MetriCore

Privacy Policy

Last updated: April 22, 2026

Overview

This Privacy Policy describes how MetriCore (“MetriCore,” “we,” “us,” “our”) collects, uses, stores, shares, and protects information when you use the MetriCore web application, related services, and our website at getmetricore.com (collectively, the “Service”).

By using the Service you agree to the collection and use of information in accordance with this policy.

Information We Collect

  • Account information — your name, email address, password hash, and organization membership.
  • Site configuration — the URLs, display names, and settings you add to MetriCore for sites you want to monitor.
  • Google API data — analytics and search metrics retrieved from Google Analytics and Google Search Console when you explicitly connect those services (see “Google API Services” below).
  • Usage and audit logs — request logs, sign-in events, and feature usage for security, reliability, and troubleshooting.
  • Cookies — a first-party session cookie used for authentication. We do not use advertising or cross-site tracking cookies.

How We Use Information

  • To provide, operate, and improve the MetriCore Service.
  • To authenticate you and enforce organization-level access controls.
  • To generate dashboards, reports, and recommendations inside your organization.
  • To detect, prevent, and respond to security incidents and abuse.
  • To communicate with you about the Service, including account and support messages.

Google API Services

If you connect your Google account, MetriCore accesses data on your behalf using the following OAuth scopes, all of which are read-only:

  • https://www.googleapis.com/auth/analytics.readonly — retrieve Google Analytics (GA4) metrics such as sessions, users, and engagement for sites you own or administer.
  • https://www.googleapis.com/auth/webmasters.readonly — retrieve Google Search Console performance data (clicks, impressions, queries, pages) for sites you own or administer.
  • openid, userinfo.email, userinfo.profile — verify your identity for sign-in and associate fetched data with your MetriCore account.

MetriCore’s use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically, we:

  • Use Google user data only to provide user-facing features of MetriCore.
  • Do not transfer Google user data to third parties except as necessary to run the Service.
  • Do not use Google user data to serve advertisements.
  • Do not allow humans to read Google user data, except with your explicit consent, when required for security, to comply with applicable law, or when the data has been aggregated and anonymized.
  • Do not use Google user data to develop, improve, or train generalized AI or machine learning models.

Data Storage, Retention, and Deletion

Tokens issued by Google are stored encrypted at rest. Analytics metrics are stored in our primary database and retained while your MetriCore account is active. You can disconnect Google at any time from the Settings page in MetriCore, which revokes our stored refresh token and stops further data collection.

You can delete your account by contacting support@getmetricore.com. On deletion we remove your account data, stored Google tokens, and associated site data within 30 days, except where we are required to retain records to meet legal or accounting obligations.

You may also revoke MetriCore’s access directly from your Google Account at myaccount.google.com/permissions.

Data Sharing

We do not sell or rent your data. We share information only with infrastructure providers that process data on our behalf (hosting, database, email delivery) under contractual confidentiality and security obligations, or when required to comply with applicable law.

Security

We use industry-standard safeguards including TLS in transit, encryption for sensitive fields at rest, scoped access controls, and audit logging. No method of transmission or storage is 100% secure; in the event of a breach we will notify affected users consistent with applicable law.

Children’s Privacy

MetriCore is intended for business users and is not directed to children under 13. We do not knowingly collect personal information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and revise the “Last updated” date above. Material changes will be communicated to account holders by email.

Contact

Questions or requests about this Privacy Policy or your data can be sent to support@getmetricore.com.