FastGeo FastGeo
Menu
Features Use Cases Pricing Security Docs Contact
Sign in Get API Key

Legal

Privacy Policy

How FastGeo collects, uses, and protects personal data.

Contact us Terms of Service
Developer Ready v1 
curl -X GET "https://api.yourdomain.com/geocode/search?q=Berlin" \
  -H "Authorization: Bearer API_KEY" \
  -H "Accept: application/json"
Effective Feb 4, 2026 Updated Feb 4, 2026

1. Introduction

This Privacy Policy explains how Manpreet Singh ("we," "us," "our") collects, uses, shares, and protects personal information when you use FastGeo (the "Service") at fastgeo.net.

We are committed to protecting your privacy and complying with applicable data protection laws, including the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

Key Principles:

  • We collect only the data we need to provide and improve the Service
  • We do not sell personal data
  • We do not display advertisements
  • We secure your data with industry-standard practices
  • You have control over your data

2. Data Controller Information

Data Controller: Manpreet Singh
Location: Italy
Contact Email: visifan.co@gmail.com
Service Name: FastGeo
Website: fastgeo.net

3. Information We Collect

3.1 Information You Provide

Account Information:

  • Full name
  • Email address
  • Password (stored as encrypted hash)
  • Account preferences and settings

Payment Information:

  • Billing name and address
  • Payment method details (processed and stored by Stripe, our payment processor)
  • We do not store full credit card numbers

API Keys:

  • API keys you generate
  • Security settings (domain restrictions, IP whitelists, rate limits)
  • Key usage statistics

Communication Data:

  • Messages you send through contact forms
  • Support inquiries and correspondence
  • Feedback and survey responses

3.2 Information We Collect Automatically

Usage Data:

  • API request logs (timestamps, request counts, response times)
  • Request parameters (addresses, coordinates submitted to the API)
  • Response data and status codes
  • IP addresses
  • User agent strings (browser and device information)
  • Referrer URLs

Technical Data:

  • Device type and operating system
  • Browser type and version
  • Time zone settings
  • Screen resolution

Cookies and Similar Technologies:

  • Session cookies (required for authentication)
  • Security cookies (CSRF protection)
  • Preference cookies (language, theme settings)
  • Google reCAPTCHA data (for form spam protection)

3.3 Information from Third Parties

Payment Data: We receive payment confirmation and billing information from Stripe when you purchase a subscription.

reCAPTCHA Data: Google reCAPTCHA may collect device and interaction data to verify you are human.

Geocoding Data Providers: We may share location queries with external geocoding data providers to return results. We do not create the underlying source data.

4. How We Use Your Information

We process personal data for the following purposes and legal bases:

4.1 Service Delivery (Performance of Contract)

  • Create and manage your account
  • Authenticate your identity
  • Process API requests
  • Generate and manage API keys
  • Provide customer support
  • Send transactional emails (account notifications, password resets, billing updates)

4.2 Billing and Payments (Performance of Contract / Legal Obligation)

  • Process subscription payments
  • Calculate metered usage and overage charges
  • Generate invoices and receipts
  • Comply with tax and accounting requirements

4.3 Security and Fraud Prevention (Legitimate Interests / Legal Obligation)

  • Detect and prevent unauthorized access
  • Identify and block abusive or fraudulent activity
  • Monitor for security threats
  • Enforce rate limits and usage policies
  • Comply with legal obligations

4.4 Service Improvement (Legitimate Interests)

  • Analyze usage patterns to improve performance
  • Identify and fix bugs
  • Develop new features
  • Optimize API response times
  • Cache geocoding results for efficiency

4.5 Communication (Legitimate Interests / Consent)

  • Respond to your inquiries
  • Send important service updates
  • Notify you of Terms or Privacy Policy changes
  • Send optional marketing communications (with your consent)

4.6 Legal Compliance (Legal Obligation)

  • Comply with applicable laws and regulations
  • Respond to lawful requests from authorities
  • Protect our legal rights and interests

4.7 Analytics (Consent - If Implemented)

  • We do not currently use analytics services
  • If we implement analytics in the future (e.g., Matomo), we will obtain your consent where required

5. How We Share Your Information

We do not sell, rent, or trade personal information. We share data only in the following limited circumstances:

5.1 Service Providers

We share data with trusted third-party service providers who assist us in operating the Service:

Stripe (Payment Processing):

  • Purpose: Process payments, manage subscriptions
  • Data shared: Name, email, billing address, payment method
  • Location: United States (GDPR-compliant via Standard Contractual Clauses)
  • Privacy Policy: https://stripe.com/privacy

Google reCAPTCHA (Spam Protection):

Hosting Providers:

  • Purpose: Host the Service and database
  • Data shared: All service data
  • Location: May be located in EU or outside EU with appropriate safeguards

Geocoding Data Providers:

  • Purpose: Return geocoding results for your requests
  • Data shared: Address or coordinate queries and related metadata
  • Location: May be located in EU or outside EU

5.2 Legal Requirements

We may disclose personal information if required by law, court order, or government authority, or to:

  • Comply with legal processes
  • Enforce our Terms of Service
  • Protect our rights, property, or safety
  • Protect the rights, property, or safety of our users or the public

5.3 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, personal information may be transferred. We will provide notice and choices regarding such transfers.

6. International Data Transfers

We operate the Service globally and may process data in countries outside the European Economic Area (EEA) or your country of residence.

When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions by the European Commission
  • Other legally compliant transfer mechanisms

7. Data Retention

We retain personal data only as long as necessary for the purposes described in this Privacy Policy or as required by law.

Retention Periods:

  • Account Data: Retained until you delete your account, then deleted within 30 days
  • API Keys: Retained while active; deleted immediately upon revocation
  • Usage Logs: Retained for 12 months for security, fraud prevention, and service improvement
  • Payment Records: Retained for 7 years to comply with tax and accounting regulations
  • Support Communications: Retained for 2 years to maintain service quality
  • Cached Geocoding Results: Retained for up to 90 days to improve performance
  • Deleted Account Data: Permanently deleted within 30 days, except as required by law

After retention periods expire, we securely delete or anonymize personal data.

8. Your Rights Under GDPR (EU/EEA/UK Residents)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, you have the following rights:

Right of Access: You can request a copy of the personal data we hold about you.

Right to Rectification: You can request that we correct inaccurate or incomplete data.

Right to Erasure (Right to be Forgotten): You can request that we delete your personal data in certain circumstances.

Right to Restriction: You can request that we restrict processing of your personal data in certain circumstances.

Right to Data Portability: You can request a copy of your data in a structured, machine-readable format.

Right to Object: You can object to processing based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent: If processing is based on consent, you can withdraw consent at any time.

Right to Lodge a Complaint: You can file a complaint with your local data protection authority.

To Exercise Your Rights:

  • Email us at visifan.co@gmail.com
  • Use your account dashboard to update, export, or delete data
  • We will respond to your request within 30 days

9. Your Rights Under CCPA (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

Right to Know: You can request information about the personal data we collect, use, and disclose.

Right to Delete: You can request deletion of your personal data, subject to certain exceptions.

Right to Opt-Out: We do not sell personal data, so there is no need to opt-out of sales.

Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

Categories of Personal Information Collected:

  • Identifiers (name, email, IP address)
  • Commercial information (subscription, usage)
  • Internet activity (API requests, logs)
  • Inferences (service preferences)

To Exercise Your Rights:

  • Email us at visifan.co@gmail.com with your request
  • We will verify your identity and respond within 45 days

10. Security Measures

We implement reasonable technical and organizational measures to protect personal data against unauthorized access, loss, misuse, or alteration:

Technical Measures:

  • HTTPS/TLS encryption for data in transit
  • Encrypted storage for sensitive data (passwords, API keys)
  • Secure authentication (hashed passwords, session management)
  • Regular security updates and patches
  • Rate limiting and abuse detection
  • Firewall and intrusion detection systems

Organizational Measures:

  • Access controls and least-privilege principles
  • Regular security audits
  • Incident response procedures
  • Secure development practices

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

11. Children's Privacy

The Service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16.

If we learn that we have collected personal information from a child under 16, we will delete it promptly. If you believe we may have collected information from a child, please contact us at visifan.co@gmail.com.

12. Cookies and Tracking Technologies

We use cookies and similar technologies to provide, secure, and improve the Service. For detailed information about the cookies we use, please see our Cookie Policy.

Essential Cookies: Required for authentication and security (cannot be disabled).

Functional Cookies: Remember your preferences and settings.

reCAPTCHA: Google reCAPTCHA is used on forms to prevent spam and abuse.

Managing Cookies: You can control cookies through your browser settings, but disabling essential cookies may prevent you from using the Service.

13. Third-Party Links

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

14. Do Not Track Signals

Some browsers transmit "Do Not Track" (DNT) signals. We do not currently respond to DNT signals because there is no industry standard for how to interpret them.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons.

Notice of Changes:

  • We will update the "Last Updated" date at the top of this policy
  • For material changes, we will notify you by email or by displaying a prominent notice in the Service
  • Your continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy

Reviewing Changes: We encourage you to review this Privacy Policy periodically.

16. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: visifan.co@gmail.com
Data Controller: Manpreet Singh
Location: Italy
Service: FastGeo (fastgeo.net)

For GDPR Requests: Include "GDPR Request" in the email subject line.
For CCPA Requests: Include "CCPA Request" in the email subject line.

We will respond to your inquiry within 30 days (or 45 days for CCPA requests).