SEO God is a managed SEO intelligence platform. We connect to your Google Search Console and Google Analytics 4 accounts to run automated audits, generate AI-powered recommendations, and build patches for your clients’ websites.
This policy explains what data we collect, how we use it, and what rights you have as a user or operator of the platform.
When you connect a Google account to a client profile, SEO God requests the following OAuth scopes:
We read search performance data for your verified properties — including search queries, impressions, clicks, click-through rate, and average position. This data powers phases 4–6 of the 21-phase audit engine: Search Console data pull, impressions and CTR analysis, and keyword opportunity mapping. We never write to or modify your Search Console properties.
We read session counts, traffic sources, page engagement metrics, and revenue attribution from your GA4 properties. This data powers phases 7–8 of the audit engine: traffic pattern analysis and revenue attribution modeling. We never write to or modify your GA4 properties.
We read your Google email address to display which Google account is connected to each client profile. We do not access your Google profile photo or any other profile data.
- We do not sell, share, or transfer your Google data to any third party.
- We do not use your Search Console or Analytics data to train AI or machine learning models.
- We do not store raw Google API responses permanently — data flows through the audit engine and results are stored as structured audit records.
- We do not access data for any Google property other than the one associated with the client domain you specify.
Our use and transfer of information received from Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements.
When you create an operator account, we store your email address and a hashed password via Supabase Auth. We do not store raw passwords.
For each client you create, we store the client name, website domain, and any business intelligence you generate (AI brief, audit results, patches). We also store Google OAuth refresh tokens to maintain persistent access to GSC and GA4 on your behalf.
Each time you run an audit, we store structured results from all 21 phases: scores, issue counts, log output, and AI-generated recommendations. We store this so you can review historical audit performance over time.
To generate the AI Business Brief and perform on-page audits, our engine fetches publicly accessible HTML from your clients’ websites. We extract title tags, meta descriptions, headings, and body text. This content is sent to the Anthropic Claude API for analysis and is not stored beyond the generated audit result.
SEO God uses the Anthropic Claude API (claude-sonnet-4-6, claude-haiku-4-5) to analyze your clients’ websites, identify SEO issues, and generate patch recommendations. Website content and audit data sent to the Claude API is governed by Anthropic’s Privacy Policy. Anthropic does not use your data to train its models under its current API terms.
All data is stored in Supabase (PostgreSQL), hosted on AWS infrastructure with encryption at rest and in transit. Google OAuth refresh tokens are stored in your client records and protected by Supabase Row Level Security — only authenticated operators can read their own clients’ tokens.
The platform is hosted on Vercel’s edge network. Vercel’s privacy policy applies to infrastructure-level data handling.
- OAuth tokens— stored until you disconnect the Google account from a client profile. Clicking “Disconnect” immediately clears the refresh token and all associated Google credentials from our database.
- Audit results — retained indefinitely while the client record exists. Deleting a client removes all audit runs and phase data associated with that client.
- Patches — retained until you delete the client or manually remove them.
- Operator account — retained until you request account deletion. Contact us to initiate full account deletion.
The following third-party services process data on our behalf:
| Service | Purpose | Privacy Policy |
|---|---|---|
| Supabase | Database, auth, realtime | supabase.com/privacy |
| Anthropic | AI analysis (Claude API) | anthropic.com/legal/privacy |
| Google APIs | Search Console, Analytics 4 | policies.google.com/privacy |
| Vercel | Hosting and edge delivery | vercel.com/legal/privacy-policy |
As a user of SEO God, you have the following rights over your data:
- Access — request a copy of the personal data we hold about you by contacting us at the address below.
- Deletion — delete individual clients and all their associated data from your dashboard. To delete your operator account entirely, contact us.
- Revoke Google Access— disconnect your Google account from any client at any time by clicking “Disconnect” in the client’s Data Sources panel. You can also revoke access directly from your Google Account permissions page.
- Correction — update your email or client information directly in the platform.
- Portability — contact us to request an export of your audit data in structured format.
SEO God uses session cookies set by Supabase Auth to maintain your login state. We do not use third-party advertising cookies or tracking pixels. We do not run analytics on your usage of the platform beyond server-side logs maintained by Vercel.
We may update this policy as the platform evolves. Material changes will be communicated via the email address associated with your operator account. Continued use of the platform after changes are published constitutes acceptance.
For privacy questions, data deletion requests, or concerns about how we handle your data:
We aim to respond to all data requests within 30 days.