Privacy Policy
Last updated: July 14, 2026
This Privacy Policy explains how Combo Ventures, LLC, a Florida limited liability company ("SEOAIO," "we," "us," or "our"), collects, uses, discloses, and protects personal information when you use the SEOAIO and SEOAIO.ai websites at seoaio.ai and app.seoaio.ai and the related services (collectively, the "Service"). Combo Ventures, LLC is the controller of the personal information described here. By using the Service you agree to this Policy, which is incorporated into our Terms of Service.
The Service is a business-to-business product and is not directed to anyone under eighteen (18) years old. We do not knowingly collect personal information from anyone under 18. If you believe a minor has provided us personal information, contact us at contact@seoaio.ai and we will delete it.
1. Information We Collect
We collect only what we need to provide the Service:
- Account identity. When you sign in with Google OAuth, we receive your name, email address, and profile picture from Google.
- Targets you submit. The domains and URLs you choose to analyze, and any content the Service retrieves from the publicly accessible pages of those Targets.
- Measurement results. The Outputs the Service generates, including Visibility Scores, Answer Share and Brand Recognition measurements, audits, findings, recommendations, Implementation Briefs, and snapshots, stored as immutable records.
- Usage and billing metadata. Information about your plan, transactions, and how you use the Service, processed together with our third-party payment processor.
- Server logs. Standard technical data such as IP address, user agent, and timestamps, collected automatically for security, abuse prevention, and reliability.
We do not knowingly collect special categories of sensitive personal information, and we ask that you not submit them.
2. Cookies
We use only functional and essential cookies: a session cookie that keeps you signed in, and an "active asset" preference cookie that remembers your current selection. We do not use advertising or cross-site tracking cookies, we do not track you across other websites, and we do not sell your personal information.
3. How We Use Information
- to provide, operate, and maintain the Service and your Account;
- to perform the crawling, measurement, and analysis you request and to generate and store Outputs;
- to process Subscriptions, billing, and renewals;
- to secure the Service, prevent abuse, and detect and investigate fraud or violations;
- to provide support and respond to your requests;
- to maintain, troubleshoot, and improve the Service, including through aggregated or de-identified analysis;
- to comply with law and enforce our Terms.
4. Legal Bases (EU and UK Users)
If you are in the European Economic Area or the United Kingdom, we process personal information under the following lawful bases: performance of a contract (to provide the Service and your Account); legitimate interests (to secure and improve the Service and prevent abuse, balanced against your rights); legal obligation (to comply with applicable law); and consent where required, which you may withdraw at any time. Where our basis is legitimate interests, you may object as described below.
5. How We Share Information and Our Subprocessors
We do not sell your personal information. We share it only with service providers ("subprocessors") who process it on our behalf to run the Service, under contractual confidentiality and data-protection obligations, and with authorities or third parties where required by law or to protect rights and safety. Our current subprocessors are:
- Vercel: application hosting and edge infrastructure.
- DigitalOcean: managed PostgreSQL database (USA).
- Cloudflare R2: object storage for analysis artifacts.
- Google LLC: OAuth sign-in.
- Perplexity: Sonar AI API, queried to sample AI-answer citations when you run a measurement.
- Anthropic: Claude API, used to generate Implementation Briefs.
We may also share information with our third-party payment processor to handle billing. This list may change as the Service evolves; for the current list of subprocessors, contact contact@seoaio.ai. We may also disclose information in connection with a merger, acquisition, or sale of assets, subject to this Policy.
6. Targets and Third-Party Data
When you submit a Target, the Service processes the domains and URLs you provide and retrieves content from their publicly accessible pages. You are responsible for ensuring you are authorized to analyze each Target and for not submitting personal data of others in violation of any law. We process this material at your direction to provide the Service.
7. Data Retention
We retain personal information for as long as your Account is active and as needed to provide the Service, and thereafter as needed to comply with legal obligations, resolve disputes, and enforce our agreements. Measurement snapshots are stored as immutable records for the integrity of your historical data and are retained while your Account remains active or until you request deletion, subject to legal and operational limits. When information is no longer needed, we delete or de-identify it.
8. International Transfers
We operate and host the Service in the United States, and our subprocessors may process information in the United States and other countries. If you access the Service from outside the United States, you understand that your information will be transferred to and processed in the United States. Where required for transfers from the EEA, UK, or Switzerland, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses or other lawful transfer mechanisms. To request more information about these safeguards, contact contact@seoaio.ai.
9. Security
We use reasonable administrative, technical, and organizational measures designed to protect personal information, including access controls, encryption in transit, and reputable infrastructure providers. No method of transmission or storage is completely secure, and we cannot guarantee absolute security. You are responsible for safeguarding access to your Account. If we become aware of a personal-data breach affecting you, we will notify you and the relevant authorities as required by applicable law.
10. Your Rights (EU and UK)
Subject to applicable law, you have the right to access, correct, delete, restrict, or object to the processing of your personal information, the right to data portability, and the right to withdraw consent where processing is based on consent. To exercise these rights, contact contact@seoaio.ai. We will respond within the time required by law. You also have the right to lodge a complaint with your local data-protection authority.
11. Your Rights (California: CCPA/CPRA)
If you are a California resident, you have the right to know the categories and specific pieces of personal information we collect, use, and disclose; the right to request deletion; the right to correct inaccurate information; and the right not to be discriminated against for exercising your rights. In the preceding twelve months we have collected the categories described in Section 1 (identifiers such as name, email, and IP address; commercial and billing information; internet and usage activity) for the business purposes described in Section 3, and disclosed them to the service providers listed in Section 5. We collect this information from these sources: directly from you, from Google during sign-in, automatically from your use of the Service, and from the publicly accessible pages of the Targets you submit.
We do not sell your personal information, and we do not share it for cross-context behavioral advertising, as those terms are defined under California law. Because we do not sell or share in this sense, there is no "Do Not Sell or Share" action needed. We do not use or disclose sensitive personal information for purposes that would trigger a right to limit its use. To exercise your rights, contact contact@seoaio.ai; we will verify your request through your Account information and respond as required by law. You may use an authorized agent, subject to verification.
12. Other U.S. State Privacy Rights
Residents of other U.S. states with comprehensive privacy laws may have similar rights to access, correct, delete, and obtain a portable copy of their personal information, and to opt out of sale, targeted advertising, and certain profiling. We do not sell personal information or use it for targeted advertising. To exercise any available right, contact contact@seoaio.ai.
13. Do Not Track
We do not track users across third-party websites, and we do not respond differently to browser "Do Not Track" signals because we do not engage in cross-site tracking.
14. Changes to This Policy
We may update this Policy from time to time. When we do, we will revise the "Last updated" date above and, for material changes, provide additional notice where appropriate. Your continued use of the Service after changes take effect constitutes acceptance of the updated Policy.
15. Contact
For any privacy question or to exercise your rights, contact us at contact@seoaio.ai or through our contact page. This single address handles all privacy, legal, and security inquiries. The data controller is Combo Ventures, LLC (Florida, USA); a postal address is available on request at contact@seoaio.ai. See also our Terms of Service and Disclaimer.