Privacy Policy
Last updated .
Policy
The short version
We read the marketing data you explicitly connect, so we can show you a dashboard and write you an audit. We do not sell it, we do not pool it with anyone else's, and we do not use it to train general-purpose AI models. You can have it deleted by sending one email.
What we collect
- Account details — your name and email address, handled by our authentication provider so that we never store a password.
- Connection keys — when you connect a Google account, Google gives us a key that lets us read the specific reports you approved. That key is encrypted before it is stored, and it is scoped to your account alone.
- Your marketing data — the metrics we pull from the accounts you connect: search impressions, clicks, rankings, and similar reporting data.
- Payment details — handled entirely by our payment processor when paid plans launch. Card numbers never touch Auditry's systems.
The marketing site you are reading sets no cookies and runs no third-party scripts. See the cookie policy.
Why we process it, and on what basis
To provide the service you asked for — that is a contract basis. Where we act on a legitimate interest (keeping the service secure, preventing abuse, and fixing faults), we have balanced that against your rights and limited what we do accordingly. We do not process your data for advertising.
Google user data — our Limited Use commitment
Auditry's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
In practice, that means:
- Google data is used only to produce the dashboards and audits you asked for.
- It is never used for advertising, and never sold or transferred.
- It is never used to train generalized or third-party AI models.
- No human at Auditry reads it, except with your explicit consent, to fix a fault you reported, or where required for security or by law.
Read the full Google API Services User Data Policy. We request read-only permissions: Auditry can read your reports and cannot change, publish, spend, or delete anything in your account.
Who else processes your data
| Processor | What they do |
|---|---|
| Cloudflare | Hosting, database, and file storage |
| Clerk | Authentication — so we never hold your password |
| The APIs you connect, at your request and with your consent | |
| Stripe | Payments, when paid plans launch. Card details never reach Auditry. |
How long we keep it
Your reports and connected data are kept for as long as your account is open, because that is what makes trends over time possible. Close your account and we delete your data — the connection keys, the stored reports, and the account record. Disconnect a single data source and its keys are destroyed immediately.
Your rights
You can ask us for a copy of your data, ask us to correct it, or ask us to delete it. Email hello@auditry.com and we will act on it — there is no form to fill in and no retention team to argue with. If you are in the UK, EU, or California, you have these rights by law; we extend them to everyone regardless.
How it is protected
Connection keys are encrypted before storage. Each account's data is isolated at the database level rather than merely filtered in the interface — an important distinction, because the second kind of separation fails silently and the first does not. All traffic is encrypted in transit.
Contact
Questions about any of this: hello@auditry.com.