1. Who we are
Rankli ("we", "us", "our") is a service that prepares online stores — primarily Shopify — for agentic commerce, the Universal Commerce Protocol (UCP), the Universal Cart, and AI shopping agents. Our website is getrankli.com. For the purposes of GDPR, Rankli is the "data controller" of personal information collected through our website and services.
2. Information we collect
Information you give us directly
- Contact details — your name, email address, company name, and the URL of your store when you request an audit, sign up, or message us.
- Account and billing information — billing address and payment details (processed by Stripe; we do not store full card numbers ourselves).
- Store and content data — information you authorize us to access about your store (product data, descriptions, schema, store identity signals) so we can deliver the service.
- Communications — messages, support requests, and survey responses you send us.
Information collected automatically
- Usage and device data — IP address, browser type, operating system, referring URLs, pages viewed, time on page, and similar diagnostic data.
- Cookies and similar technologies — see our Cookie Policy for full details.
3. How we use your information
- To deliver the Rankli service — audits, GEO content, schema work, monitoring, reports.
- To process payments, manage subscriptions, send invoices, and prevent fraud.
- To respond to your inquiries, provide support, and improve the service.
- To send transactional emails (receipts, account notices) and — only with your consent — occasional product updates.
- To monitor and improve site performance, security, and the user experience.
- To comply with legal obligations and enforce our Terms of Service.
4. Legal basis for processing (GDPR)
If you are in the European Economic Area or the United Kingdom, our legal basis for processing your personal data depends on the data and the context:
- Performance of a contract — to deliver the service you signed up for.
- Legitimate interests — to operate, secure, and improve our service in ways you would reasonably expect.
- Consent — for marketing emails, non-essential cookies, and any optional features. You can withdraw consent at any time.
- Legal obligation — to comply with tax, accounting, and regulatory requirements.
5. Sharing and disclosure
We do not sell your personal information. We share it only in the following circumstances:
- Service providers — vendors who help us run Rankli (payment processing, email delivery, hosting, analytics, customer support). They are contractually required to protect your information and use it only for the purposes we specify.
- Legal compliance — when required by law, subpoena, or to protect our rights and the safety of our users.
- Business transfers — if Rankli is involved in a merger, acquisition, or sale of assets, your information may transfer; we will notify you before that happens.
- With your consent — for any other disclosure, we'll ask you first.
6. Third-party services we use
To run Rankli, we rely on the following categories of processors. Each has their own privacy practices, which we recommend reviewing.
- Payments — Stripe
- Email — for transactional and (with consent) marketing emails
- Analytics — privacy-respecting site analytics (see Cookie Policy)
- Hosting and infrastructure — the providers that serve our website and tools
- Store platforms you connect — e.g., Shopify, when you authorize Rankli to access your store
7. Data retention
We keep personal information only as long as we need it for the purposes set out in this policy. In practice that means:
- Account data — for the life of your account, plus a reasonable period after cancellation for our records.
- Billing records — at least seven years to comply with tax and accounting laws.
- Support communications — typically up to three years after the last interaction.
- Marketing data — until you unsubscribe or ask us to delete it.
8. Your rights
Depending on where you live, you may have the following rights regarding your personal information:
- Access — request a copy of the information we hold about you.
- Correction — ask us to fix inaccurate or incomplete information.
- Deletion — ask us to delete your personal information (subject to legal retention obligations).
- Restriction and objection — limit or object to certain uses of your information.
- Portability — receive your information in a structured, machine-readable format.
- Withdraw consent — where we rely on consent, you can withdraw it at any time.
- Do Not Sell / Share (California residents) — we do not sell your personal information; you can also opt out of any "sharing" for cross-context behavioral advertising.
- Lodge a complaint — with your local data protection authority.
To exercise any of these rights, email hello@getrankli.com. We'll respond within 30 days.
9. International data transfers
Rankli is operated from the United States. If you access our service from outside the U.S., your information may be transferred to, stored, and processed in the U.S. or any other country where we or our service providers operate. When we transfer personal data out of the EEA or UK, we rely on appropriate safeguards such as Standard Contractual Clauses.
10. Security
We use industry-standard administrative, technical, and physical safeguards to protect your information — encryption in transit, access controls, and vendor due diligence. No system is perfectly secure, however, so we cannot guarantee absolute security. If we ever discover a breach that affects you, we'll notify you and the relevant authorities as required by law.
11. Children's privacy
Rankli is a business-to-business service and is not directed to children under 16. We do not knowingly collect personal information from children. If you believe we have done so, please contact us and we will delete it.
12. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we'll change the "Last updated" date at the top of this page. For material changes we'll provide more prominent notice — for example, by email or a banner on the site — before the changes take effect.
13. Contact us
Questions about this policy or your data? Email hello@getrankli.com. We aim to respond within two business days.