We explain what data we collect, why we collect it, who can receive it, and how you can revoke or delete access.

1. Information we collect

When you use SEOWorkerAI, we may collect account details, login details, billing records, site profile information, CMS configuration details, SEO settings, content brief data, SEO action logs, and provider connection metadata.

If you connect a WordPress site, the plugin may transmit site URL, WordPress version, timezone, admin email, synced user data, site description, brand instructions, geographic targeting settings, SEO preferences, action status updates, logs, and content brief linkage details.

If you sign in to the application, we may process magic-link authentication details, access-control records, provider connection state, and account ownership information associated with your user and site.

2. How we use information

We use your information to provide the service, register and verify sites, process billing, authenticate users, initialize and maintain provider connections, generate content briefs, display action queues, execute or report SEO changes, maintain audit logs, enforce quotas, and support account and operational security.

We may also use logs and execution metadata to debug failures, prevent duplicate processing, monitor abuse, and improve product reliability.

3. Google API data and connected accounts

If you connect Google Search Console, we may access property identifiers, search performance data, query and page performance summaries, indexing or visibility-related metadata, and other read-only Search Console data needed to surface SEO opportunities, support audits, and help generate workflow recommendations inside SEOWorkerAI.

If you connect Google Analytics, we may access read-only traffic, engagement, landing-page, and related reporting data needed to add performance context to audits, recommendations, action queues, and content-brief workflows inside SEOWorkerAI.

If you use Google sign-in or Google One Tap to access the application, we may process your Google account identifier, name, email address, profile image, and login verification data so we can authenticate you and associate your login with the correct SEOWorkerAI account.

Use of Google user data with AI providers. SEOWorkerAI uses third-party AI services to power features such as content brief generation, SEO recommendations, audit analysis, and action-queue workflows. When these features process your data, information derived from your connected Google accounts — including data obtained via Google Search Console or Google Analytics — may be included as input to these AI providers. The AI providers currently integrated into SEOWorkerAI are:

• Google Gemini (Google LLC) — Privacy Policy
• OpenAI (GPT models) — Privacy Policy
• Anthropic (Claude models) — Privacy Policy

These providers act as data processors on our behalf. Data sent to them is used only to fulfill the specific feature you requested. Not all providers may be active simultaneously; the platform may route requests to one or more providers depending on availability and feature context.

Restrictions on Google user data sent to AI providers. We do not sell Google user data. We do not use Google user data to train generalized artificial intelligence or machine learning models. Where Google-connected data is included in AI provider requests, that use is strictly limited to operating the specific SEOWorkerAI feature you requested for your own connected account or site. Each AI provider we use operates under API terms that prohibit training on API-submitted data.

You can revoke Google access from within the WordPress plugin or through your Google account permissions. You can also request deletion of Google-connected records through our Contact Us page. Revocation or deletion may disable connected SEO features until access is restored.

4. Third-party service providers and AI integrations

Depending on the features you use, data may be exchanged with third parties. These currently include, but are not limited to:

• Google — Search Console, Analytics, and authentication integrations
• AI providers — Google Gemini, OpenAI (GPT models), and Anthropic (Claude), used for AI-powered SEO features as described in Section 3; privacy policy links for each provider are listed there
• DataForSEO — SEO data and research inputs
• Infrastructure providers — hosting, storage, and compute
• Email delivery providers — transactional and notification email
• Analytics and logging tools — operational monitoring and error tracking
• Payment processor — billing and subscription management

Each of these services processes data according to its own terms and privacy policies. We may also disclose information if required to comply with law, enforce our agreements, detect fraud or abuse, or protect the rights, safety, and security of our users or the service.

5. Payment and transaction data

Payments are processed by our payment provider. We may receive transaction identifiers, subscription status, billing history, plan information, and related records needed to activate, limit, refund, or support your account. We do not store full payment card numbers on our own servers.

6. Retention and deletion

We retain account, billing, operational, and audit data for as long as reasonably necessary to provide the service, maintain records, resolve disputes, comply with legal obligations, and protect against abuse. Different categories of data may be retained for different periods depending on legal, billing, and operational needs.

Google-connected tokens and provider-connection records may remain stored until they expire, are revoked, or are deleted as part of an account or support request. Some derived SEO records, audit logs, or billing records may remain where required for billing, fraud prevention, tax, compliance, or legal purposes even after a connected provider is revoked.

If you want account deletion or removal of connected data where available, contact us through the Contact Us page. Some records may still be retained where required for billing, fraud prevention, tax, compliance, or legal purposes.

7. Security

We use reasonable administrative, technical, and organizational measures to protect information, including role-based access controls, token management, audit records, and controlled service-to-service communication. No method of storage or transmission is completely secure, so we cannot guarantee absolute security.

8. Your rights and contact

Depending on where you live, you may have rights to request access, correction, deletion, restriction, objection, or portability regarding your personal information. To make a privacy-related request, use the Contact Us page and describe the request clearly enough for us to verify and process it.

If we materially change this policy, we may update this page and the effective date of the policy.