SEOForge
Sign inStart Free
Privacy

Privacy Policy

Last updated: May 14, 2026

1. What this covers

This policy explains what data SEOForge (“we”, “us”) collects when you use seoforge.org and any subdomain, and what we do with it. By using the service you agree to this policy.

2. Data we collect

When you sign up and use SEOForge, we collect:

  • Account data: email address, name, and a profile photo URL if you sign in with Google or X.
  • WordPress credentials: if you connect a WordPress site, we store the URL, username, and an encrypted application password (AES-256-GCM). We never see the plaintext after submission.
  • Generated content: articles, keywords, and metadata produced by the AI pipeline. You own this content.
  • Billing info: if you subscribe, Stripe processes your card. We store only the Stripe customer ID and subscription state — not card numbers.
  • Usage data: requests, costs, error logs needed to run the service.
  • Behavioral analytics: Microsoft Clarity records anonymized session replays and heatmaps. No keystroke or password capture.

3. Third-party services we share data with

SEOForge sends some of your data to vendors that help the product run. Each has their own privacy policy.

  • Anthropic — your keyword and site context is sent to Claude to generate articles.
  • Google Search Console — if you connect, we read impressions/clicks/queries for your site.
  • Stripe — payment processing.
  • Neon (Postgres) — primary database hosting.
  • Vercel — application hosting and deployment.
  • Microsoft Clarity — anonymized session analytics.
  • Google / X (Twitter) — OAuth sign-in.
  • SerpApi, Unsplash — public SERP data and hero images (no personal data shared).
  • Resend — transactional email (welcome, billing, notifications).

We never sell your data to advertisers or list brokers.

4. Cookies

We use a session cookie to keep you logged in, a CSRF cookie for security, and analytics cookies for Microsoft Clarity. No third-party advertising cookies are placed by us. You can disable cookies in your browser, but sign-in won't work without the session cookie.

5. Your rights (GDPR / CCPA)

  • Access: request a copy of your data by emailing us.
  • Deletion: request account + data deletion by emailing us. We will delete within 30 days.
  • Portability: generated articles can be exported via WordPress or your blog feed.
  • Opt-out of analytics: use a browser ad-blocker or contact us.

6. Security

WordPress passwords are encrypted at rest with AES-256-GCM. Database connections use TLS. Sessions expire after 14 days. We run on Vercel + Neon infrastructure with industry-standard security practices.

7. Children

SEOForge is not intended for users under 16. We do not knowingly collect data from minors.

8. Changes

We may update this policy. Material changes will be announced via email or an in-app banner.

9. Contact

Questions or data requests: aubreynicholsacc@gmail.com