Privacy Policy

We collect the following categories of information:

Account information — When you register, we collect information such as your name, email address, authentication identifiers (e.g., via Google OAuth), and organization details for team or Enterprise accounts.

Audit data — Brand names, domains, competitor names, audit responses, gap analyses, action plans, and related content you enter or generate in the Service.

• Free and Pro plans: Audit data is stored primarily in your browser's local storage on your device. You control this data; clearing browser storage or uninstalling may delete it. We do not persistently host your full audit dataset on our servers for these tiers unless you explicitly enable cloud sync features described at purchase.
• Enterprise plan: Audit data and team workspace content are stored in encrypted cloud infrastructure with SOC 2-aligned controls, as described in your Enterprise agreement.

Usage data — Features used, pages visited, audit frequency, error logs, device/browser type, and approximate location derived from IP address for security and analytics.

Payment information — Paid subscriptions are processed by Stripe. We receive billing status, subscription tier, and limited payment metadata (e.g., last four digits of card, expiration) but do not store full payment card numbers on our servers.

For users in the EEA, UK, and Switzerland, we process personal data on the following lawful bases: performance of our contract with you, legitimate interests in operating and securing the Service (balanced against your rights), compliance with legal obligations, and consent where required (e.g., non-essential cookies or marketing).

We use information to:

• Provide, operate, and maintain the Service, including AI visibility audits
• Authenticate users and secure accounts
• Process subscriptions and send transactional communications about your account
• Improve features, fix bugs, and develop new functionality
• Generate aggregate, de-identified analytics about product usage (see opt-out below)
• Comply with legal obligations and enforce our Terms of Service

We do not sell your personal information. We do not share personal information for cross-context behavioral advertising as defined under the California Consumer Privacy Act (CCPA/CPRA).

Anonymous analytics opt-out: You may opt out of non-essential, aggregated usage analytics in account settings or by contacting privacy@aisearchrank.ai. Essential security and operational logging may still apply.

Free and Pro — local control: Your audit progress, gaps, and action plans are stored in localStorage (or similar browser mechanisms) on your device. You are responsible for backups and for data if you switch browsers or devices. We cannot recover locally stored data if you clear your browser storage.

Enterprise — cloud storage: Customer data is stored in encrypted cloud databases with access controls, audit logging, and security practices designed to align with SOC 2 Type II requirements. Subprocessors and processing regions are listed in your Enterprise Data Processing Agreement.

We implement administrative, technical, and organizational measures appropriate to the risk, including encryption in transit (TLS), access restrictions, and employee training. No method of transmission or storage is 100% secure.

Data retention:

• Account data: retained while your account is active and as needed for legal obligations
• Free/Pro audit data: retained on your device until you delete it
• Enterprise workspace data: per your contract and deletion request procedures
• Logs and backups: retained for 30–90 days unless a longer period is required by law

To provide audits and integrations, we may send necessary data to third-party providers when you use those features or supply your own API keys. These include:

• OpenAI — ChatGPT API for Clarity layer queries
• Perplexity — Perplexity API for search and answer comparison
• Anthropic — Claude API for Clarity analysis
• Google — Gemini API and related Google services (e.g., Knowledge Graph where configured)
• DataForSEO — SEO and SERP data
• Keywords Everywhere — keyword metrics
• Trends MCP — trend and topic signals
• Keepa — product and pricing context where enabled
• Stripe — payment processing

Each provider processes data under its own privacy policy and terms. When you connect your API keys, requests may go from our servers to that provider using credentials you control. A current list of subprocessors is available upon request at privacy@aisearchrank.ai and is provided to Enterprise customers in their Data Processing Agreement.

We use cookies and similar technologies to:

• Keep you signed in (session and authentication cookies)
• Remember preferences and onboarding state
• Measure product usage and performance (analytics cookies, where permitted)

You can control cookies through your browser settings. Disabling essential cookies may limit Service functionality. Visitors from the EEA, UK, and Switzerland are presented with cookie choices for non-essential tracking where required by law.

Depending on your location, you may have rights regarding your personal information, including:

• Access — Request a copy of personal data we hold about you
• Correction — Request correction of inaccurate data
• Deletion — Request deletion of your account and associated cloud data (Free/Pro local data can be cleared in your browser)
• Data portability — Request export of your data in a machine-readable format where technically feasible
• Opt-out of marketing — Unsubscribe from promotional emails via link in messages or by contacting us
• Opt-out of anonymous analytics — As described in Section 2

California residents (CCPA/CPRA): You have the right to know, delete, correct, and limit use of sensitive personal information. We do not sell personal information. California residents may submit requests through privacy@aisearchrank.ai or through an authorized agent with written permission.

EEA/UK residents (GDPR): You may lodge a complaint with your local supervisory authority. Our Data Protection Officer is reachable at dpo@aisearchrank.ai. Where required, we have appointed an EU representative for data protection inquiries in the European Union.

To exercise rights, email privacy@aisearchrank.ai. We respond within 30 days under GDPR and within 45 days under CCPA where applicable.

The Service is not directed to children under 13 years of age in the United States, or under 16 where that higher age applies in an EU member state without verifiable parental consent. We do not knowingly collect personal information from children. If you believe a child has provided us personal information, contact us and we will delete it promptly.

We are based in the United States. If you access the Service from outside the U.S., your information may be transferred to, stored, and processed in the U.S. and other countries where we or our subprocessors operate.

For transfers from the EEA, UK, or Switzerland, we use Standard Contractual Clauses (SCCs), the UK International Data Transfer Addendum where applicable, and supplementary measures as needed. Enterprise customers receive transfer details in their Data Processing Agreement.

We maintain incident response procedures designed to detect, contain, and remediate security incidents. If we become aware of a personal data breach likely to result in risk to your rights and freedoms, we will notify affected users and relevant supervisory authorities without undue delay and, where required by GDPR, within 72 hours of becoming aware of the breach.

Enterprise customers receive breach notification in accordance with the timelines specified in their Data Processing Agreement.

We may update this Privacy Policy to reflect changes in our practices or applicable law. We will post the revised policy on this page and update the "Last updated" date. Material changes will be communicated by email or in-product notice where required by law.

Your continued use of the Service after the effective date constitutes acceptance of the updated policy, unless applicable law requires your explicit consent.

For privacy questions, requests, or complaints:

• Company: AI Search Rank
• Website: aisearchrank.ai
• Privacy inquiries: privacy@aisearchrank.ai
• Data Protection Officer: dpo@aisearchrank.ai
• Contact form: aisearchrank.ai/contact