Privacy Policy
Last updated: May 2026.
This document explains what data monitoraeo collects, why, and how we handle it. If anything is unclear, email us via the Support page.
What we collect
Information you give us
- Audit subject: the domain, brand name and category you submit through the form.
- Email address: when you purchase an audit or join the Monitoring waitlist.
- Payment information: processed by Stripe — we never see your card details. We only receive a payment confirmation token.
- Support requests: anything you write to us via the support form or by email.
Information we generate
- Audit responses: the AI-generated answers and citations we capture from Claude, ChatGPT, Perplexity, Gemini and Google AI Overviews when running your audit.
- Site screenshot: a single screenshot of the audited domain's homepage, captured via screenshotapi.net.
- Aggregate metrics: visibility, citation rate, competitor counts and similar derived statistics.
Information we don't collect
- We don't run cross-site tracking pixels or sell audience data to ad networks.
- We don't sell, rent or share your audit data with third parties.
- We don't access any private data on your domain — only what's publicly available to AI engines.
- We don't load analytics cookies until you explicitly accept them on the cookie banner — see Cookies below.
How we use it
- To run the audit you paid for and deliver the resulting report to you by email.
- To improve the audit pipeline (for example, identifying which buyer questions yield the most useful signal).
- To respond to support requests.
- To send you transactional emails relating to audits you've purchased (delivery, follow-up if a re-audit credit is unused, billing receipts).
We do not send marketing emails unless you've explicitly opted in (e.g. by joining the Monitoring waitlist).
Where it's stored
Audit data is stored on application servers in the European Union. Stripe handles payment data on its own infrastructure under PCI-DSS Level 1. Resend (our email provider) processes outbound email and may retain delivery metadata for diagnostic purposes.
How long we keep it
- Raw AI responses: 90 days after the audit completes, then permanently deleted.
- Hosted reports: accessible for 12 months at the URL we email you, then archived.
- Email records: 24 months for purchase receipts and support history (legal/financial requirement).
- Site screenshots: deleted at the same cadence as the raw responses.
Third-party services we use
- OpenRouter — model gateway for Claude, ChatGPT, Perplexity and Gemini calls.
- Apify — Google AI Overview scraping.
- screenshotapi.net — site screenshots.
- Stripe — payment processing.
- Resend — transactional email.
Each of these processes a narrow slice of audit data. None of them receive your full report, and none of them are given permission to use your data for their own model training or marketing.
Your rights
You can request a copy of any data we hold about you, request deletion, or request a correction at any time by emailing us via Support. We respond within 14 days.
Cookies
We use two categories of cookies:
- Essential (always on) — the Supabase session cookie that keeps you signed in to your dashboard, and a small
monitoraeo_consentcookie that records your choice on the banner below. These are strictly necessary to operate the site and don't track you across other sites. - Analytics (off by default — only loaded if you Accept) — Google Tag Manager and the Google Analytics 4 cookies it loads, which help us see anonymised aggregate metrics like how many people read a page and which CTAs they click. These are not loaded at all until you click Accept all on the banner. If you click Reject all, no analytics cookies are ever set.
You can change your choice at any time by clicking Cookie settings in the footer — it re-opens the banner. We don't use advertising cookies, retargeting pixels, or any third-party tracking beyond Google Analytics.
Children
This service is for businesses and is not directed at anyone under 18. We do not knowingly collect personal data from children.
Changes to this policy
If we materially change this policy, we'll update the "last updated" date and email anyone with an active subscription or paid audit in the last 12 months.
Contact
Privacy questions: use the Support page. We aim to respond within one business day.