bill you and prevent payment fraud.
  • To respond to support requests.
  • To detect, investigate, and prevent security incidents and abuse.
  • To comply with our legal obligations.

We do not use Customer Data to train machine-learning models, and we do not sell personal information.

3. Sub-processors

We share data with the following sub-processors strictly to provide the Service:

  • Stripe, Inc. — payment processing.
  • PayPal Holdings, Inc. — alternative payment method (when enabled).
  • Google LLC — Search Console API for rank data (only with your explicit OAuth consent).
  • Replit, Inc. — hosting infrastructure and authentication.
  • Our Postgres host — primary database (US region).

4. Data location

All Customer Data is stored in United States data centers and encrypted at rest. Some sub-processors (e.g., Stripe, Google) may process data in other regions per their own policies.

5. Data retention

  • Audit results: 24 months rolling.
  • Rank snapshots: indefinitely, unless you delete the keyword or site.
  • Account data after cancellation: 90 days, then permanently deleted.
  • Server logs: 30 days.
  • Billing records: retained as required by applicable tax law (typically 7 years).

6. Your rights

Subject to applicable law, you have the right to access, correct, export, or delete your personal information; to object to or restrict certain processing; and to withdraw consent where we rely on it. To exercise any of these rights, email support@hiproseo.com. We respond within 30 days.

California residents (CCPA): You also have the right to know what categories of personal information we collect, to request deletion, and to opt out of sale or sharing — we do not sell or share personal information.

EU/UK residents (GDPR): Our legal basis for processing is performance of the contract with you, our legitimate interest in operating and securing the Service, and, where applicable, your consent. You have the right to lodge a complaint with your local supervisory authority.

7. Cookies

We use a small number of functional cookies (authenticated session, theme preference, CSRF protection). We do not use advertising or analytics cookies on hiproseo.com or in the tag.hiproseo.com snippet.

8. Security

We use industry-standard practices including TLS for data in transit, AES-256 encryption at rest for sensitive credentials, and principle-of-least-privilege access controls. No system is perfectly secure; if we become aware of a breach affecting your data, we will notify you without undue delay and in accordance with applicable law.

9. Children

The Service is not intended for children under 16, and we do not knowingly collect personal information from them.

10. Changes

We may update this Privacy Policy from time to time. Material changes will be announced by email or in-app at least 14 days before they take effect.

11. Contact

Privacy questions or requests: support@hiproseo.com
Main Edge, LLC, 160 N Morgan Rd, Mustang, OK 73064, USA