izyLocalBack to Google Maps

Privacy Policy

Last updated: January 21, 2026

1. Introduction

SG Services ("we", "us", or "our") operates izyLocal, a Chrome extension and web service for tracking local business rankings on Google Maps. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

We are committed to protecting your privacy in accordance with the General Data Protection Regulation (GDPR) and applicable French data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

SG Services

SIRET: 992 218 552 00014

Email: contact@izylocal.com

3. Information We Collect

3.1 Information You Provide

  • Account Information: When you sign in with Google, we receive your email address and display name from your Google account.
  • Payment Information: When you purchase credits, payment is processed by Stripe. We do not store your credit card details.

3.2 Information Collected Automatically

  • Usage Data: Credit balance, transaction history, and ranking scan results.
  • Technical Data: Browser type, extension version, and timestamps of interactions.

3.3 Information from Third Parties

  • Google OAuth: Basic profile information (email, name) when you authenticate.
  • Stripe: Payment confirmation and transaction IDs (not payment card details).

4. How We Use Your Information

We use your information for the following purposes:

  • To provide and maintain our service
  • To process your credit purchases and manage your account balance
  • To authenticate your identity and secure your account
  • To communicate with you about your account or our services
  • To comply with legal obligations
  • To detect and prevent fraud or abuse

5. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide our services to you.
  • Legitimate Interests: To improve our services and prevent fraud.
  • Legal Obligation: To comply with applicable laws and regulations.
  • Consent: Where you have given explicit consent for specific processing activities.

6. Data Sharing and Third-Party Services

We share your data with the following third-party service providers:

Supabase (Authentication & Database)

Stores your account data and credit balances. Based in the USA with GDPR compliance.

Privacy Policy →

Stripe (Payment Processing)

Processes your credit purchases securely. PCI-DSS compliant.

Privacy Policy →

Google (OAuth & Maps)

Provides authentication and mapping services.

Privacy Policy →

We do not sell, trade, or rent your personal information to third parties for marketing purposes.

7. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA), including the United States. When we transfer your data, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.

8. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you services. We will retain and use your data as necessary to comply with legal obligations (such as tax and accounting requirements), resolve disputes, and enforce our agreements.

  • Account Data: Retained until you request deletion
  • Transaction Records: Retained for 10 years (French legal requirement)
  • Ranking Scan Data: Retained for 2 years

9. Your Rights (GDPR)

Under the GDPR, you have the following rights regarding your personal data:

  • Right of Access: Request a copy of your personal data.
  • Right to Rectification: Request correction of inaccurate data.
  • Right to Erasure: Request deletion of your data ("right to be forgotten").
  • Right to Restriction: Request limitation of processing.
  • Right to Data Portability: Receive your data in a structured, machine-readable format.
  • Right to Object: Object to processing based on legitimate interests.
  • Right to Withdraw Consent: Where processing is based on consent.

To exercise any of these rights, please contact us at contact@izylocal.com.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit (HTTPS/TLS)
  • Encryption of data at rest
  • Secure authentication (OAuth 2.0 with PKCE)
  • Regular security assessments

11. Cookies and Local Storage

Our Chrome extension uses local storage to maintain your authentication session. Our website may use essential cookies for functionality. We do not use tracking cookies or third-party advertising cookies.

12. Children's Privacy

Our service is not intended for individuals under 18 years of age. We do not knowingly collect personal data from children. If you become aware that a child has provided us with personal data, please contact us.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

14. Complaints

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with the French data protection authority:

CNIL (Commission Nationale de l'Informatique et des Libertés)

3 Place de Fontenoy, TSA 80715

75334 Paris Cedex 07, France

www.cnil.fr

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: contact@izylocal.com