Privacy Policy
Last updated: June 17, 2026
1. Who we are
AskRank ("AskRank", "we", "us", "our") is an AI visibility tracking service operated by Supafast Tech. Our service lets SaaS founders monitor how often their brand appears in answers from ChatGPT, Claude, Perplexity, Gemini, and other large language models.
For questions about this policy, contact us at privacy@askairank.com.
2. Data we collect
2.1 Account data
When you create an account we collect your email address and, optionally, your name. We use this to authenticate you and send product-related communications.
2.2 Brand and domain data
You provide the domain(s) or brand name(s) you want to track. We store these to generate prompts and run visibility scans on your behalf.
2.3 Usage data
We collect information about how you use AskRank: pages visited, features used, session duration, and actions taken inside the dashboard. This helps us improve the product and diagnose errors.
2.4 Billing data
Payment information is handled entirely by Stripe. We never store your card number or CVV. We do store your Stripe customer ID and subscription status so we can enforce plan limits and send billing receipts.
2.5 LLM query results
We send prompts to third-party LLM providers (see Section 6) and store their raw responses alongside extracted visibility data. These responses may contain public information about your brand and competitors.
2.6 Log and error data
Server logs and error reports (via Sentry) may include IP addresses, browser type, and the URL that triggered an error. We retain these for up to 90 days.
3. How we use your data
- To provide the AskRank service and generate visibility reports.
- To send product alerts (email, Telegram) when your visibility changes.
- To process billing via Stripe.
- To diagnose bugs and improve reliability.
- To send occasional product updates and newsletters (you can unsubscribe at any time).
- To comply with legal obligations.
We do not sell your personal data. We do not use it for advertising.
4. Legal basis for processing (GDPR)
For users in the European Economic Area (EEA) and UK, we process your personal data under the following legal bases:
- Contract performance - to provide the service you signed up for.
- Legitimate interests - to improve the product, detect fraud, and ensure security.
- Consent - for marketing emails (you opt in at signup and can withdraw at any time).
- Legal obligation - where required by applicable law.
5. Data retention
- Account data is retained for the lifetime of your account plus 30 days after deletion.
- Visibility run data (prompts, LLM responses, mentions) is retained for 90 days on primary storage, up to 1 year on warm storage, then archived to encrypted S3 or deleted.
- Billing records are retained for 7 years to meet tax and accounting obligations.
- Log and error data is retained for up to 90 days.
6. Sub-processors and third parties
We share data with the following sub-processors to deliver the service:
| Sub-processor | Purpose | Data transfer |
|---|---|---|
| Stripe | Payment processing | EEA/US - Standard Contractual Clauses |
| OpenAI | LLM visibility queries (ChatGPT) | US - Data Processing Agreement |
| Anthropic | LLM visibility queries (Claude) | US - Data Processing Agreement |
| Perplexity AI | LLM visibility queries + citation tracking | US - Data Processing Agreement |
| LLM visibility queries (Gemini) | EEA/US - Standard Contractual Clauses | |
| Postmark (ActiveCampaign) | Transactional email delivery | US - Standard Contractual Clauses |
| Telegram | Optional alert delivery | User-configured; data processed by Telegram |
| Sentry | Error monitoring | US/EU - Standard Contractual Clauses |
| PostHog | Product analytics (self-hosted) | Self-hosted on our EU infrastructure |
| AWS S3 | Archive storage for historical run data | EU region - Standard Contractual Clauses |
We do not share your personal data with any other third parties except as required by law or to protect our legal rights.
7. Your rights (GDPR / CCPA)
Depending on where you live, you may have the following rights regarding your personal data:
- Access - request a copy of the data we hold about you.
- Rectification - ask us to correct inaccurate data.
- Erasure - request deletion of your data (subject to legal retention requirements).
- Portability - receive your data in a machine-readable format.
- Restriction - ask us to limit how we process your data.
- Objection - object to processing based on legitimate interests.
- Opt-out of sale (CCPA) - we do not sell personal data; this right does not apply.
To exercise any of these rights, email privacy@askairank.com. We will respond within 30 days. You may also lodge a complaint with your local data protection authority.
8. Cookies and tracking
AskRank uses essential cookies for authentication and session management. We use analytics cookies (PostHog, self-hosted) to understand how the product is used. You can control cookie preferences via the cookie consent banner shown on your first visit.
We do not use third-party advertising cookies or cross-site tracking.
9. Security
We take reasonable technical and organizational measures to protect your data, including encryption at rest and in transit (TLS 1.2+), access controls, and regular security reviews. No method of transmission over the internet is 100% secure. If we become aware of a data breach that affects your personal data, we will notify you as required by applicable law.
10. Children
AskRank is not directed at children under 16. We do not knowingly collect personal data from anyone under 16. If you believe a child has provided us with personal data, contact us at privacy@askairank.com.
11. Changes to this policy
We may update this Privacy Policy from time to time. We will notify you of material changes via email or a prominent notice in the product. The "Last updated" date at the top of this page indicates the most recent revision.
12. Contact
For privacy-related questions or to exercise your rights:
Email: privacy@askairank.com
Website: askairank.com