Privacy Policy

Last updated: January 2026

Your Privacy Matters

This Privacy Policy explains how JustSEO.ai (“we,” “us,” or “our”) collects, uses, discloses, and protects your personal information. This policy applies to all users worldwide and complies with US, EU (GDPR), and international privacy regulations.

GDPR Policy - EU Data Protection Rights · California Privacy Rights (CCPA/CPRA) · Cookie Policy · Cookie Settings

1. Information We Collect

1.1 Information You Provide

Account Information: Email address, full name, password (encrypted), profile photo
Billing Information: Payment details processed securely through Stripe (we do not store full credit card numbers)
URLs and Website Data: URLs you submit for SEO analysis, crawl data, website content
Communication Data: Support tickets, contact form submissions, email correspondence
Integration Data: Google Search Console data, Slack workspace information (when you connect integrations)

1.2 Information Collected Automatically

Usage Data: Pages visited, features used, time spent, interaction patterns, search queries
Device Information: IP address, browser type and version, operating system, device identifiers
Location Data: Approximate geographic location based on IP address
Cookies and Tracking: Session cookies, preference cookies, analytics cookies (see our Cookie Policy)
Log Data: Server logs, error reports, performance metrics, API usage

1.3 Information from Third Parties

OAuth Providers: Google account information (name, email, profile photo) when you sign in with Google
Payment Processors: Transaction confirmations and payment status from Stripe
Analytics Providers: Aggregated usage statistics from Google Tag Manager
Integration Partners: Data from connected services (Google Search Console, Slack)

2. How We Use Your Information

2.1 Service Provision and Improvement

Provide SEO analysis, crawling, AI insights, and reporting services
Process and analyze website data to generate recommendations
Maintain and improve platform functionality, performance, and user experience
Develop new features and services based on usage patterns
Personalize content and recommendations based on your usage

2.2 Communication

Send service-related notifications (analysis complete, crawl finished, account updates)
Respond to support requests, inquiries, and feedback
Send marketing communications (with your consent, opt-out available)
Provide updates about new features, improvements, and service changes

2.3 Security and Compliance

Prevent fraud, unauthorized access, and security breaches
Monitor and analyze security threats and suspicious activity
Enforce our Terms of Service and prevent abuse
Comply with legal obligations, court orders, and regulatory requirements
Protect our rights, property, and the safety of our users

2.4 Analytics and Research

Analyze usage patterns to understand how users interact with our platform
Conduct market research and competitive analysis
Measure the effectiveness of marketing campaigns
Generate aggregated, anonymized statistics and insights

For users in the European Union, we process your data based on the following legal grounds:

Contractual Necessity: Processing required to provide services you’ve requested
Consent: You have given explicit permission for specific processing activities
Legitimate Interests: Processing necessary for our legitimate business interests (fraud prevention, service improvement)
Legal Obligation: Processing required to comply with applicable laws and regulations

For detailed GDPR compliance information, see our GDPR Policy.

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

4.1 Service Providers

We share data with trusted third-party service providers who assist in operating our platform: Supabase (database, authentication, storage), Railway (background processing), Stripe (payment processing), Google Tag Manager (usage analytics), OpenAI (AI-powered analysis), and email service providers for transactional and notification emails. All service providers are contractually bound to protect your data and use it only for specified purposes.

4.2 Legal Requirements

We may disclose your information when required by law or to comply with legal processes, enforce our Terms, protect rights and safety, address fraud or technical issues, and respond to claims of illegal content.

4.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of the business assets. We will notify you before any such transfer.

We may share your information with third parties when you explicitly consent, such as when connecting integrations like Google Search Console or Slack.

5. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy. Account data is retained for the duration of your account plus 30 days after deletion. Transaction records are retained for 7 years to comply with tax and accounting regulations. Support communications are retained for 3 years. Server logs are retained for 90 days. You may request deletion of your data at any time by contacting privacy@justseo.ai.

6. Your Privacy Rights

6.1 Universal Rights (All Users)

Access: Request a copy of the personal information we hold about you
Correction: Request correction of inaccurate or incomplete personal information
Deletion: Request deletion of your personal information (subject to legal retention requirements)
Data Portability: Request your data in a structured, machine-readable format
Withdraw Consent: Withdraw consent for processing based on consent at any time
Opt-Out: Unsubscribe from marketing communications at any time

Users in the EU have additional rights including the right to object, right to restriction, right to lodge a complaint with a data protection authority, and rights regarding automated decision-making. Full GDPR rights: GDPR Policy.

6.3 California Users (CCPA/CPRA Rights)

California residents have the right to know, delete, opt-out, non-discrimination, correct, and limit use of sensitive information. Full California rights: California Privacy Rights.

6.4 How to Exercise Your Rights

Email us at privacy@justseo.ai, use the account settings page, or contact our support team. We respond to verified requests within 30 days (45 days for complex requests).

7. Data Security

We implement industry-standard security measures: TLS 1.3 encryption in transit and AES-256 at rest, role-based access controls, 24/7 security monitoring and intrusion detection, regular security audits and penetration testing, and documented incident response procedures. For more details, see our Security Page.

8. Children’s Privacy

JustSEO.ai is not intended for children under 16. We do not knowingly collect personal information from children under 16. If we discover such collection, we will promptly delete it. Contact privacy@justseo.ai with concerns.

9. International Data Transfers

We primarily store and process data in the EU and US. For international transfers, we implement Standard Contractual Clauses, data processing agreements with all service providers, and compliance with the EU-US Data Privacy Framework where applicable.

10. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party sites you visit.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy with a new date, sending an email for significant changes, and displaying a prominent notice in our application.

12. Contact Us

Email: privacy@justseo.ai · GDPR Contact: dpo@justseo.ai · Support: Contact Form

2261 Market Street STE 18268, San Francisco, CA 94114, United States