Protocol: PRIVACY_V2
Data Handling Specifications
// Executive Summary We are an observability tool, not an ad network. We process input vectors (Brand + URL + Keywords) to probe public AI models. We do not sell user data. We do not monetize your scan history.
01 Data Ingress
Scan Parameters
To execute `run_scan()`, we ingest:
- Target Entity Name
- Target URL Root
- Search Intent Keywords
Account Telemetry
To maintain session state and billing:
- Auth Tokens (Email/Password)
- Payment Methods (Processed via Razorpay/Paddle)
- Cookie Session IDs
02 External Egress
We transmit specific data packets to third-party endpoints to function.
| Destination Endpoint | Data Transmitted | Purpose |
|---|---|---|
| OpenAI / Anthropic / Google | Public Brand Name + URL | Inference execution (Scan) |
| Razorpay / Paddle | Billing Token | Payment processing |
| AWS / Vercel | Encrypted Application State | Hosting & DB persistence |
Security Note: We NEVER transmit personal user identifiers (PII) to AI model providers. Only the public entity data required for the scan.
03 Persistence & GC
Scan Logs
Retained for the duration of active subscription to compute historical visibility trends.
Garbage Collection
Upon account deletion call, all user PII is purged from primary DB within 72 hours. Backups cycle out within 30 days.
04 User Controls
You maintain root access to your data.