Privacy Policy

This Privacy Policy describes how AI Blog Tool ("we", "us", "our") collects, uses, and shares information when you use our website at aiblogtool.com and our services (the "Service"). By using the Service, you agree to the practices described here.

1. Information We Collect

Account information

When you create an account we collect your name, email address, and authentication credentials. If you sign in with Google, we receive your name, email, and profile photo from Google's OAuth flow — we never receive your Google password.

Content you provide

We store content you create or upload through the Service, including topic lists, posts (drafts and published), site credentials you connect, and any notes or configuration you enter.

Connected site credentials

When you connect a WordPress or other CMS site, we store the connection details (URL, username, and an application password or API key) encrypted at rest. We use these only to publish content on your behalf at your direction.

Usage data

We automatically collect limited technical data: IP address, browser type, pages viewed, and timestamps. This helps us operate the Service, detect abuse, and diagnose issues.

Cookies

We use cookies that are strictly necessary for authentication and session management. We do not use third-party advertising or cross-site tracking cookies.

2. How We Use Information

• To provide, maintain, and improve the Service.
• To generate content on your behalf using AI providers (see "Third-Party Services" below).
• To publish content to the CMS sites you connect.
• To communicate with you about your account, support requests, and important service changes.
• To detect, investigate, and prevent security incidents and abuse.
• To comply with legal obligations.

3. Third-Party Services

We rely on third-party services to operate. These providers process data on our behalf under their own privacy practices:

• Supabase — authentication and database hosting.
• Vercel — application hosting and edge delivery.
• Cloudflare — DNS, content delivery, and email routing.
• Anthropic (Claude) and xAI (Grok) — AI models used to generate content from the topics you provide. Prompt content is transmitted to these providers subject to their data handling terms.
• DataForSEO — keyword and SERP research on seeds you submit.
• Resend / Google Workspace — transactional and operational email delivery.
• Google — OAuth sign-in (only the fields returned by the sign-in flow).
• Inngest — background job orchestration.

4. Data Sharing

We do not sell your personal information. We share information only:

• With the third-party providers listed above, strictly to operate the Service.
• With the CMS sites you explicitly connect, to publish content on your behalf.
• When required by law, legal process, or to protect rights, safety, or security.
• In the context of a business transfer (e.g., merger, acquisition, or asset sale), subject to standard confidentiality obligations.

5. Data Retention

We retain account data for as long as your account is active. You can delete content and connected sites at any time from within the app. On account deletion we remove your personal data within 30 days, except where retention is required for legal, accounting, or security purposes.

6. Security

We use industry-standard measures to protect your data, including encryption in transit (TLS) and encryption at rest for stored CMS credentials. No system is perfectly secure; if we become aware of a breach affecting your data, we will notify affected users in accordance with applicable law.

7. Your Rights

Depending on your jurisdiction (e.g., GDPR in the EU/UK, CCPA in California), you may have rights to access, correct, delete, or export your personal information, object to certain processing, or withdraw consent. You can exercise most rights directly from your account settings. For anything else, contact us at support@aiblogtool.com.

8. Children

The Service is not directed to children under 16, and we do not knowingly collect personal information from children. If you believe a child has provided us with personal data, contact us and we will delete it.

9. International Transfers

Our infrastructure is primarily hosted in the United States. Wherever you are located, your data may be processed in the U.S. or other countries where our providers operate. We rely on standard contractual clauses and our providers' certifications where applicable.

10. Changes to this Policy

We may update this Privacy Policy from time to time. Material changes will be announced in the app or by email. The "Last updated" date above reflects the most recent revision. Continued use of the Service after changes take effect constitutes acceptance of the revised policy.

11. Contact

Questions, requests, or concerns? Reach us at support@aiblogtool.com.