Privacy Policy

Julio (julioseo.co) is an AI SEO content platform operated by Dashboard Daddy Ltd, a company registered in the United Kingdom (“Julio”, “we”, “us”). For the personal data described in this policy, Dashboard Daddy Ltd is the data controller. You can reach us at privacy@julioseo.co.

Where you use Julio on behalf of an agency and load your clients’ websites into it, you are responsible for having the right to share that data with us; we process it on your instructions to provide the service.

Information you give us

• Account details: your name, email address and password (passwords are hashed — we never see them).
• Onboarding answers: how you heard about us, the kind of business you run, your goals, topics to avoid.
• Billing details: handled entirely by Stripe — your card number never touches our servers.
• Anything you type to Julio in chat.

Information about your website

• Your domain and publicly available website content, which we read (via the Firecrawl scraping service) to understand your business, brand voice and existing pages.
• Brand assets you upload or we extract — logos, colours, reference images.
• Content Julio produces for you — research briefs, drafts, published posts, reports.

Connected services (only if you connect them)

• Google Search Console: OAuth tokens (stored encrypted) and your search analytics — queries, clicks, impressions and ranking positions. See section 5 for exactly how we handle Google data.
• Your CMS (WordPress, Shopify, Webflow or Framer): credentials or API tokens (stored encrypted) used solely to publish and update the content you approve.

Information collected automatically

• Essential session cookies that keep you signed in (see section 8 — we run no advertising trackers).
• Basic technical logs and error reports (via Sentry) to keep the service reliable.

• To run your content engine: researching keywords, planning strategy, writing drafts, publishing what you approve, and measuring results.
• To personalise output to your brand: voice, positioning, audiences, words to avoid.
• To show you your own performance data: rankings, traffic, AI-answer visibility.
• To operate the account: authentication, billing, support, service emails.
• To keep the service secure and debug failures.

We do not sell personal data, share it with data brokers, or use it for advertising of any kind.

• Contract — almost everything above: we process your data because that is the service you signed up for.
• Consent — connecting Google Search Console or a CMS is always your explicit choice, revocable at any time from Settings.
• Legitimate interests — service security, error monitoring, and improving reliability, balanced against your rights.
• Legal obligation — tax and accounting records relating to billing.

If you connect Google Search Console, we request the minimum read-only scope needed to fetch your search analytics. We use that data to: build your content plan from your real rankings, track how published content performs, find reoptimisation opportunities, and render your analytics dashboards. OAuth tokens are stored encrypted, are never exposed to your browser, and are deleted when you disconnect Google or delete your account. We do not transfer Google user data to third parties except the infrastructure subprocessors in section 7 (acting on our instructions), never use it for advertising, and never allow humans to read it except for security, compliance, or with your explicit consent for support.

Julio’s use of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Julio is an AI product. Your website content, business context and (where connected) search data are sent to Anthropic’s Claude models to research, plan, write and analyse on your behalf. Our agreement with Anthropic does not permit your data to be used to train their models. Keyword, ranking and AI-visibility lookups are performed through DataForSEO using search terms and your domain — not your personal details.

Julio makes automated editorial suggestions and drafts — but decisions with real consequences stay with you: nothing is published to your site without a human (you, or autopilot settings you explicitly enabled) standing behind it. We make no automated decisions about you that produce legal or similarly significant effects.

We share data only with the services that run Julio, each bound by contract to process it solely on our instructions:

Some providers process data outside the UK (largely in the US and EU). Where they do, transfers are covered by UK International Data Transfer Agreements, EU Standard Contractual Clauses, or adequacy decisions (such as the UK–US Data Bridge).

Julio uses strictly necessary cookies only: encrypted session cookies that keep you signed in, and security tokens that protect OAuth flows. We run no advertising, analytics or cross-site tracking cookies, which is why you don’t see a cookie banner.

• Account and workspace data: for as long as your account is active.
• Deleting a site removes its content, credentials and connected-service tokens.
• Deleting your account deletes your personal data within 30 days, except billing records we must keep for UK tax law (6 years) and minimal logs kept briefly for security.
• Disconnecting Google or a CMS deletes the stored tokens immediately.

All traffic is encrypted in transit (TLS) and data is encrypted at rest. OAuth tokens and CMS credentials are additionally encrypted at the application layer and isolated from browser-facing code. Access to production data is restricted, logged, and protected by row-level security so each workspace can only ever see its own data. No system is perfectly secure — if a breach affects you, we will notify you and the ICO as UK GDPR requires.

Under UK GDPR you can, at any time:

• Access a copy of your personal data
• Correct it, delete it, or restrict how we use it
• Export it in a portable format
• Object to processing based on legitimate interests
• Withdraw any consent (e.g. disconnect Google) without affecting the rest of the service

Email privacy@julioseo.co and we’ll respond within one month. If you’re unhappy with our answer, you can complain to the UK Information Commissioner’s Office at ico.org.uk.

Julio is a business tool and is not directed at children. We do not knowingly collect data from anyone under 18.

When we make material changes we’ll update the date at the top and notify account holders by email or in-app before the changes take effect. Continued use after that date means the updated policy applies.

Dashboard Daddy Ltd · privacy@julioseo.co