Legal

Privacy Policy

How we collect, use, store, and protect your personal information when you use our website or AI SEO services.

Last updated: May 1, 2026

1. Introduction

Rizing Metrics ("we", "us", "our") is an AI SEO agency operating across the United States, United Kingdom, and Australia. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit rizingmetrics.com or engage our services.

We are committed to protecting your privacy in line with the EU General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act (CCPA), the Australian Privacy Act 1988, and other applicable data-protection laws.

2. Information We Collect

We collect information that you provide directly to us, information collected automatically when you use our website, and information from third parties.

  • Contact information you submit through our forms (name, email, company, website, phone, message, service of interest, budget range)
  • Account and billing details if you become a client (business address, billing contact, tax identifiers)
  • Communications you exchange with us by email, phone, or screen-share calls
  • Technical data: IP address, browser type, device type, operating system, referring URL, pages viewed, time on site, and rough geo-location (country and city only)
  • Cookie data — see our Cookie Policy for the full list and your choices

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To respond to your inquiries and deliver the services you have requested (such as a free AI Visibility Audit)
  • To create, manage, and bill client accounts
  • To send service-related communications, reports, and account notifications
  • To send marketing communications about our services — only with your consent, and with an unsubscribe option in every message
  • To improve our website, services, and customer experience through aggregate analytics
  • To prevent fraud, enforce our Terms of Service, and comply with legal obligations

4. Legal Basis for Processing (GDPR / UK GDPR)

We rely on the following legal bases under Article 6 of the GDPR:

  • Performance of a contract — to deliver agreed services and process payments
  • Consent — for marketing emails and non-essential cookies
  • Legitimate interests — to operate, secure, and improve our website and services where this does not override your rights
  • Legal obligation — to comply with tax, accounting, and regulatory requirements

5. How We Share Your Information

We do not sell your personal information. We share it only with the following categories of recipients:

  • Service providers acting on our behalf — Resend (transactional email), Stripe (payment processing, when applicable), hosting infrastructure (Vercel), and analytics providers
  • Professional advisors — accountants, lawyers, and auditors bound by confidentiality
  • Authorities — when required by law, court order, or to protect our legal rights
  • Successors — in the event of a merger, acquisition, or sale of assets, with notice to you

6. International Data Transfers

Because we operate in the USA, UK, and Australia, your information may be processed in countries outside your country of residence. Where we transfer personal data out of the UK or EEA, we use Standard Contractual Clauses or rely on adequacy decisions to ensure your data receives an equivalent level of protection.

7. Data Retention

We retain personal information only for as long as we need it for the purpose it was collected:

  • Contact-form inquiries — up to 24 months from last contact, then deleted or anonymised
  • Active client records — for the duration of the engagement plus 7 years to meet tax and accounting obligations
  • Marketing-list data — until you unsubscribe or we have not heard from you for 24 months
  • Server logs — typically 30–90 days

8. Your Rights

Depending on where you live, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Delete your information ("right to be forgotten")
  • Restrict or object to certain processing activities
  • Receive a copy of your data in a portable format (data portability)
  • Withdraw consent for marketing or other consent-based processing at any time
  • Lodge a complaint with your local data-protection authority (ICO in the UK, your state DPA in the EU, OAIC in Australia)

9. Security

We implement appropriate technical and organisational measures to protect your information — including encryption in transit (TLS), access controls, regular security reviews, and the principle of least privilege. No system is 100% secure, but we work continuously to reduce risk and respond to incidents promptly.

10. Children's Privacy

Our services are aimed at businesses and are not directed at children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page indicates when the latest revision took effect. Material changes will be communicated by email (for clients) or via a banner on our website.

12. Contact Us

If you have questions about this Privacy Policy or want to exercise any of your rights, please contact us at hello@rizingmetrics.com or through our contact form.

Questions?

Email hello@rizingmetrics.com or use the contact form.

Contact Us