Our commitment to data protection

The General Data Protection Regulation (GDPR) is European Union legislation to strengthen and unify data protection laws for all individuals within the European Union. The regulation becomes effective and enforceable on May 25, 2018.

As a company that values treating our users fairly and transparently, we welcome GDPR's efforts to increase privacy across the board. We are a US business co-founded by an EU citizen, and we are fully committed to being compliant with GDPR.

This page outlines our commitment to complying with GDPR and upholding our users' individual privacy and the privacy of the data they transmit to us. As best practices for implementing GDPR evolve, we will make changes to this statement and to our product accordingly.

GDPR makes a distinction between “data controllers” and “data processors.” Geocodio is considered a “data controller” with regards to your account details and behavior on our website (such as your email address). We are a “data processor” with regards to the data you upload to our service (such as an API request or a file upload). It is important to understand this distinction so you can be better informed of your rights and the rights of the people whose data you transmit.

Geocodio GDPR-Compliant Products

As a data controller when it comes to your personal account details, our service is GDPR-compliant by default, even for non-EU users. We believe this is in everyone’s best interest.

Note this only applies to your personal account details, such as your email address, physical address, and consent to receive product updates. It does not cover data you upload to Geocodio, such as data about your customers. That is covered below under "Geocodio as a data processor."

If you want to upload data for EU persons, GDPR requires that we have a signed Data Processing Agreement with each other. Users who need a signed Data Processing Agreement must be on the Geocodio Unlimited plan at the time of signing (one-month or recurring). All users transmitting data about EU persons are required to have this plan. That is, if you’d like to upload a file or use our API with data about EU persons, you must have a Data Processing Agreement with us. This applies to users whose usage would normally fall under the free tier. You can cancel the plan at any time by emailing us.

Geocodio as a data controller: Your account details

Your website activity

We use several third-party vendors to help us improve our customer experience. We have signed Data Processing Agreements with all of our vendors. These vendors are: Intercom (the little chat bubble you see on the bottom right), Google Analytics (anonymized visit and traffic tracking), Satismeter (customer happiness surveys), and Zoho (invoicing).

We have authorized these vendors collect several different kinds of data about our users, including:

Frequency at which this data is deleted: