# Privacy Policy
**Last Updated:** December 20, 2025
Authority Pages ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our application and services (the "Service").
By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with this policy, please do not use the Service.
---
## 1. Information We Collect
### 1.1 Personal Information
We collect information that identifies you as an individual, including:
- **Account Information:** Name, email address, authentication credentials (OAuth tokens)
- **Payment Information:** Billing details processed through Stripe (we do not store credit card numbers)
- **Contact Information:** Email address for transactional and marketing communications
### 1.2 Content You Create
We collect and store content you generate using the Service:
- **Voice Lock Data:** Authority posture, language boundaries, allowed traits, reference examples
- **Questions:** Dominant questions you define, validate, and map
- **Articles:** Generated authority articles, including all versions and regenerations
- **Uploads:** Voice guide documents (PDF, DOCX, TXT) you upload for AI extraction
- **Schema Markup:** Technical SEO assets and metadata generated from your content
### 1.3 Usage Data
We automatically collect information about how you interact with the Service:
- **Activity Logs:** Features used, articles generated, questions validated, exports performed
- **Timestamps:** When you create, modify, or access content
- **Usage Metrics:** Article generation count, regeneration attempts, quota consumption
- **Session Data:** Login times, session duration, navigation patterns
### 1.4 Technical Data
We collect technical information about your device and connection:
- **IP Address:** For security, fraud prevention, and rate limiting
- **User Agent:** Browser type, version, and operating system
- **Device Information:** Screen resolution, device type (desktop/mobile/tablet)
- **Request Metadata:** API endpoints accessed, response times, error logs
### 1.5 Cookies and Tracking Technologies
We use cookies and similar technologies to:
- **Authentication Cookies:** Keep you logged in (session cookies)
- **Preference Cookies:** Remember your settings and preferences
- **Analytics Cookies:** Understand how users interact with the Service (aggregate data only)
You can control cookies through your browser settings, but disabling cookies may limit Service functionality.
---
## 2. How We Use Your Information
### 2.1 To Provide the Service
- Process your account registration and authentication
- Generate AI-powered authority articles based on your inputs
- Validate questions and enforce voice lock constraints
- Track article quota and enforce usage limits
- Export schema markup and technical SEO assets
- Provide customer support and respond to inquiries
### 2.2 To Process Payments
- Process one-time purchase transactions through Stripe
- Generate receipts and billing records
- Prevent fraudulent transactions and chargebacks
- Comply with tax and accounting regulations
### 2.3 To Communicate With You
- Send transactional emails (purchase confirmations, password resets, account updates)
- Send marketing emails (product updates, educational content, special offers) if you opt in
- Respond to support requests and feedback
- Notify you of service changes or security issues
### 2.4 To Improve the Service
- Analyze usage patterns to identify popular features and pain points
- Monitor system performance and identify technical issues
- Conduct A/B testing to optimize user experience
- Develop new features based on user behavior and feedback
### 2.5 For Security and Compliance
- Detect and prevent fraud, abuse, and unauthorized access
- Enforce our Terms of Service and EULA
- Comply with legal obligations and respond to legal requests
- Protect intellectual property and prevent service misuse
### 2.6 For IP Protection
- Track article generation and export events to prevent unauthorized redistribution
- Embed technical markers (metadata) in generated content for provenance tracking
- Monitor usage patterns for signs of account sharing or quota circumvention
---
## 3. How We Share Your Information
We do not sell your personal information to third parties. We share your information only in the following limited circumstances:
### 3.1 Service Providers
We share data with trusted third-party service providers who assist in operating the Service:
- **Stripe** (payment processing) - Processes credit card transactions securely
- **ActiveCampaign** (email marketing) - Manages email campaigns and contact lists
- **OpenAI** (AI content generation) - Processes your inputs to generate articles
- **Cloud Hosting Providers** - Stores application data and serves the Service
These providers are contractually obligated to protect your data and use it only for the purposes we specify.
### 3.2 Legal Requirements
We may disclose your information if required by law or in response to:
- Court orders, subpoenas, or legal process
- Government investigations or regulatory requests
- Enforcement of our legal rights or defense against claims
- Protection of safety, security, or integrity of the Service
### 3.3 Business Transfers
If Authority Pages is acquired, merged, or undergoes a business restructuring, your information may be transferred to the successor entity. We will notify you via email and/or prominent notice on the Service before your information is transferred and becomes subject to a different privacy policy.
### 3.4 With Your Consent
We may share your information for other purposes with your explicit consent.
---
## 4. Data Security
### 4.1 Security Measures
We implement industry-standard security practices to protect your information:
- **Encryption in Transit:** All data transmitted between your browser and our servers is encrypted using TLS/SSL
- **Secure Authentication:** Passwords are hashed using bcrypt; we use OAuth for secure login
- **Rate Limiting:** API endpoints are protected against brute-force attacks and abuse
- **Security Headers:** We implement OWASP-recommended HTTP security headers (CSP, HSTS, X-Frame-Options, etc.)
- **Access Controls:** Employee access to user data is restricted on a need-to-know basis
- **Regular Audits:** We conduct periodic security reviews and vulnerability assessments
### 4.2 Data Storage
- **Database Security:** User data is stored in secure, access-controlled databases
- **Backup and Recovery:** Regular backups are encrypted and stored securely
- **Geographic Location:** Data is stored on servers in the United States
### 4.3 Limitations
No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials.
---
## 5. Data Retention
### 5.1 Active Accounts
We retain your information for as long as your account is active and as necessary to provide the Service.
### 5.2 Account Deletion
When you request account deletion:
- **Personal Information:** Deleted within 30 days (name, email, authentication credentials)
- **Generated Content:** Deleted within 30 days (voice locks, questions, articles)
- **Usage Data:** Anonymized and retained for analytics (no personally identifiable information)
- **Transaction Records:** Retained for 7 years as required by tax and accounting laws
### 5.3 Legal Obligations
We may retain certain information longer if required by law, to resolve disputes, enforce agreements, or protect our legal rights.
---
## 6. Your Privacy Rights
### 6.1 Access and Portability
You have the right to:
- Access your personal information and generated content
- Export your articles, questions, and voice lock data
- Request a copy of your data in a structured, machine-readable format
### 6.2 Correction and Deletion
You have the right to:
- Correct inaccurate or incomplete personal information
- Request deletion of your account and associated data
- Remove specific content (articles, questions) from your account
### 6.3 Marketing Communications
You have the right to:
- Opt out of marketing emails by clicking "unsubscribe" in any marketing message
- Continue receiving transactional emails (purchase confirmations, password resets) even after opting out
### 6.4 Cookie Control
You have the right to:
- Disable cookies through your browser settings
- Use browser extensions to block tracking technologies
- Note: Disabling authentication cookies will prevent you from logging in
### 6.5 Exercising Your Rights
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.
### 6.6 Regional Privacy Rights
**California Residents (CCPA):**
- Right to know what personal information is collected
- Right to delete personal information
- Right to opt out of sale of personal information (we do not sell personal information)
- Right to non-discrimination for exercising privacy rights
**European Residents (GDPR):**
- Right to access, rectification, erasure, and data portability
- Right to restrict or object to processing
- Right to withdraw consent at any time
- Right to lodge a complaint with a supervisory authority
---
## 7. Children's Privacy
The Service is not intended for users under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately at [email protected], and we will delete the information promptly.
---
## 8. International Data Transfers
The Service is hosted in the United States. If you access the Service from outside the U.S., your information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country.
By using the Service, you consent to the transfer of your information to the United States. We take steps to ensure your information receives adequate protection in accordance with this Privacy Policy.
---
## 9. Third-Party Links
The Service may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices of third parties. We encourage you to review the privacy policies of any third-party sites you visit.
---
## 10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations.
**Material Changes:** We will notify you via email or prominent notice on the Service at least 30 days before changes take effect.
**Non-Material Changes:** Minor updates (clarifications, formatting) may be made without notice.
Your continued use of the Service after changes take effect constitutes acceptance of the updated Privacy Policy. The "Last Updated" date at the top of this document indicates when the policy was last revised.
---
## 11. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
**Authority Pages**
Email: [email protected]
Support: [email protected]
Website: https://authoritypages.ai
For privacy-specific inquiries, please use [email protected] to ensure prompt handling by our privacy team.
---
## 12. Data Protection Officer
For GDPR-related inquiries, you may contact our Data Protection Officer at:
Email: [email protected]
---
**END OF PRIVACY POLICY**