Privacy Policy

Last updated: April 30, 2026 | Effective date: April 30, 2026

Page One Insights LLC ("Page One Insights," "we," "our," or "us") operates the Page One Portal platform at pageone.cloud and related services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, including data accessed through Google APIs.

Google API Compliance Statement: Page One Portal's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

1. Information We Collect

1.1 Account Information

When you become a Page One Insights client, we collect your business name, contact name, email address, phone number, business address, and business category. This information is necessary to create your Portal account and deliver our services.

1.2 Google Account Data

When you connect your Google account to Page One Portal via OAuth 2.0 authorization, we may access the following data depending on which services you authorize:

Google Business Profile (scope: business.manage): Business name, address, phone number, categories, hours, photos, reviews, review replies, profile performance metrics (views, searches, direction requests, calls, website clicks), and posting data.
Google Search Console (scope: webmasters): Search queries, impressions, clicks, click-through rates, and average position for your verified website properties. We also submit sitemaps and URL updates on your behalf when new pages are published on websites built and hosted by Page One Insights.
Google Analytics (scope: analytics.readonly): Website traffic data including sessions, pageviews, user demographics (aggregated), traffic sources, and top-performing pages.
Basic profile info (scopes: openid, email): Your Google email address for account identification.

We access this data using the official Google APIs with OAuth 2.0 authentication. You authorize access through Google's consent screen, and you can revoke access at any time from your Google Account settings at myaccount.google.com/permissions.

1.3 Website and Form Data

If we build and host your website, we collect form submissions (name, email, phone, message) from visitors who contact you through your website. This data is displayed in your Portal dashboard and sent to you via email and/or SMS notification.

1.4 Payment Information

Payment card information is processed by our third-party payment processors (NMI and FluidPay). Full card numbers are not stored on our servers. We retain transaction records including amounts, dates, last four digits, and payment status for billing purposes.

2. How We Use Your Information

We use collected information to:

Provide, operate, and maintain the Page One Portal platform and its features.
Display your Google Business Profile performance metrics, review data, and search analytics in your Portal dashboard.
Build, host, and maintain your business website.
Deliver lead notifications from your website contact forms.
Monitor your business citation status across online directories.
Send you service-related communications, billing notices, and performance reports.
Improve the Portal's user-facing features.
Respond to your support inquiries.

3. Google API Services — Limited Use Disclosure

Page One Portal's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

We only use Google user data to provide or improve user-facing features that are prominent in the Page One Portal's user interface. Any other use of Google user data, including transferring it to third parties, is prohibited except as necessary to provide or improve those user-facing features, comply with applicable law, or as part of a merger, acquisition, or sale of assets with notice to users.

Specifically, with respect to all Google user data obtained through Google APIs:

Limited use: We only access Google data necessary to provide the user-facing features you have authorized (profile analytics, search performance, review monitoring) that are prominent in the Portal's user interface.
No advertising: We do not use Google user data for advertising purposes, including personalized, retargeted, or interest-based advertising.
No sale of data: We do not sell, rent, or transfer Google user data to third parties, including advertising platforms, data brokers, or information resellers.
No AI/ML training: We do not use Google user data to develop, improve, or train generalized or non-personalized AI or machine learning models. Transfers of Google user data for AI/ML training are prohibited.
No credit decisions: We do not use Google user data to determine credit-worthiness or for lending purposes.
No human access: We do not allow humans to read your Google user data, except: (a) with your explicit affirmative consent to view specific data; (b) for security purposes (investigating a bug or abuse); (c) to comply with applicable law; or (d) where data is aggregated and used for internal operations in compliance with applicable privacy requirements.
No data retention beyond necessity: We do not build databases of Google user data for any purpose other than providing the Portal's user-facing features. Cached data is not retained longer than permitted by Google's cache headers or necessary for functionality.

4. Data Storage and Security

Your data is stored on secure servers located in the United States. We implement industry-standard security measures including:

TLS 1.2+ encryption for all data in transit (HTTPS enforced site-wide).
AES-256 encryption for OAuth tokens and sensitive credentials at rest.
Row-level security (RLS) policies in our PostgreSQL database to isolate client data per tenant.
Restricted access controls — only authorized Page One Insights personnel can access client data, and only when necessary to provide support or investigate security issues.
HMAC-SHA256 signature verification for all webhook communications.
SSH key-based server authentication (password login disabled).
Firewall (UFW) and intrusion prevention (fail2ban) on all infrastructure.
Regular security audits and vulnerability assessments of our platform.
Automated daily database backups with 14-day retention.

5. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information or any Google user data. We may share data with:

Service providers (sub-processors): Payment processors (NMI, FluidPay), email delivery (SendGrid), hosting infrastructure (Hostinger, Cloudflare) — only to the extent necessary to provide our services and under confidentiality obligations.
Legal requirements: We may disclose information if required by law, subpoena, court order, or government regulation.
Business transfers: In the event of a merger, acquisition, or sale of assets, client data may be transferred. We will notify affected clients before any transfer.

We do not share Google user data with any third party except as necessary to provide the user-facing features you have authorized.

6. Data Retention and Deletion

We retain your account data and service records for the duration of your client relationship and for a reasonable period afterward for billing, legal, and operational purposes. Specific retention:

Google API data: Cached metrics and performance data are refreshed regularly and retained only as long as your Google account is connected. When you disconnect your Google account or terminate your service, we delete cached Google API data and OAuth tokens within 30 days.
Account data: Retained for the duration of your service plus 90 days after termination to allow reactivation, then permanently deleted.
Payment records: Retained as required by tax and accounting regulations (typically 7 years).

6.1 How to Delete Your Data

To request deletion of your data:

Email us at [email protected] with subject line "Data Deletion Request."
Alternatively, revoke Google access at myaccount.google.com/permissions to immediately stop all Google data access.
We will confirm receipt within 2 business days and complete deletion within 30 days.
Data that must be retained for legal or regulatory purposes (tax records, signed agreements) will be noted in our confirmation.

Clients with active Portal access can also revoke Google account access at any time from Settings → Integrations → Disconnect Google Account within the Portal. Disconnecting immediately stops all Google API access and triggers deletion of cached Google API data within 30 days.

7. Your Rights

You have the right to:

Access: Request a copy of the data we hold about your business.
Correction: Request correction of inaccurate data.
Deletion: Request deletion of your data, subject to legal retention requirements (see Section 6.1).
Revoke Google access: Disconnect your Google account from the Portal at any time through your dashboard settings or at myaccount.google.com/permissions.
Data portability: Request an export of your data in a standard format (CSV or JSON).
Opt-out: Unsubscribe from marketing communications (service-related emails are necessary and cannot be opted out of while active).

To exercise any of these rights, contact us at [email protected].

8. Cookies and Tracking

Page One Portal uses essential cookies for authentication and session management. We do not use third-party advertising cookies on our platform. If your website includes Google Analytics (GA4), that tracking is governed by Google's Privacy Policy.

9. Children's Privacy

Page One Portal is a business-to-business service not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

10. International Data Transfers

Page One Insights is based in the United States, and our servers are located in the United States. If you access the Portal from outside the U.S., your data will be transferred to and processed in the U.S.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated to active clients via email at least 30 days before they take effect. If changes affect how we use Google user data, we will prompt you to consent to the updated policy before accessing your Google data in new ways. Continued use of the Portal after changes constitutes acceptance of the revised policy.

12. Contact Us

If you have questions about this Privacy Policy, our data practices, or wish to exercise your rights:

Page One Insights LLC
Email: [email protected]
Phone: (888) 272-1940
Service Area: Miami, Florida Metro
Mailing Address: 111 NE 1st St, Ste 8646, Miami, FL 33132
Data Protection Officer: [email protected]