1. Information We Collect
We collect information you provide directly: email address, name, and password when you create an account. If you sign in with Google, we receive your Google profile information (name, email, avatar). We also collect AI platform API keys you provide, which are encrypted at rest with AES-256-GCM.
2. How We Use Your Information
We use your information to provide and improve our service, send transactional emails (verification, password reset, billing receipts), and communicate important service updates. We do not sell your personal data.
3. Data Storage & Security
Your data is stored in PostgreSQL databases hosted on secure cloud infrastructure. API keys are encrypted using AES-256-GCM with a dedicated encryption key. Passwords are hashed using bcrypt. All connections use TLS encryption.
4. Cookies
We use essential httpOnly cookies for authentication (JWT tokens). These cookies are strictly necessary for the service to function. We do not use tracking or advertising cookies. See our Cookie Policy for details.
5. Third-Party Services
We integrate with: AI platform APIs (OpenAI, Anthropic, Google, Perplexity, xAI) to run visibility queries; Google OAuth for sign-in; DodoPayments for subscription billing; Resend/SendGrid for transactional emails.
6. Data Retention
Account data is retained while your account is active. API logs are retained for 7 days. Query run data is retained for 90 days. You can delete your account at any time, which removes all associated data.
7. Your Rights (GDPR/CCPA)
You have the right to access, correct, delete, and export your data. You can exercise these rights through your account settings or by contacting us at [email protected].
8. Contact
For privacy-related inquiries, contact us at [email protected].