Privacy Policy

GEOAEO.co ("GEOAEO", "we", "us", "our") operates the website at geoaeo.co and provides AI infrastructure services to businesses. This Privacy Policy explains how we handle personal information collected through our website, services, and communications.

By using our website or engaging our services, you agree to the practices described in this policy. If you do not agree, please do not use our site or services.

We collect information in two ways — information you give us directly, and information collected automatically when you use our site.

• Name and email address when you submit the free audit form or contact us
• Your company name, website URL, and business type for the diagnostic report
• Payment details processed securely via our payment provider (we never store card numbers)
• Any information you share in emails, calls, or project communications

• IP address and approximate location (country/city level)
• Browser type, device type, and operating system
• Pages visited, time on site, and referral source
• Cookie identifiers (see the Cookies section below)

We do not collect sensitive personal data such as health information, financial account details, government ID numbers, or biometric data.

We use the information we collect only for legitimate business purposes:

• To deliver the free AI audit diagnostic and any paid services you've engaged us for
• To communicate with you about your project, invoices, and deliverables
• To send you relevant updates about our services — you can unsubscribe at any time
• To improve our website and understand how visitors use it
• To prevent fraud and maintain the security of our systems
• To comply with legal obligations

We will never use your data to train AI models, sell to third parties, or share with advertisers.

We use a small number of cookies to make our website function properly and to understand how it is used.

Required for the site to work. These cannot be disabled. They include session management and security tokens.

Used to understand aggregate visitor behaviour — pages viewed, time on site. We use privacy-respecting analytics. No individual profiles are built.

Remember choices you make on the site, such as your currency preference on the pricing page.

You can manage or decline non-essential cookies using the cookie notice shown when you first visit the site. You can also clear cookies via your browser settings at any time.

We do not use advertising cookies, tracking pixels, or cross-site trackers of any kind.

We share your information only with the following limited categories of third parties, and only to the extent necessary:

• Payment processors — to handle billing securely (e.g. Stripe). They are PCI-DSS compliant and operate under their own privacy policies.
• Email delivery — to send you transactional and service emails. Your email address is shared only to deliver the email.
• Analytics providers — anonymised, aggregate data only. No personally identifiable information is shared.
• Legal obligations — if required by law, court order, or to protect the rights and safety of GEOAEO or others.

We retain your data only for as long as is necessary for the purposes described in this policy:

• Free audit enquiries — up to 12 months from date of submission
• Client project records — up to 5 years for accounting and legal compliance
• Email marketing preferences — until you unsubscribe or request deletion
• Website analytics — aggregated and anonymised after 14 months

When data is no longer needed, it is securely deleted or anonymised.

Depending on where you are located, you may have the following rights regarding your personal data:

EU and UK residents have these rights under GDPR and UK GDPR respectively. To exercise any of these rights, contact us at the address below. We will respond within 30 days.

To unsubscribe from marketing emails, click the unsubscribe link in any email we send, or contact us directly. We will process unsubscribe requests within 5 business days.

We take reasonable technical and organisational measures to protect your personal information from unauthorised access, loss, or disclosure. These include:

• HTTPS encryption on all pages of our website
• Secure, access-controlled systems for storing client data
• Minimal data collection — we only store what is genuinely needed
• Payment data handled entirely by PCI-DSS compliant processors — we never see your card number

No transmission over the internet is 100% secure. If you have reason to believe your data has been compromised, please contact us immediately.

Our services are intended for businesses and business professionals. We do not knowingly collect personal information from anyone under the age of 16. If we become aware that we have inadvertently collected data from a minor, we will delete it promptly.

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page. If the changes are significant, we will notify active clients by email.

Continued use of our website or services after changes are posted constitutes your acceptance of the updated policy.

If you have any questions about this Privacy Policy, wish to exercise your data rights, or have a concern about how your information is handled, please get in touch. We aim to respond to all privacy enquiries within 2 business days.