Dashboard
Getting Started
Writer Agent
🦞Connect Agent
Autopilot Agents
AI Insights
Reddit Intent
X Intent Scout
Lead Magnets
Wiki Dead Links
Settings
Billing
Contact
Sign In

Privacy Policy

How we protect your data

Last Updated: February 2026

Introduction

At Citedy, we are committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our AI-powered SEO and blog platform. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access or use our services.

We reserve the right to make changes to this Privacy Policy at any time. We will alert you about any changes by updating the "Last updated" date of this Privacy Policy and notifying you via email. You are encouraged to periodically review this Privacy Policy to stay informed of updates.

Data Processing & Privacy

For procurement and compliance reviews, see our public pages:

  • Data Processing & Privacy
  • Subprocessors
  • DSAR (Privacy Requests)
  • DPA (on request)
GDPR COMPLIANCE

Citedy aims to operate with GDPR-aligned controls and privacy best practices. We respect your rights regarding personal data and provide transparent data processing information.

Key GDPR Compliance Elements:

  • Lawful basis for data processing
  • Right to access your personal data
  • Right to rectification and erasure
  • Right to data portability
  • Right to object to processing
  • Transparent data practices with clear user control
INFORMATION COLLECTION

Personal Data Collection

User Account Information:

  • Account Data: Email address and password (all data encrypted and stored by Supabase)
  • Billing Information: Processed securely through Stripe (we do not store payment details)
  • Contact Preferences: Email notification settings, communication preferences

Content Information:

  • Blog Content: Articles, posts, and media you create or upload
  • SEO Data: Keywords, domain analysis, and competitor tracking data
  • AI Generated Content: Content created using our AI tools and services
  • Analytics Data: Platform usage patterns and interaction metrics

Technical Information:

We automatically collect certain technical information:

  • Device Information: Browser type, operating system, device identifiers
  • Usage Data: Pages visited, features used, time spent on platform
  • Location Data: General geographic location (country/state level only)
  • Security Information: Login attempts, IP addresses for fraud prevention
AI PROVIDERS AND THIRD-PARTY DATA TRANSFER

DATA TRANSFER TO AI PROVIDERS

IMPORTANT NOTICE:
CONTENT YOU PROCESS THROUGH OUR AI SERVICES IS TRANSMITTED TO THIRD-PARTY AI PROVIDERS for processing and analysis. This is an essential part of our service functionality.

Data Transmitted to AI Providers May Include:

  • Content: Blog posts, articles, and textual content you submit for AI processing
  • Instructions: Custom prompts and brand context provided to AI systems

BY USING OUR AI FEATURES, YOU CONSENT TO TRANSMITTING YOUR DATA TO THIRD-PARTY AI PROVIDERS (OpenAI, Anthropic, Google, etc.)

INFORMATION USE

How We Use Your Data

  • Service Delivery: To provide and maintain our SEO and blog platform services
  • AI Features: To process content through AI providers for content generation and analysis
  • Communication: To send service updates, notifications, and support messages
  • Security: To detect fraud, prevent abuse, and protect user accounts
DATA SECURITY

Security Measures

  • Encryption: All data encrypted in transit and at rest
  • Secure Infrastructure: Hosted on secure cloud platforms (Supabase, Vercel)
  • Access Controls: Strict authentication and authorization protocols

While we implement industry-standard security measures, no method of transmission over the internet is 100% secure.

MONITORING & INFRASTRUCTURE

Operational Monitoring & Hosting

  • We rely on Sentry's EU deployment (.ingest.de.sentry.io) for error monitoring and outages. We process data under a legitimate interest (platform reliability/support) and never send email or full name—only tenant IDs, feature metadata, and non-sensitive flags.
  • Logs and telemetry are used strictly for debugging, uptime, and customer support; they may include request/tenant IDs, timestamps, and error context but no sensitive personal identifiers.
  • Hosting & infrastructure is provided by Digital Ocean App Platform and Supabase. Environment variables are encrypted, keys rotate quarterly, TLS is enforced in transit, and RLS/Tenant-aware policies protect stored data.
  • All monitoring data is subject to internal retention policies and automated cleanup so it stays only as long as needed for diagnostics.
  • We follow SOC2-aligned security controls: tenant isolation (RLS), encryption in transit/at rest, least-privilege access, and auditable retention workflows.
CONTACT US

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

Email: [email protected]

Service: Citedy

Legal entity: TEMNIKOVA LDA (Portugal)