← AICite

Privacy Policy

Last updated: April 29, 2026

1. What we collect

AICite is an AI-search visibility audit tool. We collect the minimum data needed to operate it:

  • URLs you submit for audit — stored alongside the audit results so you can view and share them.
  • Account information (registered users only) — email address, optional name and avatar from Google OAuth, account creation date.
  • Hashed IP address — for anonymous rate limiting only. We hash with a project secret so the raw IP is never stored.
  • Audit costs and metadata — for unit-economics tracking. No personal info.

2. What we do NOT collect

  • We do not store raw IP addresses.
  • We do not use third-party advertising trackers.
  • We do not sell your data to anyone, ever.
  • We do not access content of any URL beyond what you explicitly submit.

3. Third parties we use

To operate the audit, we send the public content of the URLs you submit, plus generated queries about them, to these AI providers:

  • OpenAI (ChatGPT) — query generation and engine query.privacy
  • Anthropic (Claude) — engine query, citation extraction, fix generation.privacy

We also use the following infrastructure providers, who only see encrypted traffic and basic operational metadata:

  • Vercel (hosting)
  • Turso (database)
  • Trigger.dev (background jobs)
  • Resend (transactional email — sign-in links)
  • Cloudflare (DNS, anti-bot captcha)
  • Sentry (error monitoring)

4. Cookies

We use a small number of essential cookies to keep you signed in and to enforce rate limits. We do not use any cookies for advertising, profiling, or cross-site tracking.

5. How long we keep data

  • Anonymous audits — kept 30 days, then automatically deleted.
  • Registered-user audits — kept until you delete them or close your account.
  • Account data — kept until you delete your account.

6. Your rights (GDPR / CCPA)

You can:

  • Access your data — visible in your dashboard.
  • Correct your data — via account settings.
  • Delete your account and all related data — by emailing heloqui@gmail.com. We delete within 30 days.
  • Export your data — request via the same email.

7. Public sharing

Every completed audit produces a public URL of the form https://aicite.app/r/<token>. Anyone with this token can view the audit results. The token is unguessable but if you share it, anyone can see the audit. If you want a result private, do not share its token.

8. Changes to this policy

If we make material changes, we will update the “Last updated” date and notify registered users by email at least 14 days before changes take effect.

9. Contact

Questions? Email heloqui@gmail.com.