01 · LEGAL

Privacy Policy & Audit Disclosure

Last updated: May 18, 2026

This Privacy Policy explains how SeenWith LLC (“SeenWith,” “we,” “us,” or “our”) collects, uses, and discloses information when you use SeenWith.ai, including our website, dashboard, scan reports, and related services (collectively, the “Service”). It also includes our disclosure of how the free AI-Readiness audit works and what it does not measure.

1. Information we collect

We may collect the following categories:

  • Account data: name, email address, company name, role, billing contact details.
  • Service data: business profile details, URLs, location data, report inputs/outputs, scan history, dashboard usage. For our free public AI-Readiness audit, we additionally collect the domain you submit, the resulting score and per-pillar findings (computed but not displayed in the current visitor UI), and the name, email, and phone you provide in the lead-capture form.
  • Payment data: subscription metadata and billing status from processors. We do not store full card numbers.
  • Technical data: device/browser details, IP address, log events, approximate geolocation, cookies and similar technologies.
  • Communications: support requests and correspondence.

Information from third parties. We also receive information about you from third-party services we use to operate the Service, including Stripe (subscription and payment events), Supabase (authentication events), and the AI platform APIs we query on your behalf. We use this information only as needed to provide the Service and as described in this Privacy Policy.

2. How the free AI-Readiness audit works

When you submit a website to the free audit, our server makes four public HTTP requests to that website. Every finding shown on the results page is computed directly from what those four requests return. Nothing is guessed, nothing is inferred from training data, and nothing about the scanned website is stored beyond the moment of the scan (we retain only your lead-capture row, per Section 1 above).

Each check contributes equally toward the internal score (25 points each, 100 total). The visitor-facing audit currently surfaces each check as pass / needs-work rather than a numeric score, but the underlying calculation is unchanged.

  • Pillar 1 — Open the door for AI tools. We fetch /robots.txt and parse it. Full credit if no robots.txt exists (default-allow per RFC) or if all major AI crawlers are allowed. Partial credit if some AI crawlers are blocked (GPTBot, ClaudeBot, PerplexityBot, Google-Extended, Anthropic-AI, Claude-Web, CCBot, ChatGPT-User, Bytespider, Cohere-ai). Zero credit on a global Disallow: /.
  • Pillar 2 — Tell AI tools what to read. We fetch /llms.txt and check the response. Full credit on a 200 OK with at least 200 characters of content. Partial credit on a very short file (under 200 characters). Zero credit on 404, network error, or empty response.
  • Pillar 3 — Speak AI’s language on your homepage. We fetch / and parse every <script type="application/ld+json"> block. 5 points per key Schema.org field present on a LocalBusiness or Organization block (name, address, telephone, openingHours, aggregateRating). Zero credit if no structured-data block describes a business or organization.
  • Pillar 4 — Hand AI tools the full page list. We fetch /sitemap.xml and re-parse/robots.txt for a Sitemap: directive. Full credit if both exist and reference each other. Partial credit if only one half is in place. Zero credit if neither.

3. Free audit limitations and disclaimer

The free audit is informational. It measures whether the four signals above are publicly visible on your website at the moment of the scan. It does not measure, and does not predict, whether any AI assistant will actually recommend you to a real user.

What we do not measure in the free audit:

  • Whether ChatGPT, Gemini, Perplexity, Claude, or any other AI assistant actually recommends you. (Measuring real recommendation outcomes requires real AI queries against your industry keywords; that is our paid product, not the free audit.)
  • Page speed, mobile-friendliness, SEO ranking, or traditional Lighthouse-style web vitals.
  • Content quality, accuracy, or how interesting your business is. The free audit only checks whether AI assistants can read your site, not whether they would recommend it.
  • Anything past the four public files above. We do not crawl your full site. We do not follow links. We do not attempt to log in or submit forms.

Real-world AI assistant behavior depends on many factors the free audit does not cover: training-data recency, the specific user prompt, the model version, and signals we would need authenticated or paid APIs to see (Knowledge Graph presence, Bing index status, review velocity, citation counts). A perfect score does not guarantee that AI tools will recommend you. A failing score does not guarantee they will not. What the audit does tell you is: given the four signals AI assistants are documented to check, here is where your site stands today.

The audit is informational only. Acting on its findings is at your discretion. You should verify any change you make against the latest documentation from the AI providers before applying it to a production site.

4. How we use information

We use collected information to:

  • Provide, maintain, and improve the Service
  • Authenticate users and secure accounts
  • Generate reports, recommendations, and analytics
  • Process subscriptions and billing events
  • Respond to support and operational requests
  • Detect and prevent abuse, fraud, or security incidents
  • Comply with legal obligations and enforce our Terms

We may use de-identified and aggregated information for product analytics, benchmarking, quality improvement, and operational reporting.

5. Legal bases (where applicable)

Depending on your location, we process personal information based on:

  • Performance of a contract (providing the Service)
  • Legitimate interests (security, quality, and product improvement)
  • Consent (where required)
  • Compliance with legal obligations

6. Sharing and disclosures

We may share information with:

  • Infrastructure, hosting, analytics, and support vendors under contractual safeguards
  • Payment processors for subscription and billing operations
  • Professional advisors and auditors where reasonably necessary
  • Authorities where required by law, legal process, or to protect rights and safety
  • A successor entity in connection with a merger, acquisition, financing, or asset sale

We do not sell personal information for monetary consideration.

7. Data retention and deletion windows

We retain personal information as needed for the purposes described in this Policy, including providing the Service, complying with legal obligations, resolving disputes, and enforcing agreements.

Standard retention for customer account and report data is the subscription term plus up to 12 months after cancellation or termination, unless a different period is required by law or agreed in writing. Free-audit lead submissions are retained for up to 24 months from submission, after which they are deleted unless you have an active subscription with us.

We may retain specific records beyond these windows when reasonably necessary for security, fraud-prevention, chargeback handling, legal defense, tax/accounting, audit, or regulatory compliance.

8. Cookies and tracking technologies

We may use cookies and similar technologies for session management, analytics, performance, and product diagnostics. You can adjust browser settings to control cookies, but some features may not function properly without them.

For full detail on the categories of cookies we set, third-party cookies, and how to manage them, see our Cookie Policy.

9. Data security and risk notice

We implement reasonable administrative, technical, and organizational safeguards designed to protect personal information. Current measures include:

  • Encryption of data in transit using TLS/SSL.
  • Encryption of data at rest on our hosting providers (Supabase and Stripe) using industry-standard ciphers (including AES-256).
  • Row Level Security policies on the Supabase database so that an authenticated user can only read their own organization's rows.
  • Authentication via Supabase Auth, with password requirements and session tokens scoped per device.
  • Access controls limiting administrative access to a minimum number of authorized personnel.
  • Ongoing dependency and vulnerability monitoring across our application stack.

However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

10. International transfers

Your information may be processed in countries other than your own, including the United States. Where required for transfers out of the European Economic Area, the United Kingdom, or Switzerland, we use appropriate transfer mechanisms and safeguards, including the Standard Contractual Clauses approved by the European Commission (and the UK International Data Transfer Addendum where applicable).

11. Your privacy rights

Depending on your jurisdiction, you may have rights to access, correct, delete, or export your data, and to object to or restrict certain processing. You may also have rights related to marketing communications.

To submit a request, email seenwithai@proton.me. We may need to verify your identity before completing certain requests.

12. Children's privacy

The Service is not directed to children under 13 (or the applicable age in your jurisdiction), and we do not knowingly collect personal information from children.

13. Sub-processors and service providers

We rely on third-party service providers (“sub-processors”) to operate the Service. Sub-processors only process personal information under our instructions and subject to confidentiality and data-protection commitments.

Our current sub-processors include:

  • Supabase — database, authentication, and storage.
  • Stripe, Inc. — subscription billing, payment processing, customer portal.
  • Netlify — hosting and content delivery for the marketing site.
  • GitHub Pages — hosting and content delivery for the client dashboard.
  • Anthropic — AI-generated analytical commentary in scan reports (Claude models).
  • Cloudflare, Inc. — Web Analytics on the marketing site. Cookieless, aggregated traffic metrics (pageviews, referrers, country, browser, Core Web Vitals). Does not identify individual visitors and does not use cookies.

We may engage additional sub-processors for specialized scan functions (search, social-media analysis, AI assistant queries) and may change sub-processors from time to time as the Service evolves. When material changes occur to the sub-processor list, we will update this Privacy Policy and notify registered subscribers by email or in-product notice. An up-to-date list is available on request by emailing seenwithai@proton.me.

14. Data breach notification

In the event of a personal data breach affecting your information, we will notify you and applicable regulators without undue delay and, where required by law, within 72 hours of becoming aware of the breach. Notice will include the nature of the incident, the categories of data affected, the likely consequences, and the steps we have taken or recommend you take.

15. California consumer privacy rights (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, the “CCPA”), gives you the following rights regarding your personal information:

  • Right to know what categories and specific pieces of personal information we collect, the sources, the purposes, and the categories of third parties we share with.
  • Right to delete personal information we have collected from you, subject to legal exceptions.
  • Right to correct inaccurate personal information we maintain about you.
  • Right to opt out of the “sale” or “sharing” of personal information. We do not sell personal information for monetary consideration and we do not share personal information for cross-context behavioral advertising.
  • Right to limit use of sensitive personal information. We do not use sensitive personal information for purposes beyond providing the Service and other purposes permitted under the CCPA.
  • Right to non-discrimination. We will not deny you the Service, charge you a different price, or provide a different level of quality because you exercised any of these rights.

To exercise these rights, email seenwithai@proton.me with “California Privacy Request” in the subject line. We may need to verify your identity before completing certain requests. You may also designate an authorized agent to submit a request on your behalf, subject to verification.

Other US state privacy laws. If you reside in a US state with a comprehensive consumer privacy law (including Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Delaware, Iowa, Tennessee, New Jersey, or Indiana), you have rights to access, correct, delete, and obtain a copy of your personal information that are similar to those described above. To exercise your rights under any applicable US state privacy law, use the same email contact and process described in this Section.

Response timing. We respond to verifiable consumer requests within the timeframes required by applicable law (generally 45 days under most US state privacy laws, with a permitted extension where reasonably necessary). For requests under the EU/UK General Data Protection Regulation, see Section 16.

16. EEA, UK, and Swiss data subject rights (GDPR)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, the General Data Protection Regulation and analogous local laws give you the following rights regarding personal information about you:

  • Right of access to personal information we hold about you.
  • Right to rectification of inaccurate or incomplete personal information.
  • Right to erasure (the “right to be forgotten”) in certain circumstances.
  • Right to restrict processing in certain circumstances.
  • Right to data portability to receive your personal information in a structured, commonly used, machine-readable format.
  • Right to object to certain processing, including processing based on legitimate interests.
  • Right to withdraw consent at any time where processing is based on consent. Withdrawal does not affect the lawfulness of processing performed before withdrawal.
  • Right to lodge a complaint with your local data protection supervisory authority.

The legal bases on which we process personal information are described in Section 5. To exercise your rights, email seenwithai@proton.me with “Data Subject Request” in the subject line. We may need to verify your identity before completing certain requests.

We respond to verifiable data subject requests within the timeframes required by applicable law (generally one month under the GDPR, extendable by up to two further months where the request is complex or numerous).

17. Automated decision-making and AI processing

Portions of the Service use artificial intelligence to generate analytical commentary, scoring, recommendations, and narrative output from observed data. This processing is automated and AI-generated content may contain inaccuracies, omissions, or approximations.

Our scan output and recommendations do not produce legal or similarly significant decisions about you in the sense contemplated by Article 22 of the GDPR. The Service is a monitoring and recommendations tool and does not, on its own, accept or deny credit, employment, housing, insurance, or similar offerings.

If you believe automated output has produced an inaccurate description of you or your business, you may request human review and correction by emailing seenwithai@proton.me with “AI Output Correction” in the subject line.

18. Changes to this Policy

We may update this Privacy Policy from time to time. We will post the updated version here and revise the date above. Material changes may also be communicated by email or in-product notice.

19. Contact

Questions or privacy requests: email seenwithai@proton.me or use the contact form on our site.

Registered office:
SeenWith LLC
4539 N 22nd St, STE N
Phoenix, AZ 85016
United States
(via Northwest Registered Agent LLC, Statutory Agent)

20. Revision history

  • May 18, 2026 — Added Cookie Policy reference (§8), specific security mechanisms (§9), Standard Contractual Clauses for international transfers (§10), sub-processor list (§13), data breach notification (§14), California CCPA/CPRA rights (§15), EEA/UK/Swiss GDPR rights (§16), automated decision-making and AI processing (§17), other-US-state privacy law umbrella, neutral DSAR response timing, soft sub-processor change language, and information-from-third-parties subsection in §1.
  • May 7, 2026 — Earlier published version (predecessor structure).

Ready to be found?

Pick a plan and start showing up in AI answers.

Start now →