Privacy Policy

Updated September 21, 2025

1. Scope

This policy explains how we collect, use, disclose, and protect information about: (a) customers and users of the Service; and (b) data you connect for research and publishing. It does not cover third-party websites or services you link to.

2. Information We Collect (Minimal)

  • Account & Auth: name (optional), email, password hash or OAuth identifier.
  • Connected Properties: domains, sitemaps, feeds, and CMS/project IDs you link.
  • Operational Content: prompts/briefs, drafts and outputs we generate for you, publish logs, rollback snapshots.
  • Technical Logs: device/browser type, IP address, timestamps, event logs (for security and diagnostics).
  • Billing: handled by our payment processor; we do not store full card numbers.
  • Support: messages you send us (e.g., email, chat) and related metadata.

We do not collect your site visitors’ personal data via pixels or third-party scripts deployed by us.

3. How We Collect

  • Directly from you when you create an account, connect a site, configure settings, or contact support.
  • Automatically via limited cookies/local storage for authentication and session continuity.
  • From integrated services when you explicitly connect them (e.g., CMS APIs).

4. How We Use Information

  • Operate, secure, and maintain the Service (authentication, publishing, rollback, logs).
  • Research topics and produce drafts with citations and media at your request.
  • Communicate about your account, feature changes, and important updates.
  • Troubleshoot, prevent abuse, and improve reliability and performance.
  • Process billing and detect fraud.
  • Respect your settings for scheduling, localization, and publishing.

We do not use your prompts, drafts, or outputs to train public models unless you opt in. We may use anonymized, aggregated telemetry to improve features.

5. Cookies & Similar Technologies

We use essential cookies for login and session management. Optional analytics—if enabled—are limited and configured to avoid cross-site tracking. You can control cookies in your browser and, where provided, in-app settings.

6. Sharing & Disclosures

We share information only with:

  • Service Providers: hosting, AI model providers, email delivery, analytics (with IP truncation where applicable), and payment processors—bound by confidentiality and security obligations.
  • Business Transfers: if we undergo a merger, acquisition, or asset sale, your information may transfer under this policy.
  • Legal: when required to comply with law or protect rights and safety.

We do not sell personal information and do not “share” it for cross-context behavioral advertising (as defined by CPRA).

7. International Data Transfers

When information is transferred across borders, we use recognized safeguards (e.g., EU Standard Contractual Clauses) and require similar protections from our vendors.

8. Retention

  • Account data: retained while your account is active; deleted or anonymized within 90 days after closure.
  • Content and logs: retained per your workspace settings (default 180 days) or until you delete them.
  • Billing records: kept as required by law (often 7 years).
  • Backups: time-limited and automatically purged.

9. Security

We use industry-standard safeguards (encryption in transit, access controls, auditing). No system is perfectly secure. You are responsible for protecting credentials and any API keys you provide.

10. Your Rights & Choices

Depending on your location, you may have rights to:

  • Access, correct, or delete personal data;
  • Receive a copy (portability);
  • Object to or restrict certain processing;
  • Withdraw consent where processing relies on consent.

Requests: [email protected] We may verify your identity before fulfilling a request.

California (CPRA) Notices

  • No Sale/Sharing: We do not sell personal information or share it for cross-context behavioral advertising.
  • Sensitive Data: We do not use sensitive personal information for purposes other than those permitted by law.

EEA/UK (GDPR) Legal Bases

  • Contract: to provide the Service you request.
  • Legitimate Interests: security, diagnostics, product improvement (balanced and minimal).
  • Consent: optional analytics and marketing communications.
  • Legal Obligation: tax and compliance recordkeeping.

11. Children

The Service is not directed to children under 16 (or the age required in your region). We do not knowingly collect data from children.

12. Third-Party Sites & Integrations

Links and integrations are provided for convenience. Their privacy practices are their own; review their policies before enabling integrations or following links.

13. Changes to This Policy

We will post updates here and revise the Effective Date. If changes materially affect your rights, we will provide an in-app notice or email where appropriate.

14. Contact Us

Questions or requests about privacy:

Email: [email protected]

Mailing Address: 131 Continental Dr, Suite 305, Neward DE 19713, United States

Why our integrated approach delivers better results than managing multiple vendors

Need Help?

[email protected]

Company

PricingPrivacy PolicyTerms of Service
Copyright © Rank.ai All Rights Reserved.