NiceLookingData (“we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy explains how your personal information is collected, used, and disclosed when you use the service.
1. Information we collect
We collect information you provide directly to us when you create an account. This includes your Google Account email address, display name, and avatar picture via Google OAuth. We also collect usage data to improve our service using privacy-preserving analytics.
2. Google API services usage
Our service uses Google OAuth to access your Google Analytics 4 (GA4) and Google Tag Manager (GTM) configurations. Audits use this access in a read-only capacity to scan for misconfigurations and generate health reports. For the optional GTM fix feature, we additionally request tagmanager.edit.containers and tagmanager.edit.containerversions; these scopes are only exercised when you explicitly click "apply fix" on a finding, and every fix ships to a shadow workspace on your own account that you review and publish yourself. We never request tagmanager.publish, so we cannot push to your live container. We never access, process, or store your website visitors' PII (Personally Identifiable Information) or raw analytics event data.
Google API Services User Data Policy: NiceLookingData's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
3. AI features
Our Pro AI features (executive summaries, action plans, code fixes, and the “Ask Anything” assistant) send configuration-derived audit findings and the questions you type into those features to Google's Gemini API (Generative Language API) to generate the response. We send no website-visitor PII and no raw analytics events — only the findings produced from your configuration plus your own typed questions. Google's paid Generative AI API does not use data submitted through it to train its models. See our Data Processing Agreement for the full sub-processor list.
4. Data retention and security
Raw GA4 and GTM API payloads are discarded immediately after analysis — we do not store your underlying configuration data. We do retain your audit results (the detailed check findings, statuses, and score history that power your trend charts, share links, PDF exports, and the AI assistant) and your account profile (email, display name, avatar, and an AES-256-GCM-encrypted copy of your Google refresh token). This data is stored securely in Firestore and is retained for as long as your account remains active, so your history and trends stay available to you.
You can request access to, export of, or permanent deletion of this data at any time by emailing privacy@nicelookingdata.com. We action verified requests — including full erasure of your account and audit history — within 30 days. We implement industry-standard encryption to protect your account information.
5. Cookies and tracking
Essential cookies. We use essential cookies to maintain your authenticated session. These are required for the Service to function.
Product analytics. Our marketing and product pages load Google Tag Manager and Google Analytics 4 (GA4) to understand how visitors use the site so we can improve it. GA4 sets first-party analytics cookies — typically _ga and _ga_<container-id> — which store a randomly generated identifier used to measure aggregate page views, sessions, and traffic sources. We do not use this data to identify you personally or to sell your information.
Your choices.You can block or delete these cookies at any time using your browser's privacy controls, and a consent banner offering granular opt-in/opt-out is being rolled out. Blocking analytics cookies does not affect your ability to use the Service.
6. Contact us
If you have any questions about this Privacy Policy, please contact us at hello@nicelookingdata.com.