Privacy Policy

SmartLayer ("we", "us") provides Answer Engine Optimization tooling. This policy explains what personal data we collect, why we collect it, and the rights you have over it under the GDPR and similar regulations.

Account data: email, hashed password (managed by Supabase Auth), full name (optional). Tenant data: domain you monitor, industry, language preferences, queries and content you create. Billing data: Stripe customer ID, subscription status. Card details are stored by Stripe — we never see them. Usage data: requests to our API, AEO/GEO scores, generated content, microsite traffic counters.

Supabase (database + auth — EU/US regions), Stripe (payments), Anthropic / OpenAI / Google (LLM providers for content generation), Vercel and Railway (hosting), SendGrid (transactional email), Sentry (error monitoring). Each processor handles only the minimum data needed for its function.

We retain account data while your subscription is active and for 30 days after cancellation, unless you ask us to delete it sooner via the Delete account flow. Anonymized aggregate metrics may be kept indefinitely for product analytics.

You have the right to access, rectify, port and delete your personal data. Use the Export and Delete buttons in Settings → Profile to exercise these rights immediately, or email privacy@smartlayer.ai.

We use only strictly-necessary cookies for authentication (Supabase session) and a single first-party preference cookie for language. We do not run advertising or cross-site tracking cookies.

For any privacy question or to file a complaint, write to privacy@smartlayer.ai.