Privacy Policy

Effective Date: November 26, 2025

Introduction

Welcome to LocalBios. We are passionate about connecting communities with local biodiversity through our AI-powered content generation and directory synchronization services. This Privacy Policy outlines our practices regarding the collection, use, protection, and sharing of your information when you visit our website (localbios.com), use our associated applications, or interact with our services (collectively, the "Services").

Our Services are primarily designed for users in the United States. However, we are committed to complying with applicable data protection laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and the General Data Protection Regulation (GDPR) for any visitors from the European Union or United Kingdom.

By using our Services, you acknowledge that you have read and understood this Privacy Policy. If you have any questions or concerns about our data practices, please contact us at [email protected].

1. Information We Collect

To provide and improve our Services, we collect information that you provide directly, data we collect automatically, and information from third-party sources. We are committed to collecting only the minimum data necessary to operate our platform.

Personal Data You Provide Directly

  • Account Information: Name, email address, and password.
  • Business & Content Data: Business details, location (for sharing purposes), and any user-generated content such as biodiversity stories, photos, and AI-generated bios.
  • Agency & Client Data: For agency accounts, we may collect information related to your clients with your explicit consent.

Automatically Collected Data

Device and Usage Data: IP address, browser type, operating system, device information, and usage patterns (e.g., pages visited, features used, and interactions with advertisements). This is collected via essential cookies and similar technologies.

Tracking and Advertising Data

  • Ad Performance Data: We use tracking technologies like the Meta Pixel (for Facebook/Instagram) and Google Ads tags to measure the effectiveness of our advertising campaigns. This includes anonymized data on ad views, clicks, and conversions.
  • Email Engagement: We use tracking pixels in our newsletters to collect anonymized data on email opens and clicks to help us improve our communications.

Information from Third Parties

  • Social Logins: If you choose to register or log in using a third-party service like Google, we receive information from that service as permitted by your privacy settings.
  • Attribution Data: We receive information from advertising platforms to attribute user sign-ups to specific campaigns.

We do not intentionally collect Sensitive Personal Information (such as data related to health, race, or religion) unless it is voluntarily shared by a user in their generated content. We take measures to anonymize IP addresses where feasible.

2. Google Business Profile Data

When you connect your Google Business Profile to LocalBios, we access and process certain data from Google's APIs. This section specifically describes our practices regarding Google user data in accordance with the Google API Services User Data Policy.

Data We Access from Google

  • Business Profile Information: Your business name, address, phone number, business category, and description from your Google Business Profile.
  • Reviews and Ratings: Customer reviews, star ratings, and review responses associated with your Google Business Profile.
  • Account Information: Your Google account email address (for authentication purposes only).

How We Use Google Data

  • Display Reviews: We display your Google reviews within the LocalBios dashboard so you can monitor customer feedback in one place.
  • Sentiment Analysis: We analyze review content to provide insights on customer sentiment and trends.
  • Bio Optimization: We use your business information to generate optimized bios for various platforms.
  • Profile Reports: We include Google data in snapshot reports to help you understand your online presence.

LocalBios's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Data Storage and Retention

  • Storage: Google data is stored securely on encrypted servers in the United States.
  • Retention: We retain your Google data for as long as your account is active or as needed to provide our Services. Review data is refreshed periodically and older cached data may be automatically deleted.
  • Deletion: When you disconnect your Google Business Profile or delete your LocalBios account, all associated Google data is permanently deleted within 30 days.

Data Sharing

We do not sell, rent, or share your Google data with third parties for their own purposes. Google data is only used to provide LocalBios services to you. We may share data with service providers (such as cloud hosting) who assist in operating our platform, subject to strict confidentiality agreements.

Revoking Access

You can revoke LocalBios's access to your Google data at any time by visiting your Google Account Permissions page or by disconnecting your Google Business Profile from your LocalBios Settings. Upon revocation, we will stop accessing your Google data and delete all cached Google data within 30 days.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To Provide and Manage Services: To create and manage user accounts, process subscriptions, and synchronize business bios across various directories (e.g., Google Business Profile, Yelp) as requested by you.
  • To Display and Share Content: To enable the display and sharing of user-generated content and facilitate community engagement features.
  • To Communicate with You: To send administrative information, updates, and marketing communications, such as newsletters. You may opt out of marketing communications at any time.
  • To Improve Our Services: To analyze usage trends and user behavior, allowing us to understand how our Services are used and identify areas for improvement.
  • For Advertising and Marketing: To conduct retargeting campaigns, measure ad performance, and personalize email communications. We do not sell your personal data.
  • For Legal and Security Purposes: To enforce our terms, prevent fraud or abuse, and comply with legal obligations.

4. How We Share Your Information

We are committed to maintaining your trust, and we do not sell your personal data. Your information is shared only in the following limited circumstances:

  • With Service Providers: We engage third-party companies to perform services on our behalf, such as cloud hosting, payment processing, and email delivery. These providers are contractually obligated to protect your data.
  • With Advertising Partners: We share anonymized or aggregated data with advertising platforms like Meta and Google for retargeting campaigns and ad performance tracking.
  • For Legal Requirements: We may disclose your information if required by law or in response to valid requests by public authorities.
  • With Your Consent: We may share your information for other purposes with your explicit consent.

Under the CCPA, sharing data for cross-context behavioral advertising may be considered a "sale" or "sharing." We provide you with the right to opt out of such activities and automatically honor Global Privacy Control (GPC) signals.

5. Cookies, Pixels, and Tracking Technologies

We use cookies, pixels, and other tracking technologies to operate and improve our Services:

  • Essential Cookies: Necessary for core functionality such as maintaining login sessions and ensuring security. These cannot be disabled.
  • Non-Essential Trackers: Include pixels and tags used for advertising and analytics (Meta Pixel, Google Ads tags, email tracking pixels). These are managed through Google Tag Manager with Consent Mode v2.

Non-essential trackers are blocked by default until you provide consent. We respect Do Not Track (DNT) and Global Privacy Control (GPC) signals. You can manage your preferences through the "Your Privacy Choices" link in our website footer.

6. Your Rights and Choices

We believe in providing you with meaningful control over your personal data. Depending on your location, you may have the following rights:

Access, Correct, or Delete

You can request access to, correction of, or deletion of your personal data through your account dashboard or by emailing [email protected].

Opt-Out of Communications

You can opt out of receiving marketing emails by clicking the "unsubscribe" link at the bottom of any marketing email.

Opt-Out of Data "Sale" or "Sharing" (CCPA/CPRA)

You have the right to opt out of the "sale" or "sharing" of your personal information for cross-context behavioral advertising. Click the "Do Not Sell or Share My Personal Information" link in our website footer. We also honor Global Privacy Control (GPC) signals automatically.

EU/UK Resident Rights (GDPR)

If you are in the EU or UK, you have the right to withdraw consent for data processing, object to processing, and request data portability. Contact us at [email protected] to exercise these rights.

We are committed to not discriminating against you for exercising any of your rights. We will respond to verifiable consumer requests within 45 days of receipt.

Children's Privacy: Our Services are not directed to children under the age of 13, in compliance with COPPA. We do not knowingly collect personal information from children under 13.

7. Data Security and Retention

We implement a variety of security measures to protect your personal information, including encryption of data in transit and at rest, strict access controls, and server-side tracking where possible. However, no method of transmission over the Internet is 100% secure.

We retain your data as follows: account information is retained while your account is active (inactive accounts may be deleted after two years), and advertising/email data is typically retained for 90 to 180 days before being deleted or anonymized.

8. International Data Transfers

Our Services are operated from the United States. If you access our Services from outside the U.S., your information will be transferred to, stored, and processed in the United States. For data transferred from the EU, UK, or Switzerland, we rely on mechanisms such as Standard Contractual Clauses to ensure adequate protection.

9. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or by posting a prominent notice on our website. Your continued use of our Services after any changes constitutes your acceptance of the new Privacy Policy.

10. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

LocalBios

Email: [email protected]

This policy was last updated on November 26, 2025.

© 2025 LocalBios. All rights reserved.