Privacy Policy

1. Introduction

iSeer ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI visibility intelligence platform.

Data Controller: iSeer is the data controller responsible for your personal data.

2. Information We Collect

2.1 Information You Provide

• Domain Names: Domains you submit for visibility analysis
• Account Information: Email address, password (hashed), subscription status (Pro users only)
• Payment Information: Processed securely by Stripe; we do not store full credit card numbers
• Notification Preferences: Email and Slack webhook URLs for alerts
• API Keys: Encrypted API keys if you provide your own (optional)

2.2 Automatically Collected Information

• Visibility Reports: AI responses, scores, and analysis results
• Usage Data: Features used, reports generated, fix tracker interactions
• Technical Data: IP address, browser type, device information, session data
• Analytics: Page views, click events, conversion funnels (anonymized where possible)
• Cookies: Session cookies, preference cookies, analytics cookies (see Section 8)

2.3 Third-Party Data

• AI Platform Responses: Data from OpenAI, Anthropic, and Perplexity APIs
• Bot Detection: AI crawler visits to your website (public information)

3. How We Use Your Information

3.1 Service Provision

• Generate visibility reports across AI platforms
• Calculate vision scores and provide recommendations
• Run scheduled daily checks (Pro users)
• Send email and Slack alerts for score changes
• Track fix implementation progress
• Visualize trends over time

3.2 Account Management

• Create and authenticate user accounts
• Process subscription payments
• Provide customer support
• Send transactional emails (password resets, billing notifications)

3.3 Service Improvement

• Analyze usage patterns to improve features
• Optimize AI prompt effectiveness
• Debug errors and fix bugs
• Develop new features based on user behavior

3.4 Marketing (Opt-In Only)

• Send product updates and tips (if you opt in)
• Announce new features and improvements
• Share AI visibility best practices

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), UK, or Switzerland, we process your personal data based on:

• Contract Performance: Providing the Service you signed up for
• Legitimate Interests: Improving the Service, preventing fraud, ensuring security
• Consent: Marketing emails, optional analytics cookies (you can withdraw anytime)
• Legal Obligation: Complying with tax laws, responding to lawful requests

5. Data Sharing and Disclosure

5.1 Third-Party Service Providers

We share data with trusted vendors who help us operate the Service:

• AI Platforms: OpenAI, Anthropic, Perplexity (to generate reports)
• Payment Processing: Stripe (for billing and subscriptions)
• Email Delivery: Resend (for alerts and notifications)
• Database Hosting: [Your database provider] (for data storage)
• Analytics: [Analytics provider if applicable] (for usage insights)
• Job Scheduling: Inngest (for daily checks and alerts)

These providers are contractually obligated to protect your data and use it only for specified purposes.

5.2 Business Transfers

If we are acquired, merge with another company, or sell assets, your data may be transferred to the new entity. We will notify you before your data is transferred and becomes subject to a different privacy policy.

5.3 Legal Requirements

We may disclose your data if required by law, such as:

• Responding to court orders or subpoenas
• Complying with regulatory investigations
• Protecting our rights, property, or safety
• Preventing fraud or illegal activity

5.4 No Sale of Personal Data

We do NOT sell your personal data to third parties.

6. Data Retention

6.1 Active Accounts

• Account Data: Retained while your account is active
• Visibility Reports: 24 hours (cached), then aggregated for trends
• Historical Checks: Retained indefinitely for trend analysis (Pro users)
• Fix Tracker Data: Retained while active or until deleted by you

6.2 Deleted Accounts

• Personal Data: Deleted within 30 days of account closure
• Anonymized Data: May be retained for analytics (no personal identifiers)
• Legal Retention: Some data retained for tax/legal compliance (up to 7 years)

7. Your Rights (GDPR & CCPA)

7.1 Access and Portability

You have the right to request a copy of your personal data in a machine-readable format.

7.2 Correction

You can update your account information at any time through your dashboard or by contacting support.

7.3 Deletion (Right to be Forgotten)

You can request deletion of your account and personal data. Some data may be retained for legal compliance.

7.4 Opt-Out of Marketing

Unsubscribe from marketing emails using the link in each email or update preferences in your account.

7.5 Object to Processing

You can object to processing based on legitimate interests. We will cease processing unless we have compelling legal grounds.

7.6 Restrict Processing

You can request temporary restriction of processing while we verify accuracy or assess legal grounds.

7.7 Withdraw Consent

Where processing is based on consent, you can withdraw it at any time without affecting prior processing.

7.8 Lodge a Complaint

You have the right to lodge a complaint with your local data protection authority if you believe we've violated data protection laws.

To exercise your rights, email: privacy@iseer.app

8. Cookies and Tracking

8.1 Essential Cookies

• Session Cookies: Keep you logged in (required)
• Security Cookies: Prevent CSRF attacks (required)

8.2 Functional Cookies

• Preference Cookies: Remember your settings (optional, requires consent)

8.3 Analytics Cookies

• Usage Analytics: Understand how users interact with the Service (optional, requires consent)

8.4 Managing Cookies

You can manage cookie preferences through our cookie banner or your browser settings. Note that disabling essential cookies may prevent you from using certain features.

9. Data Security

We implement industry-standard security measures:

• Encryption: Data encrypted in transit (TLS/SSL) and at rest
• Password Security: Passwords hashed with bcrypt
• API Key Protection: User API keys encrypted with AES-256
• Access Controls: Role-based access to production systems
• Monitoring: Automated alerts for suspicious activity
• Backups: Regular encrypted backups

Note: No system is 100% secure. We cannot guarantee absolute security but take all reasonable precautions.

10. International Data Transfers

Your data may be processed in countries outside your residence, including the United States. We ensure adequate protection through:

• Standard Contractual Clauses (SCCs) with third-party processors
• EU-U.S. Data Privacy Framework compliance (where applicable)
• Adequacy decisions recognized by the European Commission

11. Children's Privacy

The Service is not intended for users under 16 years old. We do not knowingly collect data from children. If you believe we have inadvertently collected data from a child, contact us immediately.

12. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to Know: What personal information we collect and how it's used
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: We do not sell personal data, so opt-out is not applicable
• Right to Non-Discrimination: We will not discriminate for exercising your rights

To exercise your rights, email: privacy@iseer.app with "CCPA Request" in the subject line.

13. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will:

• Post the updated policy on this page
• Update the "Last updated" date
• Notify you by email (for material changes affecting Pro users)
• Obtain consent if required by law

Your continued use of the Service after changes become effective constitutes acceptance of the updated policy.

14. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, contact us at:

• Email: privacy@iseer.app
• Data Protection Officer: dpo@iseer.app
• Website: https://iseer.app/legal/privacy

Summary (Not Legal Advice): We collect domain names, account info, and usage data to provide the Service. We use AI platforms (OpenAI, Anthropic, Perplexity) to generate reports. We don't sell your data. You can request access, correction, or deletion anytime. We use cookies for essential functions and analytics (with consent).