Privacy Policy

LocalThriver

Privacy Policy

Last updated: June 2026

 

1. Introduction

LocalThriver ('we', 'us', or 'our') is a digital marketing agency specialising in Google Business Profile optimisation for small and medium-sized businesses. We are based in Hungary and operate primarily in the United States market.

This Privacy Policy explains how we collect, use, store, and protect your personal data when you interact with our website, funnels, or services. We are committed to complying with the EU General Data Protection Regulation (GDPR) and the UK GDPR as applicable.

By submitting your information through any of our pages or forms, you acknowledge that you have read and understood this policy.

 

2. Data Controller

The data controller responsible for your personal data is:

LocalThriver

Email: hello@localthriver.com

If you have any questions about how we handle your personal data, please contact us at the email address above.

 

3. What Data We Collect

3.1 Lead Funnel (Prospective Clients)

When you submit an enquiry or opt-in through one of our landing pages or funnels hosted on Systeme.io, we collect:

  • Full name

  • Email address

  • Business name

  • City / location

  • Business type (e.g. hair salon, dental practice)

3.2 Onboarding Questionnaire (Active Clients)

Once you become a client, we collect additional information required to deliver the Google Business Profile optimisation service, including:

  • Detailed business information (hours, services, description, USPs)

  • Photos and images of your business

  • Google Business Profile access credentials or verification details

  • Any other business-specific data relevant to your GBP listing

3.3 Communications

If you communicate with us directly (e.g. by replying to an email), we may retain a record of that correspondence.

3.4 Website Analytics (Placeholder)

We intend to implement Google Analytics on our website in the future. When active, this tool will collect anonymised data about how visitors interact with our website, including pages visited, time on site, and approximate location. This section will be updated before any tracking is enabled. You will be given the opportunity to consent to analytics cookies at that time.

 

4. Legal Basis for Processing

Under the GDPR, we process your personal data on the following legal bases:

Contractual necessity (Article 6(1)(b)): Processing client data is necessary to deliver the Google Business Profile optimisation services you have engaged us for.

Legitimate interests (Article 6(1)(f)): We process lead data (name, email, business details) to follow up on enquiries and conduct outreach, as this is a proportionate and expected activity in the context of B2B marketing services.

Consent (Article 6(1)(a)): Where we send marketing emails, you will have the opportunity to opt out at any time. For cookies and analytics, we will obtain consent before enabling tracking on our website.

 

5. How We Use Your Data

We use the personal data we collect for the following purposes:

  • To respond to enquiries and follow up with prospective clients

  • To onboard and deliver Google Business Profile optimisation services to active clients

  • To send relevant marketing and outreach emails to prospective clients

  • To communicate updates, reports, and service-related information

  • To improve our services and funnel performance

  • To comply with legal and accounting obligations

 

6. Cold Email Outreach

We may contact business owners and decision-makers via cold email as part of our B2B marketing activity. This is conducted on the basis of legitimate interests. We only contact individuals who may have a genuine interest in our services, based on publicly available business information.

Every cold email we send includes a clear and easy way to opt out of future communications. If you wish to be removed from our outreach list at any time, simply reply to any email requesting removal or contact us at hello@localthriver.com.

We do not purchase mass email lists or engage in spam practices.

 

7. Data Storage and Third-Party Processors

Your data may be stored and processed by the following third-party platforms. Each is selected for their appropriate data protection standards:

Systeme.io

Our funnels and email automation are hosted on Systeme.io. Lead data collected through our pages is stored on their platform. Systeme.io is GDPR-compliant. More information is available at systeme.io/privacy-policy.

Proton Mail

We use Proton Mail (Switzerland) for all client and prospect email communications. Proton Mail is end-to-end encrypted and does not share user data with third parties. More information at proton.me/legal/privacy.

Google Analytics (Placeholder)

We intend to add Google Analytics to our website at a future date. Before this is enabled, this policy will be updated and an appropriate cookie consent mechanism will be implemented. Google Analytics may transfer data outside the EU/EEA. We will ensure appropriate safeguards are in place at the time of implementation.

We do not sell your personal data to any third party, ever.

 

8. International Data Transfers

We are based in Hungary (EU) and primarily serve clients in the United States. When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or reliance on the adequacy decisions of the European Commission.

By submitting your information, you acknowledge that your data may be processed in countries outside your own, including within the EU.

 

9. Data Retention

We retain your personal data only for as long as necessary:

  • Prospective client data (leads): deleted or anonymised after 12 months of inactivity.

  • Active client data: retained for the duration of the service engagement and thereafter as required by applicable accounting or legal obligations (typically 5 years in Hungary).

  • Email correspondence: retained for as long as reasonably necessary for business purposes.

You may request deletion of your data at any time (see Section 11).

 

10. Cookies

Our website pages hosted on Systeme.io may use essential cookies to function correctly (e.g. session management). These are necessary and do not require consent.

We plan to add Google Analytics in the future, which uses non-essential cookies. Before enabling these, we will implement a cookie consent banner that allows you to accept or decline analytics cookies. This policy will be updated accordingly.

You can manage or disable cookies at any time through your browser settings. Note that disabling essential cookies may affect how our pages function.

 

11. Your Rights Under GDPR

If you are located in the EU, UK, or another jurisdiction with equivalent rights, you have the following rights regarding your personal data:

  • Right of access: request a copy of the personal data we hold about you.

  • Right to rectification: request that we correct inaccurate or incomplete data.

  • Right to erasure ('right to be forgotten'): request deletion of your data, subject to legal retention obligations.

  • Right to restriction: request that we limit how we process your data.

  • Right to data portability: receive your data in a structured, machine-readable format.

  • Right to object: object to processing based on legitimate interests, including direct marketing.

  • Right to withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at hello@localthriver.com. We will respond within 30 days. You also have the right to lodge a complaint with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH) at naih.hu.

 

12. Data Security

We take reasonable technical and organisational measures to protect your personal data against unauthorised access, loss, or misuse. These include:

  • Use of encrypted email communications (Proton Mail)

  • Limiting access to personal data to those who need it to deliver the service

  • Regular review of which data we hold and how it is stored

No method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

 

13. Minors

Our services are directed solely at businesses and business owners. We do not knowingly collect personal data from individuals under the age of 18. If you believe we have inadvertently collected data from a minor, please contact us immediately at hello@localthriver.com and we will delete it promptly.

 

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, tools, or legal requirements. When we do, we will update the 'Last updated' date at the top of this document. We encourage you to review this policy periodically.

Material changes (such as enabling Google Analytics or adding new data processors) will be communicated where reasonably practicable.

 

15. Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or how we handle your data, please contact:

LocalThriver

Email: hello@localthriver.com

We are committed to resolving any privacy concerns promptly and transparently.

© 2026 Localthriver