Security and Compliance

1. Data Protection Principles

We follow key data protection principles, including:

• Collecting only the data needed to provide the Service.
• Using data in a fair and transparent way.
• Implementing reasonable technical and organisational measures to keep data secure.
• Honouring data subject rights in line with applicable law.

2. Technical Measures

We use modern cloud infrastructure, encryption in transit (HTTPS) and access controls to protect store data. Access to production systems is limited to authorised personnel.

3. White-Hat GEO

Geoffy is built around white-hat Generative Engine Optimisation practices:

• No hidden "bot-only" content or cloaking.
• No hallucinated product attributes; unknown values are left blank or null.
• Structured data is designed to match what shoppers can see.

4. Privacy and GDPR

ANT VENTURES LTD acts as a data controller for its own business data and as a data processor for certain merchant data. Our Privacy Policy and Data Processing Addendum provide more detail on roles and responsibilities.

5. Incident Response

We monitor for unusual activity and take reasonable steps to detect and respond to security incidents. If a breach affecting merchant personal data occurs, we will notify affected merchants without undue delay, in line with our legal obligations.

6. Contact

If you have questions about Geoffy's security or compliance posture, please contact legal@geoffy.net.