If you have any questions about how your data is handled, email us at support@geotrakt.com and we will give you a straight answer.
Geotrakt is a software service that tracks how often a brand appears in AI-generated responses across AI engines including ChatGPT, Gemini, Perplexity, Claude, and Google AI Overviews. It is operated by Strix Technologies LLC, a US-based limited liability company.
When you sign up, we collect your email address, a name for your organization, and a password (stored as a secure hash — we never store your plain-text password). We use this to create your account, send you transactional emails, and identify your organization in our system.
Legal basis (GDPR): Contract performance — this data is necessary to provide the service.
When you subscribe to a paid plan, your payment is processed by Stripe. We store a Stripe customer ID and subscription status in our database. We do not store your card number, CVV, or full billing address — Stripe handles that directly and is PCI-DSS compliant. We retain billing history (plan type, payment amounts, dates) for accounting and legal compliance purposes.
Legal basis (GDPR): Contract performance and legal obligation.
You define a set of prompts — questions you want to track across AI engines. We store these prompts, the AI-generated responses we receive when running them, and derived metrics including brand mention rates, citation rates, and sentiment scores. This is the core data the service is built around.
Legal basis (GDPR): Contract performance — this data is the service.
We track how many prompts you run and how many tokens are consumed per billing period, for the purpose of enforcing plan limits. We do not use this data for profiling or advertising.
Legal basis (GDPR): Contract performance and legitimate interest.
When you arrive at Geotrakt via an advertisement or referral link, we record the traffic source using URL parameters (e.g. utm_source, utm_campaign, promo codes) at the time of signup. This tells us which channel a signup came from. It does not use cookies, does not link your account to your identity on LinkedIn or any other platform, and does not require your consent. It is retained in anonymised form after account deletion.
Legal basis (GDPR): Legitimate interest — understanding which channels drive signups is a standard and proportionate business analytics practice.
We track whether emails we send you are opened and whether links are clicked, via Resend. We use this data only to understand whether our emails are useful and to improve them. You can opt out by contacting support@geotrakt.com.
Legal basis (GDPR): Legitimate interest.
We send transactional emails: account welcome, weekly visibility digest, billing notifications, trial expiry reminders, and team invite emails. We do not send marketing emails unless you explicitly opt in. You can unsubscribe from non-essential emails at any time.
Legal basis (GDPR): Contract performance for transactional emails; consent for any marketing.
| Data type | Retention period |
|---|---|
| Account and organization data | Until account deletion |
| Prompt text | Until account deletion |
| AI response snippets | Until account deletion |
| Visibility scores and metrics | Until account deletion |
| Anonymised billing records | 7 years from transaction date (accounting requirement) |
| Anonymised conversion attribution | Indefinitely (traffic source, campaign ID, signup date, plan value — no PII) |
| Anonymised usage counts | Indefinitely as aggregate statistics |
| Erasure request records | 3 years (audit trail) |
Regardless of where you are located, we extend the following rights to all users:
You can request a copy of the personal data we hold about you at any time by emailing support@geotrakt.com. We will respond within 30 days.
You can update your name, email, and organization details in your account settings at any time.
You can deactivate your account at any time from account settings. Deactivation disables your account and stops all tracking jobs. Your data is preserved and your account can be reactivated. Billing stops on your next renewal date.
You can permanently delete your account from account settings. This is irreversible. We immediately delete your name, email, organization name, all prompt text, and all AI response snippets. We retain anonymised billing records (7 years, accounting requirement), anonymised conversion attribution data, and anonymised usage counts. We send you a final email listing exactly what was deleted and what was retained before deletion completes.
You can export your visibility data, prompt library, and results from your account dashboard at any time.
If you believe we are processing your data in a way you object to, contact us at support@geotrakt.com and we will respond within 30 days.
EU and UK residents — You have the rights described above under GDPR and UK GDPR respectively. If you are unsatisfied with our response, you have the right to lodge a complaint with your local Data Protection Authority.
California residents — Under CCPA, you have the right to know what personal information we collect, the right to delete it, and the right to opt out of sale. We do not sell personal information. To exercise your rights, contact support@geotrakt.com.
We will notify you by email within 72 hours of becoming aware of a data breach that affects your personal data, consistent with our obligations under GDPR.
If you sign up using a promo code or referral link, we record which code was used at signup. This is used to apply any associated discount and to understand which referral sources are effective. The code itself contains no personal information. If you delete your account, the code redemption is retained in anonymised form alongside other conversion attribution data as described above.
Geotrakt is a business-to-business service. We do not knowingly collect data from anyone under the age of 18. If you believe a minor has created an account, contact us at support@geotrakt.com and we will delete it promptly.
If we make material changes to this policy — changes that affect how we collect, use, or share your data — we will notify you by email at least 30 days before the changes take effect. We will not retroactively change how we handle data you have already provided without your explicit consent.
Minor changes (corrections, clarifications, adding a new processor for an existing purpose) will be reflected in the updated date at the top of this page without advance notice.
The current version of this policy is always available at geotrakt.com/privacy.
For any questions, data requests, or concerns about this policy:
Email: support@geotrakt.com
Company: Strix Technologies LLC
We aim to respond to all privacy-related inquiries within 5 business days.