PRIVACY POLICY

Halogen Presence™ helps businesses measure and improve how their brand is described and cited within the responses of generative AI assistants. To provide the Services, we collect certain information from you and your authorized users, transmit certain information to third-party AI providers and other service providers, and, at your direction, publish content to platforms you connect. This Privacy Policy explains those practices.

This Privacy Policy should be read together with our Terms of Service, Data Processing Addendum, and Cookie Policy.

We use the collected information for the following purposes:

• Service Provision: To provide, maintain, and improve our Services, including running visibility checks, performing audits, generating reports and content drafts, and publishing content to connected platforms at your direction.
• Account Management: To create and manage your account, authenticate users, and provide customer support.
• Payment Processing: To process payments, manage subscriptions, and send billing-related communications.
• Communications: To send service-related announcements, technical notices, updates, security alerts, and support messages.
• Analytics and Improvement: To analyze usage patterns, improve our Services, and develop new features.
• Legal Compliance: To comply with applicable laws, regulations, and legal processes.
• Security: To detect, prevent, and address technical issues, fraud, and security incidents.

To deliver the core functionality of the Services, we transmit certain Platform Inputs — such as your tracked prompts, brand and competitor names, and related context — to third-party generative AI providers, currently Anthropic (Claude), OpenAI (GPT models), and Google (Gemini). These providers process that information to generate the answers and signals we measure.

Your use of these AI providers through the Services is also subject to those providers' own terms and privacy policies. Whether information transmitted to an AI provider is retained or used to improve or train that provider's models is determined by that provider's own policies and by our configuration with them; we encourage you to review the applicable AI provider's privacy policy and terms for details. We ask that you do not submit personal information that is not necessary for the Services.

We also retrieve and analyze publicly available content from websites you submit for audit or tracking. You are responsible for ensuring you are authorized to have those websites accessed and analyzed.

For customers in the European Economic Area, we process personal data based on the following legal grounds:

• Contract Performance: Processing necessary to fulfill our contractual obligations to provide the Services.
• Legitimate Interests: Processing necessary for our legitimate business interests, including improving our Services, securing our platform, and conducting business analytics.
• Legal Obligations: Processing necessary to comply with applicable laws and regulations.
• Consent: Where we have obtained your explicit consent for specific processing activities.

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

• Account Information: Retained for the duration of your active subscription.
• Platform Inputs and Generated Output: Retained throughout your subscription period and for a limited period thereafter, after which it is deleted or anonymized, subject to legal retention requirements.
• Payment Information: Retained as required for accounting, tax, and legal compliance purposes.
• Communications: Retained as necessary for business records and legal compliance.
• Public Audit Records: Anonymous results generated through our public website audit tool are retained only for a limited period and then automatically deleted.

After the retention period, we will securely delete or anonymize your personal information.

We implement appropriate technical and organizational measures to protect your personal information, including:

• Access Controls: Role-based access controls and authentication mechanisms to ensure only authorized personnel can access personal information.
• Encryption: Encryption of data in transit, and encryption at rest for sensitive items such as connected-service credentials.
• Security Monitoring: Regular security assessments and monitoring for potential vulnerabilities.
• Incident Response: Established procedures for responding to security incidents.

We operate primarily from the United States and store the data underlying the Services in the United States. However, because the Services rely on third-party AI providers and other service providers, certain information — including Platform Inputs transmitted to AI providers — may be processed in, or transmitted to, jurisdictions outside the United States and Canada, including jurisdictions whose data protection laws may differ from those in your own.

Where we transfer personal data internationally, we rely on appropriate safeguards as required by applicable law, which may include Standard Contractual Clauses or the data-transfer mechanisms maintained by our service providers. If you are accessing our Services from outside the United States, please be aware that your information will be transferred to and processed in the United States and potentially other jurisdictions.

We and our service providers use cookies and similar technologies to operate, secure, and analyze the Services, including Google Analytics for usage analytics. You can manage cookies and tracking technologies through your browser settings. For more detail, see our Cookie Policy. Our Services do not currently respond to "Do Not Track" signals from web browsers.

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website, updating the "Last Updated" date, and, for material changes, sending notification to your registered email address. Your continued use of our Services after such modifications constitutes your acceptance of the updated Privacy Policy.

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

For EU/EEA residents, you also have the right to lodge a complaint with your local supervisory authority.