Privacy Policy

1. Introduction

GSC Terminal Pro ("we", "our", or "the Service") is an internal analytics dashboard operated by the site owner of thinkly.business. This Privacy Policy explains how data is collected, used, and protected when you access the Service at https://thinkly.business/analytics.

2. Information We Access

When you authorize GSC Terminal Pro with your Google account, we access the following through the Google Search Console API:

• List of verified properties (sites) in your Google Search Console account
• Search performance data: clicks, impressions, CTR, position
• Query, page, country, and device dimensions
• Read-only access via the webmasters.readonly scope

We do not access your Gmail, Drive, Calendar, or any other Google service. We do not have the ability to modify anything in your Google Search Console.

3. How We Use Your Information

GSC Terminal Pro uses the data retrieved from Google Search Console solely to:

• Display your website search performance analytics
• Track keyword rankings and impressions over time
• Show comparative analytics across multiple sites you own
• Generate insights such as anomaly detection and content scoring

4. Data Storage

Google Search Console data is cached in a private MySQL database on our server for performance and historical trend analysis. This database is not publicly accessible and is not shared with any third party. Visitor tracking data (from sites you install our WordPress tracker plugin on) is also stored in the same private database.

5. Data Sharing

We do not sell, trade, rent, or otherwise transfer your Google Search Console data to any outside party. Data is accessible only to the authenticated admin users of this dashboard. GSC Terminal Pro uses Google's official APIs; our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

6. Data Security

All traffic to GSC Terminal Pro is encrypted over HTTPS. Authentication uses HTTP-only JWT cookies and bcrypt-hashed passwords. OAuth refresh tokens are stored in server-side environment variables and never exposed to the client.

7. Revoking Access

You can revoke GSC Terminal Pro's access to your Google account at any time by visiting Google Account Permissions.

8. Data Deletion

To request deletion of all data associated with your account, contact us at the email address below. Upon request, we will delete all your cached GSC data, visitor analytics, and user profile information within 30 days.

9. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date above reflects the most recent revision.

10. Contact

For any questions about this Privacy Policy, please contact: [email protected]