Privacy Policy
Short version: We do not store your GIS data. Files you upload are deleted from our servers immediately after the import or export operation completes. We collect only what is necessary to run your account and process payments.
1. Who we are
GISGP ("we", "us", "our") operates the web platform at gisgp.com, providing ArcGIS Online data exchange and GIS utility tools. For questions about this policy, contact us at .
2. Data we collect
We collect the minimum necessary to provide the service:
- Account data: email address, bcrypt-hashed password (we never store your plaintext password), plan type, usage counters (imports_used, exports_used).
- Billing data: Stripe customer ID. Payment card details are processed exclusively by Stripe and never touch our servers.
- Usage metadata: operation type (import/export), timestamp, record count. No file content is retained.
- Session cookie: an HttpOnly JWT cookie used to authenticate your browser session. It contains only your internal user ID.
We do not collect: IP addresses for profiling, browser fingerprints, advertising identifiers, or data about how you use ArcGIS Online beyond what you explicitly submit through GISGP.
3. Your GIS data — zero retention
Files you upload (Excel, CSV, KML, Shapefile, photos) are stored temporarily in AWS S3 only for the duration of the operation. They are deleted immediately after the import or export completes — typically within seconds. We do not read, analyse, or retain the content of your GIS data.
Your ArcGIS Online token is transmitted to our backend to authenticate requests to AGOL on your behalf. It is never logged or stored in our database.
4. How we use your data
- To authenticate and manage your account
- To enforce plan limits and track usage
- To process subscription payments via Stripe
- To send transactional emails (welcome email, payment receipts) — never marketing without your consent
5. Third-party services
- AWS (Amazon Web Services): temporary file storage (S3), email sending (SES), and compute (Lambda). AWS infrastructure is located in the EU West (Ireland) region.
- Stripe: payment processing. Subject to Stripe's privacy policy.
- Anthropic (Claude API): AI field mapping (Pro+ plans only). Only field names and schema metadata are sent — never the content of your data rows.
- ESRI ArcGIS Online: requests are made to your AGOL services on your behalf using your token. ESRI's own privacy policy governs those interactions.
6. Cookies
We use one essential cookie:
token— HttpOnly, Secure, SameSite=Lax — your session JWT. Required for authentication. Cannot be accessed by JavaScript.
We do not use tracking cookies, advertising cookies, or third-party analytics (e.g. Google Analytics).
7. Data retention
- Account data: retained while your account is active, then deleted within 30 days of account deletion.
- Uploaded files: deleted immediately after processing (seconds).
- Usage logs: aggregated counters only; no raw log lines retained beyond 90 days.
8. Your rights (GDPR)
If you are located in the European Economic Area, you have the right to:
- Access — request a copy of the personal data we hold about you.
- Correction — request correction of inaccurate data.
- Deletion — request deletion of your account and all associated data.
- Portability — receive your data in a structured, machine-readable format.
- Objection — object to processing where we rely on legitimate interests.
To exercise any of these rights, email . We will respond within 30 days.
9. Data security
All data is transmitted over HTTPS/TLS. Passwords are stored using bcrypt with a random salt. AWS S3 objects use server-side encryption. We do not share your data with third parties except as described in Section 5.
10. Children
GISGP is not directed at children under 16. We do not knowingly collect data from children.
11. Changes to this policy
We may update this policy. Material changes will be notified by email to registered users. Continued use of GISGP after changes constitutes acceptance of the updated policy.