Privacy Policy

We collect three categories of data: data you give us, data your workspace generates, and data we receive from third parties on your behalf.

• Account data. Name, email, password (hashed by our auth provider, Clerk), workspace name, and billing details processed by our payment processor.
• Project inputs. Domains, topics, target keywords, competitor URLs, list names, notes, and prospect list preferences you create or import.
• Generated data. Backlink opportunities, SEO metrics, fit scores, enriched contacts, email verification statuses, and exports captured against your projects.
• Usage data. Pages requested, features used, errors encountered, IP address, browser, and device information, used to operate and secure the Service.
• Cookies. Strictly necessary cookies for sign-in and session continuity, and minimal analytics cookies to understand product usage.

We use the data above only to:

• Run prospecting, scoring, and email enrichment on your behalf.
• Surface lists, metrics, and contact data inside your dashboard.
• Send transactional emails (sign-up, billing, security).
• Detect abuse, prevent fraud, and harden the platform.
• Improve product quality through aggregated, de-identified analytics.

We do not sell your data, we do not train third-party advertising models on it, and we do not use the contents of your lists for any purpose outside delivering the Service to you.

Operating the Service requires routing certain inputs through trusted third-party providers across categories such as authentication, hosting and database, payment processing, SEO and backlink data, contact discovery, AI scoring, and transactional email delivery.

Each sub-processor receives only the minimum data needed to perform its function and is bound by a Data Processing Agreement. A current list of sub-processors is available on request at rachid@autobacklinks.ai.

When you enrich prospects, contact data (names, public business email addresses, public profile information) is collected from publicly available sources or licensed providers. We process this data as a legitimate interest under GDPR Article 6(1)(f) for the purpose of B2B prospecting.

You are responsible for how you use exported contact data in any external email or CRM tool, including honoring unsubscribe requests, applicable anti-spam laws (CAN-SPAM, CASL, GDPR, ePrivacy), and the editorial standards of the publishers you contact. Recipients can request removal at any time and we will suppress them across the platform.

We keep your account data and project data for as long as your workspace is active. If you ask us to delete your account or workspace, we will delete or de-identify personal data associated with it unless we need to retain limited records for security, fraud prevention, billing, legal compliance, or dispute resolution. Backups and operational logs are retained on separate schedules and roll off through our normal infrastructure processes.

Depending on your jurisdiction (EU/UK GDPR, California CPRA, and similar), you have the right to access, correct, export, restrict, or delete your personal data, and to object to certain processing. To exercise any of these rights, email rachid@autobacklinks.ai. We respond within 30 days.

You can also export your lists and prospects directly from the dashboard at any time, with no support ticket required.

Data is encrypted in transit (TLS 1.2+) and at rest. Access to production systems is limited to a small number of engineers, gated behind SSO and multi-factor authentication. Secrets are managed centrally and rotated regularly.

No system is perfect. If we detect a breach affecting your data, we will notify you and the appropriate regulators within the timelines required by law (typically 72 hours under GDPR).

AutoBacklinks operates globally. Data may be processed in the United States, the European Economic Area, and the United Kingdom. Where data leaves the EEA or UK, we rely on Standard Contractual Clauses or other lawful transfer mechanisms.

AutoBacklinks is a B2B tool. The Service is not directed to children under 16, and we do not knowingly collect personal data from them.

When we make material changes to this policy, we will notify you by email or via an in-app banner at least 14 days before the changes take effect. The current version date appears at the top of this page.

Questions, requests, or concerns? Reach us at rachid@autobacklinks.ai. For general support, write to rachid@autobacklinks.ai.