GDPR & Data Processing
Last updated: 2026-06-21
Infonaut Ltd, trading as KnowLocal by GroLocal, is the data controller for personal data processed at knowlocal.io. We are registered with the UK Information Commissioner's Office (ICO), registration number ZC169421. This page summarises how we meet our obligations under the UK GDPR; the full detail is in our Privacy & Cookie Policy.
1. Lawful bases
| Processing | Lawful basis |
|---|---|
| Running and delivering the audit you requested | Performance of a contract / your request |
| Email verification, security and rate-limiting | Legitimate interests |
| Marketing emails | Consent (opt-in; withdraw any time) |
| Anonymised, aggregated benchmarks | Legitimate interests (data is anonymised) |
| Analytics cookies | Consent (via the cookie banner) |
2. Sub-processors
We use a small number of vetted processors, each under a data-processing agreement: Cloudflare (hosting, database, storage, email, AI gateway), Stripe (payments — we never receive or store card numbers), DataForSEO (public business-profile data), DeepSeek via Cloudflare AI Gateway (wording reports only), and Google Analytics (only with consent). Where processors operate outside the UK, transfers are covered by the UK International Data Transfer Agreement / Standard Contractual Clauses.
3. Your rights
You can ask us to access, correct, delete, restrict, object to, or port your data, and to withdraw consent at any time. Email privacy@knowlocal.io and we respond within one month. You can complain to the ICO at ico.org.uk.
4. Retention & security
We keep data only as long as needed (see Privacy & Cookie Policy for periods) and protect it as described on our Security page. We collect as little personal data as possible.
5. Data Protection contact
Infonaut Ltd, registered office: 14/2E Docklands Business Centre, London E14 8PX, United Kingdom. Data requests: privacy@knowlocal.io.
Questions about this page? Email privacy@knowlocal.io.