This policy explains what personal data NoBiggie collects when you use nobiggie.io, why we collect it, how we use it, and what rights you have over it. We follow the EU General Data Protection Regulation (GDPR) and the ePrivacy Directive.
The data controller responsible for your personal data is:
We have not appointed a Data Protection Officer because we do not meet the GDPR thresholds that require one.
We only collect data you actively give us, plus the minimum technical data needed to run the site.
From the audit form: your name, business name, email, phone (optional), business type, website URL, monthly revenue band, current AI usage, the workflows you want automated, the tools your business runs on, and your AI ambition level.
When you book a call: Cal.com handles the booking and asks for your name and email. They are an independent data controller for that booking; their privacy policy is at cal.com/privacy.
Automatically: standard server logs (IP address, browser, pages visited, referring URL, timestamp) and analytics cookies set by the Meta Pixel (see Section 8).
We do not collect special categories of data (health, religion, political views, etc.) and we ask you not to include them in free-text fields.
| Purpose | Legal basis |
|---|---|
| Generating your free AI audit and emailing it to you | Performance of a contract you requested (GDPR Art. 6(1)(b)) |
| Following up by email or phone about your audit | Legitimate interest in serving prospective clients (Art. 6(1)(f)) |
| Running the website, preventing abuse, debugging | Legitimate interest in keeping the service operational (Art. 6(1)(f)) |
| Meta Pixel advertising and conversion tracking | Your consent (Art. 6(1)(a)). You can decline at any time using browser controls or opting out at the source platform. |
We use the following subprocessors. Each is bound by their own GDPR obligations and only handles your data for the purpose listed.
| Subprocessor | What they do | Where |
|---|---|---|
| Vercel | Hosting the website and serving form submissions | USA (with EU edge) |
| Resend | Sending the audit and notification emails | EU (eu-west-1) |
| Upstash | Storing audit submissions in our database | EU region |
| Google (Generative AI) | Generating the personalised audit content via Gemini | USA / global |
| Firecrawl | Reading the public content of the website you submit, to inform the audit | USA |
| Cal.com | Scheduling calls if you book one | USA / EU |
| Meta (Facebook) | Advertising attribution and remarketing via the Meta Pixel | USA / global |
| Cloudflare | DNS, traffic protection, and forwarding inbound email | USA / global |
Some of the subprocessors above (notably Google, Meta, Cal.com, Vercel, Cloudflare, Firecrawl) process data in the United States. Where this happens, transfers are protected by the EU-U.S. Data Privacy Framework or the European Commission's Standard Contractual Clauses, as published by each provider.
Under the GDPR you have the right to:
To exercise any of these rights, email hello@nobiggie.io. We respond within 30 days.
We use the Meta Pixel (Facebook Pixel ID 6375474667) for advertising and conversion tracking. The Meta Pixel sets cookies in your browser that help Meta show our ads to people who have visited the site, and report on which actions led to a sign-up.
You can disable cookies in your browser settings, install a content blocker, or opt out of personalised advertising directly with Meta at facebook.com/help/568137493302217.
Your audit is generated by an AI model (Google Gemini) using the information you submit. The output is reviewed by a human at NoBiggie before any business decision affecting you is made. We do not make solely automated decisions that produce legal or similarly significant effects on you.
The site and our services are intended for businesses. We do not knowingly collect data from anyone under 16.
If we change this policy in any meaningful way, we will update the "Last updated" date at the top and, where required, notify you by email.
For any privacy question, write to hello@nobiggie.io.