Legal

Privacy Policy

Effective 17 May 2026 · Operated by Analytics AIML

AEO Agent X ("the Service") is an answer-engine optimization workbench operated by Analytics AIML ("we", "us"). This policy explains what information we collect, how we use it, and the choices you have. It applies to anyone who signs into the Service or whose Google Search Console property is connected to the Service by an account holder.

1. Who runs the Service

Analytics AIML is the data controller for the Service. You can reach us at umer.tsp@gmail.com for any privacy question, access request, or deletion request.

2. Information we collect

Account information

  • Your email address, display name, and a password hash (we never store plaintext passwords)
  • Audit records of sign-in, capability changes, and administrative actions performed inside your account

Google account information (only if you connect Google Search Console)

When you (or an account administrator on your behalf) click Connect Google Search Console, Google asks you to grant the Service the following scope:

  • https://www.googleapis.com/auth/webmasters.readonly — read-only access to your Search Console properties and their search analytics

If granted, Google returns a refresh token that we store encrypted at rest on our servers. We also store the email address Google reports for the connected account and the list of Search Console properties that account can access. We never request, receive, or store your Google password.

Search Console data we read on your behalf

  • The list of properties (sites) the connected Google account has access to
  • Search analytics rows — date, query (search term), page (URL), country, device, clicks, impressions, click-through rate, and average position
  • Sitemap and indexing status for properties you choose to analyse

We read this data, store the rows on our servers, and display them inside the Service so you can analyse trends, draft content, and review performance. We do not modify your Search Console settings or write any data back to Google.

Usage information

  • Server logs (request path, response status, IP address, timestamp) retained for up to 30 days for security and debugging
  • In-app event records — when a feature was used, by whom, and the cost in API tokens for usage accounting

3. How we use information

  • To provide the Service: showing your Search Console data, generating content recommendations from it, and tracking improvements over time
  • To enforce per-user spending caps and capability permissions you have configured
  • To diagnose errors, prevent abuse, and protect your account
  • To communicate with you about the Service (account alerts, security notices) — we do not send marketing emails from this Service
Limited Use of Google user data. AEO Agent X's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. We do not use Google user data for serving ads, we do not sell or transfer it to third parties for any unrelated purpose, and we do not allow humans to read it except (a) with your explicit consent, (b) where necessary for security investigations or to comply with applicable law, or (c) where the data has been aggregated and anonymised.

4. How we share information

We do not sell or rent your information. We share it only in these narrow cases:

  • With the Anthropic API — when you use AI features, prompts derived from your Search Console data are sent to Anthropic to generate output. Anthropic processes the data under its own privacy policy and (per its API terms) does not use API inputs to train its models.
  • With service providers strictly necessary to run the Service — the server host (Contabo) and email-delivery provider for transactional alerts.
  • When required by law — to comply with a valid legal request, after notifying you to the extent permitted.

5. Where data is stored and for how long

All Service data is stored on our servers, located in Germany. We retain:

  • Account records and Search Console data — for as long as your account is active
  • Server logs — up to 30 days
  • Usage records — up to 24 months, for billing reconciliation and trend analysis

When you delete your account, or revoke Google access, we delete the corresponding refresh token immediately and purge associated Search Console rows within 30 days.

6. Your choices

  • Disconnect Google. You can revoke the Service's access at any time from your Google Account permissions page or by clicking Disconnect in the Service. After revocation, no further Search Console data will be pulled.
  • Delete your account. Email umer.tsp@gmail.com and we will delete your account and associated data within 30 days.
  • Access or correct your data. Email us and we will export or correct your account data within 30 days.

7. Security

We protect data in transit with HTTPS, store credentials hashed with industry-standard algorithms, restrict server access to authenticated administrators, and rotate API keys when staff turnover occurs. No method of transmission or storage is perfectly secure; we will notify affected users without undue delay if a breach materially affects their data.

8. Children

The Service is not directed to children under 16 and we do not knowingly collect their information.

9. International users

The Service is hosted in Germany and operated from Pakistan. By using the Service you consent to the transfer of your information to those jurisdictions.

10. Changes to this policy

If we make material changes we will post the new policy here and update the effective date above. Continued use of the Service after a change constitutes acceptance.

11. Contact

Analytics AIML · umer.tsp@gmail.com · Terms of Service