Privacy Policy

AI Search Rank — Privacy Policy

Last updated: 17 September 2025

This Privacy Policy explains how JP SOFTWARE ENG LIMITED t/a “AI Search Rank” (“AI Search Rank”, “we”, “us”) collects, uses, shares, and protects your personal data when you use our website, app, and related services (the “Services”). We comply with UK GDPR and the Data Protection Act 2018.

Controller (legal entity): JP SOFTWARE ENG LIMITED (company no. 15322994), trading as “AI Search Rank”

Registered office: 71–75 Shelton St, London, WC2H 9JQ, United Kingdom

Contact: privacy@aisearchrank.io

1) Who is the controller?

  • For your account, billing, support and site usage data, JP SOFTWARE ENG LIMITED is the data controller.
  • For Customer Data you or your organisation upload/connect (e.g., prompts, brand/competitor inputs, reports), we act as a data processor on your instructions (see DPA).

2) Data we collect

  • Account & contact: name, email, role/organisation, team members, preferences.

  • Auth & security: sign-in identifiers via Clerk, security/audit logs (IP, timestamps).

  • Billing: payment method token/last4 (processed by Stripe), billing address, transactions.

  • Usage & technical: IP, device/browser info, pages/actions, referral, timestamps, server logs.

  • Support & comms: messages/emails you send us (managed via Loops).

    We don’t target or knowingly collect data from children under 13.

3) How we use your data (and legal bases)

  • Provide & operate the Services (accounts, auth, features, support). (Contract)
  • Security & reliability (fraud prevention, diagnostics, availability). (Legitimate interests)
  • Product improvement & analytics to understand feature performance. (Legitimate interests)
  • Service communications (operational updates, security, changes). (Legitimate interests/Contract)
  • Marketing emails if you opt in; opt out anytime. (Consent/Legitimate interests)
  • Billing, tax & compliance. (Legal obligation/Contract)

4) Vendors we use (data sharing)

We use trusted service providers acting on our instructions:

  • Authentication: Clerk
  • Email & comms: Loops
  • Payments: Stripe (we don’t store full card numbers)
  • Analytics: Google Analytics
  • Hosting & infrastructure: Vercel, Render, and AWS.
  • Advisers/transactions: where necessary under confidentiality

Providers must protect data and not use it for their own purposes.

5) International transfers

Some providers are outside the UK/EEA (e.g., USA). We use safeguards such as the UK IDTA or EU SCCs with UK Addendum, and/or rely on applicable adequacy decisions (including the UK extension to the EU–US Data Privacy Framework, where relevant).

6) Retention

We retain personal data only as long as needed for the purposes above and legal/accounting/security needs, then delete or anonymise it. Billing records are kept as required by law.

7) Security

We apply technical and organisational measures (encryption in transit, access controls, least-privilege, monitoring). No system is 100% secure, but we work to mitigate risks.

8) Your rights

You can access, correct, delete, restrict or object to processing, and request data portability. Where we rely on consent, you can withdraw it at any time.

Contact privacy@aisearchrank.io. We may need to verify your identity.

You can complain to the ICO (ico.org.uk). Please contact us first so we can try to resolve your concern.

9) Controller vs processor

  • Controller: your account, usage, support and marketing data (JP SOFTWARE ENG LIMITED).
  • Processor: your Customer Data, processed only to deliver the Services and per our DPA. You (or your organisation) are the controller for Customer Data.

10) Third-party links

Our Services may link to third-party sites. Their privacy practices are their own—please review their policies.

11) Changes

We may update this policy from time to time. We’ll post updates here and change the “Last updated” date. If changes are material, we’ll notify you via the Service or email.