Giranex
Giranex · Privacy Policy

Your data and privacy

Learn what information we collect, how we use it, and how we keep your data secure while using the Giranex platform.

Effective date: 25.04.2026

Website: giranex.com

Operator: Nikolai Khoziashev

Contact email: info@giranex.com


1. General Provisions

1.1. This Privacy Policy describes how giranex.com collects, uses, stores, and protects users’ personal data.

1.2. The giranex.com service provides tools for SEO analysis, website crawling, report generation, account management, package management, and billing information management.

1.3. This Policy applies to all website users, registered users, customers, visitors, and individuals who use contact forms or receive reports by email.

1.4. We process personal data in accordance with the General Data Protection Regulation of the European Union — GDPR.


2. Data We Collect

2.1. Account data: email, username, encrypted password, registration date, last login date, and account status.

2.2. Authentication and security data: IP address, browser data, device data, date and time of login, technical logs, and actions related to login, logout, and account settings changes.

2.3. Profile data: email, username, account settings, current package, package change history, and selected service settings.

2.4. Billing data: full name, country, city, address, address line 2, postal code, phone number, selected package, payment status, and subscription or purchase information.

2.5. Payment data: if Stripe or another payment provider is connected in the future, the payment will be processed by a third-party provider. We do not plan to store full bank card details on our servers.

2.6. SEO crawling data: domains and URLs added by the user for analysis, crawling results, technical SEO metrics, discovered pages, errors, warnings, reports, and exported files.

2.7. Report data: generated reports, selected domain, report generation date, technical report content, report download data, and, if the user selects such a function, the email address for sending the report.

2.8. Contact form data: name, email, message subject, message text, date of sending, and technical information necessary to protect against spam and abuse.

2.9. Technical data: IP address, user-agent, device type, operating system, browser, browser language, approximate country of access, date and time of visit, website pages, and service errors.

2.10. Analytics data: anonymized or pseudonymized information about user actions on the website, including data collected through Yandex Metrica or similar analytics services.


3. How We Use Data

3.1. We use personal data to register and authenticate users.

3.2. We use data to provide SEO crawler functionality, scan websites, analyze pages, and generate reports.

3.3. We use data to display the current package, change the package, activate features, and limit access according to the selected plan.

3.4. We use billing data to prepare payments, create subscriptions, issue documents, confirm customer identity, and comply with payment provider requirements.

3.5. We use the user’s email to send technical notifications, account notifications, package change notifications, payment status notifications, analysis results, and reports if the user chooses to send a report by email.

3.6. We use technical data to protect accounts, prevent abuse, detect errors, ensure stable service operation, and improve product quality.

3.7. We use analytics data to understand how users interact with the website, which features are used more often, where errors occur, and how to improve the interface.


4. Legal Bases for Processing

4.1. Performance of a contract: when processing is necessary to register an account, provide access to the service, crawl a website, generate reports, manage a package, and perform actions requested by the user.

4.2. User consent: when the user agrees to data processing for optional features, analytics cookies, marketing messages, or sending reports by email if such sending is not a mandatory part of the service.

4.3. Legitimate interest: when processing is necessary for security, abuse prevention, fraud prevention, error diagnostics, service improvement, and protection of our rights.

4.4. Legal obligation: when processing is necessary to comply with legal requirements, tax records, accounting records, or responses to lawful requests from public authorities.


5. SEO Crawler and Data of Scanned Websites

5.1. The user may add a domain or URL for SEO analysis. The service processes the specified domain or page to generate a technical SEO report.

5.2. The user is responsible for having the right to crawl or analyze the specified domain, if such right is required by applicable rules, contract, or law.

5.3. We do not use data from scanned websites for sale, resale, publication, or transfer to third parties, except where necessary for the operation of the service or compliance with legal requirements.

5.4. Data related to scanned domains, scanned URLs, crawling results, generated reports, and scan history is stored together with the user’s account data until the user clears or deletes this data manually, unless a longer or shorter retention period is required by law, security, or technical necessity.

5.5. The user may clear scan data, reports, domains, URLs, or history through the service interface, if such functionality is available.


6. Data Retention

6.1. Account data is stored as long as the account exists, unless longer retention is required by law or for the protection of our rights.

6.2. Data related to scanned domains, scanned links, crawling results, reports, and scan history is stored together with the user’s data until the user clears or deletes it manually, unless deletion is technically required, legally required, or necessary for security reasons.

6.3. Billing data may be stored for as long as necessary to provide the service, confirm payment, comply with accounting and tax requirements, resolve disputes, and fulfill legal obligations.

6.4. Contact form messages are stored for as long as necessary to respond to the user and maintain the history of the request.

6.5. Technical security logs may be stored for a limited period necessary to protect the service, investigate errors, and prevent abuse.

6.6. If the user deletes the account, we delete or anonymize personal data, except for data that must be retained by law, for accounting, tax reporting, fraud prevention, or protection of legitimate interests.


7. Billing Information

7.1. The user may save billing information in the account settings. This may include full name, country, city, address, postal code, and phone number.

7.2. If the user chooses to save billing information, this data may be automatically inserted when purchasing or changing a package.

7.3. The user may change or delete billing information in the account settings, if such functionality is available.

7.4. Saving billing information does not mean automatic charging unless separate payment logic or a subscription has been confirmed by the user.


8. Payments

8.1. At the current stage, payment may not be connected or may be skipped when purchasing a package.

8.2. In the future, Stripe or another payment provider may be used for payment processing.

8.3. When using a third-party payment provider, the user may be redirected to a payment page or the payment may be processed through the provider’s secure interface.

8.4. We do not store the full bank card number, CVV, or other full payment credentials if they are processed by a third-party payment provider.

8.5. The payment provider may independently process the user’s personal data in accordance with its own privacy policy.


9. Sending Reports by Email

9.1. The user may choose to send an SEO report for a selected domain by email.

9.2. To send the report, we process the recipient’s email address, selected domain, report content, and technical sending data.

9.3. The user must only provide an email address that they have the right to use for receiving the report.

9.4. We may store the technical fact of sending the report to confirm delivery, protect against abuse, and diagnose errors.


10. Data Sharing with Third Parties

10.1. We do not sell users’ personal data.

10.2. We may share data with hosting providers, cloud infrastructure providers, email services, analytics services, payment providers, security services, and other contractors if necessary for the operation of giranex.com.

10.3. We may share data with public authorities, courts, or regulators if required by law.

10.4. We may share data with professional advisers, lawyers, accountants, or auditors if necessary to protect our rights, comply with legal obligations, or operate the business.


11. International Data Transfers

11.1. If personal data is transferred outside the European Economic Area, we take measures to ensure an appropriate level of protection.

11.2. Such measures may include standard contractual clauses, data processing agreements, technical security measures, and selecting providers that ensure appropriate data protection.


12. Yandex Metrica and Analytics

12.1. We may use Yandex Metrica or similar analytics services to analyze website traffic, user behavior, interface errors, and page performance.

12.2. Analytics services may use cookies, device identifiers, IP address, browser data, and information about user actions on the website.

12.3. Non-essential analytics cookies are used only according to the user’s consent settings, if such consent is required by applicable law.


13. User Rights

13.1. The user has the right to request access to their personal data.

13.2. The user has the right to request correction of inaccurate or incomplete data.

13.3. The user has the right to request deletion of their data if there are no lawful grounds for further storage.

13.4. The user has the right to restrict processing of their data.

13.5. The user has the right to object to processing if processing is based on legitimate interest.

13.6. The user has the right to receive their data in a portable format, where applicable.

13.7. The user has the right to withdraw consent at any time if processing is based on consent.

13.8. The user has the right to lodge a complaint with a data protection supervisory authority in their country of residence or in the country of registration of the data controller.


14. How to Contact Us

14.1. For questions about personal data, account deletion, data changes, or exercising user rights, you can contact us by email:

14.2. info@giranex.com


15. Security

15.1. We apply technical and organizational measures to protect personal data against unauthorized access, modification, disclosure, loss, or destruction.

15.2. Such measures may include password hashing, access control, HTTPS, technical logs, restricting access to administrative functions, and regular system updates.

15.3. Despite the measures applied, no internet service can guarantee absolute data security.


16. Children

16.1. The giranex.com service is not intended for children under the age of 16.

16.2. We do not knowingly collect children’s personal data. If we become aware that a child’s data has been provided without the necessary consent, we will take steps to delete it.


17. Changes to This Policy

17.1. We may update this Privacy Policy.

17.2. The current version is always published on this page.

17.3. If changes are significant, we may notify users through the website, email, or account interface.