Privacy Policy

RankedCEO LLC ("RankedCEO," "we," "us," or "our") operates the websites located at rankedceo.com, crm.rankedceo.com, and audit.rankedceo.com, along with the associated software-as-a-service products including our CRM platform, Website Audit tool, and Website-as-a-Service (WaaS) offering (collectively, the "Services"). This Privacy Policy explains how we collect, use, disclose, and protect information about you when you use our Services. By accessing or using our Services, you agree to the practices described in this policy.

1. Information We Collect

1.1 Information You Provide Directly

When you register for an account, subscribe to a plan, submit a form, or contact us, we may collect your name, email address, phone number, company name, billing address, payment information (processed securely through our payment processors), and any other information you choose to provide.

1.2 Information We Collect Automatically

When you use our Services, we automatically collect certain information about your device and usage, including IP address, browser type and version, operating system, referring URLs, pages viewed, time spent on pages, click-through data, and other diagnostic data. We use cookies, pixel tags, and similar tracking technologies to collect this information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent; however, some features of the Services may not function properly if you do so.

1.3 Information from Third Parties

We may receive information about you from third-party services you choose to connect to your account, such as Google (when you sign in with Google), or from publicly available sources such as business directories, review platforms, and search engine data relevant to your website audit or lead generation activity.

1.4 Client Data

If you use our CRM or WaaS platform to manage your own customers' data, we process that data on your behalf as a data processor. You remain the data controller for your customers' information, and you are responsible for ensuring you have the appropriate legal basis to collect and share that data with us.

1.5 Google OAuth and Account Data

When you choose to sign in with Google, we collect specific Google user data to authenticate your identity and manage your account:

• Email address — your primary Google account email used for account identification and communication.
• Full name — your Google account display name or profile name.
• Profile picture URL — a link to your Google profile picture, which we display in your user profile on our Services.
• Google User ID — a unique identifier assigned by Google to link your Google account to your RankedCEO account.
• Email verification status — confirmation that your email address has been verified by Google.

Google Data Usage: We use this Google user data exclusively to:

• Authenticate your identity and create/link your RankedCEO account.
• Send you service-related communications to your Google-verified email address (such as password reset links, billing notifications, and product updates).
• Display your profile information within the RankedCEO platform to personalize your experience.
• Comply with our Terms of Service and applicable laws.

Google Data Sharing: We do not share your Google user data with third parties for marketing, advertising, or commercial purposes. We may share your email address and name with:

• Service providers — who perform services on our behalf (e.g., Resend for email delivery, payment processors for billing). These providers are contractually bound to use your data only for the specific services they provide.
• Google — only for account link verification and authentication purposes (not for any other purpose).
• Legal authorities — only when required by law or court order.

Google Data Storage & Protection: We store your Google user data securely using industry-standard encryption (TLS/SSL for data in transit, AES-256 for data at rest) in our Supabase database hosted in secure U.S. data centers. Access to your Google data is restricted to authenticated RankedCEO employees and systems who require it to operate our Services. We implement role-based access controls, logging, and monitoring to detect unauthorized access attempts.

Google Data Retention & Deletion: We retain your Google user data for as long as your RankedCEO account is active. Upon account termination or deletion, your Google user data is deleted from our systems within 30 days, unless we are required to retain it by law or to comply with our legitimate business obligations (such as accounting or audit records). You may request deletion of your RankedCEO account at any time by contacting us at support@twin-wicks.com, and we will delete your Google data according to the timeline above. You may also manage connected apps and revoke RankedCEO's access to your Google account by visiting your Google Account Permissions page.

2. How We Use Your Information

We use the information we collect for the following purposes:

• Providing and improving the Services — creating and managing your account, processing transactions, delivering features, and troubleshooting issues.
• Communication — sending you service-related emails, product updates, security alerts, and support messages. With your consent, we may also send promotional communications; you can opt out at any time.
• Analytics and research — understanding how users interact with our Services so we can improve usability and performance.
• Personalization — tailoring your experience and surfacing relevant features or content based on your usage patterns.
• Legal and safety — complying with applicable laws, responding to legal processes, enforcing our agreements, and protecting the rights, property, and safety of RankedCEO and our users.
• Fraud prevention — detecting, investigating, and preventing fraudulent transactions and other illegal activity.

3. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

• Service providers — we share information with trusted third-party vendors who perform services on our behalf, such as payment processing (e.g., Stripe), cloud hosting (e.g., Supabase, Vercel), email delivery, analytics, and customer support tools. These providers are contractually obligated to handle your data securely and only for the purposes we specify.
• Business transfers — if RankedCEO LLC is involved in a merger, acquisition, asset sale, or financing, your information may be transferred as part of that transaction. We will notify you via email or a prominent notice on our website before your information becomes subject to a different privacy policy.
• Legal requirements — we may disclose your information when required by law, subpoena, court order, or other governmental authority, or when we believe in good faith that disclosure is necessary to protect our rights or the safety of others.
• With your consent — we may share your information with third parties when you have given us explicit consent to do so.

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies (including web beacons and pixel tags) to operate and improve our Services. Cookies are small text files stored on your device that help us recognize you between visits, maintain your session state, and gather analytics data. We use the following categories of cookies:

• Strictly necessary — required for the Services to function, such as authentication tokens and session management.
• Analytics and performance — help us understand how visitors interact with our pages (e.g., Google Analytics).
• Functionality — remember your preferences and settings.
• Marketing — used to deliver relevant advertisements. You may opt out of interest-based advertising through industry opt-out tools such as the NAI opt-out tool at optout.networkadvertising.org.

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of the Services.

5. Data Retention

We retain your personal information for as long as necessary to provide the Services, comply with our legal obligations, resolve disputes, and enforce our agreements. Account data is typically retained for the duration of your subscription plus up to 90 days following account termination, after which it is deleted or anonymized unless a longer retention period is required by law. Audit logs and usage records may be retained for up to 3 years for security and compliance purposes.

6. Data Security

We implement administrative, technical, and physical security measures designed to protect your information against unauthorized access, loss, theft, and misuse. These measures include TLS/HTTPS encryption for data in transit, encrypted storage for sensitive fields, role-based access controls, and regular security reviews. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials and for any activity that occurs under your account.

7. Your Rights and Choices

Depending on your location, you may have the following rights with respect to your personal information:

• Access — request a copy of the personal information we hold about you.
• Correction — request that we correct inaccurate or incomplete information.
• Deletion — request that we delete your personal information, subject to certain legal exceptions.
• Portability — request that we provide your personal information in a structured, machine-readable format.
• Objection / Restriction — object to or ask us to restrict certain processing of your data.
• Withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
• Opt out of marketing — unsubscribe from marketing communications at any time by clicking "Unsubscribe" in any email we send, or by contacting us directly.

To exercise any of these rights, please contact us at support@twin-wicks.com. We will respond to your request within 30 days. We may need to verify your identity before processing certain requests.

8. Children's Privacy

Our Services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete that information. If you believe that a child under 13 has provided information to us, please contact us at support@twin-wicks.com.

9. Third-Party Links and Integrations

Our Services may contain links to third-party websites or integrate with third-party services (such as Google, Stripe, or social media platforms). This Privacy Policy does not apply to those third-party services, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party services you interact with through our platform.

10. International Data Transfers

RankedCEO LLC is based in the United States. If you access our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States. By using our Services, you consent to the transfer of your information to the United States and to countries where our service providers operate. We take steps to ensure that your information receives an adequate level of protection wherever it is processed, including through contractual data protection agreements with our service providers.

11. California Privacy Rights (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information. You have the right to know what personal information we collect, use, disclose, and sell; the right to delete personal information we have collected from you; the right to opt out of the sale of your personal information (we do not sell personal information); and the right to non-discrimination for exercising your CCPA rights. To submit a request to exercise any of these rights, please contact us at support@twin-wicks.com.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will revise the "Last Updated" date at the top of this page. For material changes, we will provide additional notice such as an in-app notification or an email to the address associated with your account. Your continued use of the Services after any update constitutes your acceptance of the revised policy. We encourage you to review this policy periodically.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: