Privacy Policy

March 7, 2026

⚠ This document is governed by French law and EU data protection regulations (GDPR). The French version is the authoritative reference — in the event of any discrepancy, the French version shall prevail.

This privacy policy describes how SEO VIZ SASU, publisher of the IndexProbe service, collects, uses and protects your personal data, in accordance with the General Data Protection Regulation (GDPR) and the French Data Protection Act (Loi Informatique et Libertés).

1. Data controller

Company: SEO VIZ (SASU)
Address: 1 chemin de Valentine, 15300 Ségur-Les-Villas, FRANCE
SIREN: 920 823 234
Contact: Nous contacter

2. Data collected

We collect the following data:

Identification data: email address, display name (provided via your Google account during OAuth authentication).
Google Search Console data: URLs of your properties, indexing statuses, crawl data and exclusion reasons obtained via the official Google Search Console API, with your explicit consent.
Payment data: your bank details are processed directly and exclusively by Stripe. IndexProbe stores no bank card data.
Usage data: login logs, analysis history, account preferences.

3. Purposes and legal bases for processing

Purpose	Legal basis
Account creation and management	Contract performance
Provision of URL inspection service	Contract performance
Payment processing and subscription management	Contract performance
Sending transactional communications (invoices, alerts)	Contract performance
Service improvement and internal analytics	Legitimate interest
Sending commercial communications (newsletters)	Consent
Compliance with legal and accounting obligations	Legal obligation

4. Sub-processors and recipients

Your data may be shared with the following providers, strictly limited to what is necessary for their services:

Supabase Inc. (database and authentication) — supabase.com/privacy
Stripe, Inc. (online payment) — stripe.com/privacy
Vercel Inc. (hosting) — vercel.com/legal/privacy-policy
Google LLC (OAuth authentication and Search Console API) — policies.google.com/privacy

5. Transfers outside the European Union

Some of our providers (Vercel, Stripe, Google, Supabase) may process your data in the United States. These transfers are covered by appropriate safeguards (European Commission standard contractual clauses or adherence to the EU-US Data Privacy Framework).

6. Retention periods

Account data: retained for the duration of your subscription, then deleted within 3 years after the last login.
Analysis data: retained for the duration of your active subscription.
Billing data: retained for 10 years in accordance with French accounting and tax obligations.
Login logs: retained for 12 months.

7. Your rights

Under the GDPR, you have the following rights over your personal data:

Right of access (art. 15 GDPR)
Right of rectification (art. 16 GDPR)
Right to erasure (art. 17 GDPR)
Right to restriction of processing (art. 18 GDPR)
Right to data portability (art. 20 GDPR)
Right to object (art. 21 GDPR)
Right to withdraw consent at any time (without affecting the lawfulness of prior processing)

To exercise these rights, contact us at Nous contacter. You may also lodge a complaint with the CNIL (French data protection authority) at cnil.fr, or with the supervisory authority in your country of residence.

8. Security

We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss or destruction: encryption in transit (HTTPS/TLS), encryption at rest, role-based access control, strong authentication via OAuth 2.0.

9. Policy updates

This policy may be updated at any time. In the event of a material change, we will notify you by email or via an in-app notification. The date of the last update is shown at the top of this page.