Legal

Privacy Policy

Last updated: April 12, 2026

1. Introduction

WhatSEO.ai ("WhatSEO", "we", "us", or "our") is an AI-powered SEO analysis platform. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website and services at whatseo.ai.

2. Information We Collect

2.1 Account Information

When you create an account, we collect your email address and name. If you sign in with Google, we receive your Google profile information (name and email) as authorized by you.

2.2 Website Data You Provide

When you use our audit service, you provide your website URL, and optionally: competitor URLs, priority pages, and a Google Analytics property ID. We use this data solely to perform SEO analysis on your behalf.

2.3 Google API Data

With your explicit consent, we access the following Google services using OAuth 2.0:

  • Google Search Console (read-only): We access your search performance data including queries, clicks, impressions, and page rankings for the last 90 days. This data is used exclusively within your SEO audit report.
  • Google Analytics (GA4) (read-only): We access your organic traffic data including sessions, engagement rates, and top landing pages. This data is used exclusively within your SEO audit report.

We request only read-only access. We never modify your Google Search Console or Analytics data. You can revoke access at any time from your Google Account permissions page.

2.4 Automatically Collected Data

We collect standard web analytics data including IP address, browser type, and pages visited. We use this to improve our service and do not sell this data to third parties.

3. How We Use Your Data

  • To perform SEO audits on websites you specify
  • To generate professional reports with your audit results
  • To send you audit reports via email
  • To display your audit history in your dashboard
  • To improve our analysis algorithms and service quality

We do not use your data for advertising, sell it to third parties, or share it with anyone outside of providing our service to you.

4. Data Storage and Security

Your data is stored securely using Supabase (PostgreSQL) with Row Level Security ensuring each user can only access their own data. All data is encrypted in transit using TLS 1.3. Google OAuth tokens are stored encrypted in our database and are used only to fetch data for your audits.

5. Data Retention

Audit results are retained for as long as your account is active. You can request deletion of your data at any time by contacting us. Google OAuth tokens are retained only while your Google integration is connected; disconnecting removes the tokens.

6. Third-Party Services

  • Supabase: Database hosting and authentication
  • Vercel: Application hosting
  • Trigger.dev: Background task processing
  • Google APIs: Search Console and Analytics data (with your consent)
  • Resend: Email delivery

7. Your Rights

You have the right to: access your personal data, correct inaccurate data, delete your account and all associated data, export your audit reports, and revoke Google API access at any time. To exercise these rights, contact us at hello@whatseo.ai.

8. Google API Services User Data Policy

WhatSEO.ai's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We only use Google data to provide and improve the SEO audit features you explicitly requested.

9. Contact

For any privacy-related questions or requests, contact us at hello@whatseo.ai.

← Back to home