Privacy Policy

We collect the following categories of personal data:

• Account data — email address and password hash (via Supabase Auth) when you create an account.
• Payment data — billing name, card last four digits, and billing address, collected and stored by Stripe. We do not store full card numbers on our servers.
• API usage logs — timestamps, API key identifier, endpoint called, coordinate or address queried, HTTP status code, and response time. These are used for billing, rate limiting, and service reliability.
• IP address & browser metadata — collected automatically when you visit gravelo.io, used for security and analytics.

We do not collect sensitive personal information such as government IDs, race, health data, or financial account numbers.

• Providing and operating the Service (API access, authentication, billing)
• Enforcing rate limits and detecting abuse
• Sending transactional emails (account creation, API key issuance, payment receipts)
• Responding to support requests
• Improving the Service through aggregate usage analytics
• Complying with legal obligations

We do not sell your personal data to third parties. We do not use your data for advertising.

We share data with the following service providers solely to operate the Service:

• Stripe — payment processing. Stripe's privacy policy governs their handling of your payment data.
• Supabase — authentication and database hosting. Data is stored in Supabase's infrastructure.
• Upstash Redis — caching layer for API responses. No personally identifiable data is stored in the cache.

We do not share your data with any other third parties without your consent, except as required by law.

When you call the Gravelo API with a coordinate or address, we log the query as described in Section 1. We do not associate queries with individual end-users of your application — only with your API key. You are responsible for ensuring your own users have appropriate notice of any location data processing your application performs.

Addresses submitted via the address parameter are forwarded to the US Census Bureau Geocoder API to resolve coordinates. The Census Bureau may log these requests in accordance with their own privacy practices.

• Account data is retained for the life of your account plus 90 days after deletion.
• API usage logs are retained for 12 months for billing audit purposes.
• Payment records are retained as required by applicable financial regulations (typically 7 years).

You may request deletion of your account and associated data at any time by emailing hello@gravelo.io. We will action deletion requests within 30 days, subject to retention obligations above.

gravelo.io uses a session cookie for authentication (set by Supabase Auth) and a preference cookie to remember UI state. We do not use third-party advertising cookies or tracking pixels.

You can disable cookies in your browser settings, but doing so will prevent you from logging into the dashboard.

Depending on your location, you may have the following rights:

• Access — request a copy of the personal data we hold about you.
• Correction — request correction of inaccurate data.
• Deletion — request deletion of your personal data.
• Portability — request your data in a machine-readable format.
• Opt-out of sale — we do not sell data, but California residents may assert this right under CCPA.

To exercise any of these rights, email hello@gravelo.io with "Privacy Request" in the subject line.

We implement industry-standard security measures including TLS encryption in transit, hashed passwords, and API key rotation. However, no system is completely secure. You are responsible for keeping your API keys confidential.

The Service is not directed at children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will delete it promptly.

We may update this Privacy Policy periodically. We will notify you of material changes by email or by posting a notice on gravelo.io. The effective date at the top of this page reflects the most recent revision.

Questions or concerns about this policy should be directed to hello@gravelo.io.