Privacy Policy

Last Updated: December 10, 2025

1. Introduction

Welcome to Search Goblin ("we," "us," "our"). We are committed to protecting your privacy and handling your data in an open and transparent manner. This Privacy Policy explains how we collect, use, process, and safeguard your information when you use our web application (the "Service").

By using the Service, you agree to the collection and use of information in accordance with this policy. If you have any questions, please contact us at privacy@searchgoblin.com.

2. Information We Collect

We collect various types of information to provide and improve our Service to you.

2.1. Personal Data

While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you ("Personal Data"). This includes:

  • Email Address: Used for account creation, authentication, and service-related communications.
  • Company Name: An optional field for business users to identify their organization.

2.2. Service Data

To provide our core functionality, we access data from third-party services you connect to your account. This data is handled securely and is essential for the Service to operate.

  • Google Search Console Data: We access search performance data, including property URLs, queries, clicks, impressions, and device types. This data is fetched via the Google Search Console API and is used to power our analytics dashboards.
  • Google Ads Data: We access account information, keyword data, and campaign performance metrics from your linked Google Ads accounts. This is used for keyword research and performance analysis.
  • Third-Party API Keys: We securely store encrypted API keys you provide for various AI providers (e.g., OpenAI, Google AI, Anthropic). These keys are used to perform analysis as requested by you.

2.3. Usage Data

We collect information on how the Service is accessed and used ("Usage Data"). This data helps us understand user behavior, improve our features, and manage service limits.

  • Feature Usage: We track your usage of specific features, such as AI optimizations, chat queries, and data exports, for billing and subscription management.
  • Chat and AI Interactions: We store chat messages, conversation history, and the results of AI-generated summaries for your convenience and to provide a continuous user experience. This data is not used to train or improve any AI models.
  • Access Logs: We log technical information about your connection, including your IP address, browser type, device information, and the pages you visit. This is used for security, debugging, and analytics.

2.4. Cookies and Tracking Data

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. For more details, see Section 6: "Cookies and Tracking Technologies."

3. How We Use Your Information

We use the collected data for various purposes, grounded in legitimate business needs and with your consent where required.

  • To Provide and Maintain Our Service: We use your Service Data to deliver our core features, such as displaying search analytics and generating AI-driven insights.
  • To Manage Your Account: We use your Personal Data to manage your account, subscription, and to enforce usage limits based on your plan.
  • To Improve Our Service: We analyze Usage Data to understand what features are most popular, to identify areas for improvement, and to enhance the user experience.
  • For Security and Fraud Prevention: We use access logs and technical information to monitor for suspicious activity, prevent abuse, and protect the integrity of our Service.
  • To Communicate With You: We may use your email address to send you important service updates, notifications about your account, and information about new features (you can opt out of promotional communications).

5. Data Sharing and Third-Party Disclosures

We do not sell your Personal Data. We only share your information with third-party service providers under the following circumstances:

5.1. AI Service Providers

We send anonymized data to our AI partners (e.g., OpenAI, Google AI, Anthropic, Ollama) to generate insights. This data is processed according to their respective privacy policies and does not include personally identifiable information.

5.2. Google APIs

Our application's use of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Data from Google Search Console and Google Ads is accessed solely to provide the features visible in the application's user interface.

5.3. Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).

6. Cookies and Tracking Technologies

We use cookies and similar technologies to operate and personalize the Service.

  • Essential Cookies: These are necessary for the Service to function, including for authentication (session cookies) and security (CSRF cookies).
  • Preference Cookies: We use these to remember your settings and preferences, such as your selected Search Console property.

We do not use third-party advertising cookies or tracking pixels. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

7. Data Security

The security of your data is a top priority. We implement a range of technical and organizational measures to protect it, including:

  • Encryption: API keys and other sensitive data are encrypted at rest. All data transmission is encrypted in transit using TLS 1.3.
  • Access Control: We enforce strict access controls to ensure that your data is only accessible to authorized personnel and systems.
  • Secure Authentication: We use OAuth 2.0 for secure, token-based authentication with Google services.
  • Regular Security Audits: We conduct periodic reviews of our security practices to identify and mitigate risks.

8. Data Retention

We retain your data only for as long as necessary to fulfill the purposes for which it was collected.

  • Account Data: Retained for as long as your account is active. If you delete your account, your Personal Data will be deleted within 30 days.
  • Service Data: Search Console and Google Ads data is regularly refreshed and old data is purged. Cached data is retained for short periods to improve performance.
  • Usage and Log Data: Anonymized usage data may be retained for up to 12 months for analytics. Security logs are retained for up to 6 months.

9. Your Data Protection Rights

Depending on your location, you may have the following rights regarding your data:

  • The right to access, update, or delete the information we have on you.
  • The right of rectification.
  • The right to object to our processing of your Personal Data.
  • The right of restriction.
  • The right to data portability.
  • The right to withdraw consent at any time.

To exercise these rights, please contact us at privacy@searchgoblin.com.

10. California Consumer Privacy Act (CCPA/CPRA) Disclosures

If you are a resident of California, you are entitled to additional disclosures and rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).

10.1. Categories of Personal Information Collected

In the preceding 12 months we have collected the following categories of personal information:

  • Identifiers: Name, email address, account identifiers, device identifiers.
  • Commercial Information: Subscription history, product usage history.
  • Internet Activity: Analytics relating to dashboard usage and feature interactions.
  • Professional Information: Company name, role, and connected Google property metadata.

10.2. Your CCPA Rights

  • Right to Know: Request disclosures about the categories and specific pieces of personal information we collect.
  • Right to Delete: Request deletion of personal information, subject to legal exceptions.
  • Right to Opt Out: Direct us not to sell or share your personal information for cross-context behavioral advertising.
  • Right to Limit: Restrict the use of sensitive personal information for secondary purposes.
  • Right to Non-Discrimination: Receive equal service and pricing even after exercising your privacy rights.
  • Right to Use an Authorized Agent: Submit a request through an authorized agent with written permission.

10.3. How to Exercise Your CCPA Rights

You can exercise your CCPA rights by visiting the Do Not Sell or Share page, submitting a request from your account settings, or contacting us at privacy@searchgoblin.com. We will verify your request using the information associated with your account.

11. International Data Transfers

Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.

12. Children's Privacy

Our Service does not address anyone under the age of 18 ("Children"). We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Child has provided us with Personal Data, please contact us.

13. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For significant changes, we will also notify you via email.

14. Contact Us

If you have any questions about this Privacy Policy, please contact us: