Legal, Privacy

Privacy policy

Last updated June 2026

Promptleads is AEO prospect-intelligence software for SEO and marketing agencies. This policy explains what we collect, why, and the choices you have. We aim to collect the minimum needed to run the service well.

01

Account information

When you create a workspace we store your name, work email, agency name, and authentication identifiers. We use these to operate your account, secure access, and send service-related messages.

Billing is handled by our payment processor (Polar). We store a customer and subscription identifier and plan status, we do not store full card numbers.

02

Research data and business contact information

When you run a scan, we query public AI-search engines and public web sources, and we compile information about businesses, names, websites, ratings, public contact details, and the owner/decision-maker where it is publicly available. This is business (B2B) contact information used for professional outreach, not consumer profiling.

We preserve evidence for each AI-search test, the prompt, engine, model, timestamp, cited URLs, and answer excerpt, so visibility findings are verifiable. This data is scoped to your workspace.

If a business asks to be removed from your exports, you can delete those records from your workspace, and we will honor verified removal requests on our side.

03

Email verification

To confirm deliverability, candidate email addresses are checked through an email-verification provider. Only addresses returned as deliverable are marked send-ready. We do not send email on your behalf.

04

How we use data

To provide and improve the service, generate reports and outreach assets, enforce plan limits, prevent abuse, and meet legal obligations. We do not sell your data, and we do not use your research results to train third-party models.

05

Subprocessors

We rely on infrastructure and API providers to deliver the product, including hosting and database (Supabase, Vercel, Railway), AI-search and SERP providers (OpenRouter, searchapi.io), email verification, and payments (Polar). Each processes data only to perform their function.

06

Security and retention

Data is isolated per workspace with row-level security, encrypted in transit, and access is limited to the systems that need it. We retain workspace data while your account is active and for a reasonable period afterward, then delete or anonymize it.

07

Your choices

You can access, export, correct, or delete your workspace data from within the app or by contacting us. You can close your account at any time.

This document is provided for transparency and does not constitute legal advice. Questions? Reach us through the address on your account or workspace settings.