Privacy & Data
We take data privacy seriously. Here's how we protect your information and handle the data we collect.
Data Encryption
All data encrypted in transit (TLS 1.3) and at rest (AES-256).
Access Controls
Strict role-based access. Only you can see your projects and analytics.
Data Retention
Configurable retention periods. Delete your data anytime.
Secure Infrastructure
Hosted on SOC 2 compliant infrastructure.
What Data We Collect#
We only collect data necessary to provide our service:
| Data Type | Purpose | Retention |
|---|---|---|
| Account information | Authentication & billing | Until account deleted |
| Website projects | AI visibility monitoring | Until project deleted |
| AI audit results | Reports and history | 90 days (configurable) |
| Analytics events | Traffic tracking | 12 months |
| Payment data | Billing (via Stripe) | Per Stripe policy |
AI Analytics tracking
Our analytics script only collects referrer data and page views. We don't collect personal information about your website visitors.
Data Protection#
Encryption#
- In transit — All connections use TLS 1.3
- At rest — AES-256 encryption for stored data
- API keys — Hashed and never stored in plain text
Access Controls#
- Role-based access control (RBAC) for all operations
- API authentication required for all endpoints
- Project data only accessible by the owner
- Admin access logged and audited
Your data, your control
You can export or delete your data at any time from your dashboard settings.
AI Analytics Privacy#
Our AI Analytics tracking script is designed with privacy in mind:
- No cookies — Basic tracking works without cookies
- No PII — We don't collect personal visitor information
- Lightweight — Under 2KB, minimal page impact
- First-party — Data stays on our servers, never sold
We collect:
- Page URL and referrer
- Browser type and device category
- UTM parameters (if present)
- Timestamp
We don't collect:
- IP addresses (hashed for unique visitor counting only)
- Names, emails, or other personal information
- Detailed user behavior or session recordings
Compliance#
We maintain compliance with industry standards:
- GDPR — EU data protection compliance
- CCPA — California privacy rights
Your Rights#
Under applicable privacy laws, you have the right to:
- Access all data we have about you
- Request correction of inaccurate data
- Request deletion of your data
- Export your data in portable format
- Withdraw consent at any time
Contact Us#
Have questions about privacy or data handling?
- Email us at privacy@audit.new
- We respond within 48 hours on business days