AgenticLensAgenticLens
Get started

Privacy Policy

Last updated: April 18, 2026

1. Introduction

AgenticLens (“we,” “our,” or “us”) operates the AI visibility platform at agenticlens.io. This Privacy Policy explains how we collect, use, share, and protect information when you use our website, dashboard, free scan, and all related services.

We are committed to protecting your privacy. We collect only what we need to provide the service, we never sell your data, and we give you control over your information.

This policy applies to all users of AgenticLens, including visitors who use the free scan without creating an account, registered users with paid subscriptions, and agency users managing multiple client sites.

2. Information we collect

Information you provide directly

When you create an account: email address, name (if provided), and authentication credentials through Firebase Authentication or Google sign-in.

When you subscribe to a plan: payment information is collected and processed by Stripe. We do not store your credit card number, CVV, or full payment details. We receive and store your Stripe customer ID, subscription status, and billing history metadata from Stripe.

When you use the platform: website URLs you submit for scanning, site names you assign, custom queries you add, and any settings or preferences you configure.

When you contact support: your email address and the content of your communication.

Information collected automatically

When you use the free scan: the URL submitted and your IP address for rate limiting purposes. We hash IP addresses and do not store them in raw form beyond the rate limiting window.

When you use the platform: usage data including pages visited, features used, scans initiated, and timestamps of activity. This data is collected through Firebase Analytics and is used to improve the platform.

Browser and device information: browser type, operating system, device type, screen resolution, and language preference. Collected automatically through standard web technologies.

Information generated by our service

When we scan a website: we collect and store publicly accessible information from the submitted URL, including page titles, meta descriptions, Open Graph tags, structured data markup, heading text, and body content excerpts. We only access content that is publicly available on the internet. We do not access password-protected pages, private data, or content behind authentication.

When we test AI recommendations: we generate queries based on our analysis of your business and run those queries against AI agent APIs. The queries, responses, and our analysis of whether your business was recommended are stored as part of your scan and monitoring data.

When we identify competitors: competitor business names that appear in AI agent responses to your queries are stored as part of your monitoring data. This information is derived entirely from public AI agent responses.

3. How we use information

We use collected information to:

  • Provide the AgenticLens service, including scanning websites, generating AI visibility scores, testing AI recommendations, monitoring visibility changes, and delivering reports.
  • Process payments and manage subscriptions through Stripe.
  • Send service-related communications, including weekly email reports, visibility change alerts, and account notifications.
  • Enforce rate limits and prevent abuse of the free scan and platform features.
  • Improve the platform by analyzing usage patterns, identifying bugs, and understanding which features provide the most value.
  • Provide customer support when you contact us.
  • Comply with legal obligations when required.

We do not use your data to train AI models. We do not use your scan results to improve recommendations for other users. Your data is used solely to provide the service to you.

4. Sharing of information

We share information only in these circumstances:

  • With Stripe for payment processing. Stripe's handling of your payment information is governed by their own privacy policy.
  • With Firebase (Google Cloud) for authentication, database hosting, and analytics. Firebase's data handling is governed by Google's privacy policies.
  • With OpenAI and other AI providers when running recommendation queries. The queries we send to AI providers contain the search phrases we generated based on your business — they do not contain your personal information, account details, or private data. These queries are the same type of question any member of the public could ask.
  • With service providers who help us operate the platform, including email delivery services, under strict confidentiality agreements.
  • When required by law, subpoena, court order, or legal process.
  • To protect the rights, safety, or property of AgenticLens, our users, or the public.

We do not sell, rent, or trade your personal information to third parties for marketing or advertising purposes. We do not share your scan results, visibility data, or competitor intelligence with anyone other than you, except as described above.

5. Data retention

Account and profile data is retained while your account is active and for 30 days after account deletion.

Scan and monitoring data is retained while your subscription is active. If you cancel your subscription, your historical data remains accessible in read-only mode. If you delete your account, all associated scan and monitoring data is permanently deleted within 30 days.

Free scan results are stored temporarily and automatically deleted after 7 days.

Rate limiting data (hashed IP addresses and scan counts) is retained for 24 hours and then automatically deleted.

Payment and billing records are retained as required by applicable tax and financial regulations, typically 7 years.

Email communications with support are retained for 2 years after the last communication.

6. Cookies and tracking

AgenticLens uses minimal tracking technologies:

  • Firebase Authentication tokens stored in your browser to maintain your login session. These are essential for the platform to function and cannot be disabled while using authenticated features.
  • Firebase Analytics for understanding platform usage patterns. This uses first-party cookies and does not track you across other websites.

We do not use third-party advertising cookies, social media tracking pixels, retargeting cookies, or any cross-site tracking technologies.

We do not participate in advertising networks or data broker ecosystems.

7. Your rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: You can request a copy of all personal data we hold about you.
  • Correction: You can request correction of inaccurate or incomplete data.
  • Deletion: You can request deletion of your account and all associated data. This can be done through your dashboard settings or by contacting support@agenticlens.io.
  • Data portability: You can request your scan results, monitoring data, and account information in a machine-readable format.
  • Restriction: You can request that we restrict processing of your data while a complaint or correction request is being resolved.
  • Objection: You can object to processing of your data for specific purposes.
  • Withdrawal of consent: Where processing is based on consent, you can withdraw consent at any time.

To exercise any of these rights, contact support@agenticlens.io. We will respond to requests within 30 days. We may ask you to verify your identity before processing a request.

8. Data security

We implement appropriate technical and organizational measures to protect your data, including:

  • All data transmitted between your browser and our servers is encrypted using TLS (HTTPS).
  • Database access is restricted to authenticated application services with role-based access controls.
  • Payment information is handled entirely by Stripe, which is PCI DSS Level 1 certified.
  • Authentication is handled by Firebase Authentication with support for secure password hashing and OAuth 2.0.
  • We conduct regular reviews of our security practices and update them as needed.

No system is completely secure. While we take reasonable measures to protect your data, we cannot guarantee absolute security. If we become aware of a data breach that affects your personal information, we will notify affected users and relevant authorities as required by law.

9. Children's privacy

AgenticLens is not directed at children under 16. We do not knowingly collect personal information from children under 16. If you believe a child has provided personal information to AgenticLens, contact us at support@agenticlens.io and we will delete the information promptly.

10. International data transfers

AgenticLens is operated from New Zealand. Our infrastructure is hosted on Google Cloud (Firebase), which may process and store data in data centers located in various countries.

If you are located in the European Economic Area, United Kingdom, or other jurisdictions with data transfer restrictions, your data may be transferred to and processed in countries that may not provide the same level of data protection as your home country. By using AgenticLens, you consent to this transfer.

We rely on Google Cloud's data processing agreements and standard contractual clauses for international data transfers where applicable.

11. Agency and multi-site users

If you use AgenticLens on the Agency plan to scan and monitor websites on behalf of clients, you are responsible for ensuring that you have appropriate authorization to scan those websites and that your clients are aware their website data is being analyzed by a third-party platform.

White-label reports generated through the Agency plan may be shared with your clients. You are responsible for your own privacy obligations to your clients regarding this data.

AgenticLens does not have a direct relationship with your clients unless they independently create their own accounts. We process client website data based on your instructions as the account holder.

12. Website scanning practices

When AgenticLens scans a website, we access only publicly available content. Our scanning practices are similar to how search engine crawlers and AI agents access websites.

We respect robots.txt directives. If a website's robots.txt file blocks our user agent, we will note this as a finding in the scan results but will not attempt to bypass the restriction.

Our scans access the website's HTML content, meta tags, structured data, and publicly linked resources. We do not execute JavaScript on scanned pages in a way that would submit forms, create accounts, make purchases, or modify any data on the scanned website.

Scan frequency for monitored sites is determined by the user's subscription plan. Scans occur at most once per day for any individual site.

13. AI provider data handling

When testing AI recommendations, we send generated queries to AI provider APIs including OpenAI. These queries are general customer intent questions related to the business category and location being analyzed. They do not contain personal information about the AgenticLens user.

AI provider responses may mention third-party business names. We store these mentions as part of the competitive intelligence feature. The businesses mentioned in AI responses are not our users and we have no relationship with them — their mention is derived entirely from the AI provider's public response.

We do not control how AI providers store, process, or use the queries we send. Refer to each provider's privacy policy for details on their data handling practices.

14. Email communications

We send the following types of email:

  • Transactional emails: account verification, password reset, subscription confirmations, and payment receipts. These cannot be opted out of while your account is active.
  • Service emails: weekly visibility reports and change alerts. These can be managed through your dashboard notification settings.

We do not send marketing emails, newsletters, or promotional content. We do not share your email address with third parties for marketing purposes.

15. Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top indicates the most recent revision. Significant changes will be communicated to registered users via email. Continued use of the platform after changes constitutes acceptance of the revised policy.

We encourage you to review this policy periodically to stay informed about how we protect your data.

16. Contact us

Questions, concerns, or requests regarding this Privacy Policy or your data:

If you are unsatisfied with our response to a privacy concern, you may have the right to lodge a complaint with your local data protection authority.