VisitsFromAI

Privacy Policy (VisitsFromAI.com)

Effective date: April 6, 2026

This Privacy Policy explains how Olmsted Tech LLC ("VisitsFromAI," "we," "us," or "our") collects, uses, discloses, and protects information when you access or use visitsfromai.com and related services (the "Services").

If you do not agree with this Policy, please do not use the Services.

1. Who is responsible for your information

Data Controller (for most processing): Olmsted Tech LLC (Wyoming, USA)

Registered Agent Address: 30 N Gould St Ste R, Sheridan, WY 82801, United States

Contact: support@visitsfromai.com

If you purchase Professional Services, you may also act as a "controller" of information you provide to us about your business or your customers. In those cases, we may act as a "service provider" or "processor" for certain activities. If needed for enterprise customers, we can provide a separate Data Processing Addendum upon request.

2. Information we collect

We collect information in three main ways: (a) you provide it directly, (b) we collect it automatically, and (c) we receive it from third parties.

A. Information you provide

  • Account information: your email address, authentication tokens (via our auth provider), and account preferences.
  • Domain and website information: the domain name or website URL you submit for analysis, and any additional context you choose to provide (such as your role, business type, or goals).
  • Professional Services information (if applicable): credentials, access tokens, or other information you provide to give us access to your website, CMS, hosting environment, or analytics tools. We encourage the use of delegated or limited access where possible.
  • Communications: messages you send to support, sales, or onboarding, including any attachments or context you provide.
  • Marketing preferences: whether you have opted in to receive marketing emails from us.

Please do not submit sensitive personal information — such as government IDs, health data, or financial account details — through the Services unless we explicitly request it for a specific, legitimate purpose.

B. Information we collect automatically

  • Usage and device data: pages viewed, clicks, feature interactions, referral URLs, approximate location (inferred from IP address), device type, browser information, and log data.
  • Cookie and similar technology data: identifiers stored in cookies or local storage, session data, and analytics identifiers, depending on your settings and applicable consent requirements.
  • Security data: signals used to help secure accounts and detect fraud or abuse.

C. Information from third parties

  • Payment information (via Stripe): we receive purchase confirmation and limited billing details such as the last four digits of your card and payment status. Stripe processes payment card details directly and we do not store full card numbers.
  • Analytics and advertising partners: where enabled, platforms such as Google may provide aggregated performance and attribution data related to our marketing campaigns.

D. Information collected by crawling your domain

When you submit a domain through the Services, we crawl publicly accessible pages on that domain as part of generating your report and ongoing analysis. The information collected during a crawl may include:

  • page titles, meta descriptions, and heading structure;
  • body content and word count on crawled pages;
  • structured data and schema markup present on pages;
  • internal link structure;
  • robots.txt contents and sitemap references; and
  • technical signals such as page load behavior, HTTPS status, and HTTP response codes.

This crawl data is used solely to perform the analysis and generate your report. It is not used for advertising, sold to third parties, or used to train our own AI models. For Growth Subscription customers, crawling recurs automatically on a monthly basis to generate updated scores. See Section 7 for information on how long we retain crawl data.

3. How we use information

We use information to:

1. Provide the Services

  • create and manage your account;
  • crawl your submitted domain and generate your Free Report and any subsequent reports;
  • deliver the Playbook and Growth Subscription features;
  • provide onboarding support and Professional Services.

2. Maintain, improve, and secure the Services

  • troubleshoot, debug, and maintain performance;
  • detect and prevent fraud, abuse, and unauthorized access;
  • measure usage patterns and improve the user experience.

3. Communicate with you

  • send transactional messages such as account alerts, receipts, and report delivery notifications;
  • respond to support requests and inquiries.

4. Marketing (only where permitted or consented)

  • send marketing emails if you have opted in — you can unsubscribe at any time;
  • run and measure advertising campaigns, subject to cookie and consent controls where required by law.

5. Comply with legal obligations and enforce our Terms

  • comply with applicable laws and regulations;
  • enforce our Terms of Service and protect our rights and the rights of others.

4. What we send to AI model providers — and what we don't

To generate analysis outputs, we use third-party AI model APIs. We currently use providers including OpenAI, Google, Anthropic, and Perplexity, and may add or change providers over time.

What we send

We send the following types of information to AI model providers as part of generating your report:

  • Crawled page content: summarized or excerpted text from publicly accessible pages on your submitted domain, used to classify the site's purpose and generate relevant test queries. We process and summarize crawled content before sending it — we do not send raw full-page HTML dumps where summarized content is sufficient.
  • Generated test queries: the queries we construct to test AI engine citation behavior. These queries are designed to be generic and contain no personal data — they describe a type of website or use case without naming your domain, brand, or any individual.
  • Your domain name: included when testing AI engines directly to identify whether your site is cited in responses to the generated queries.

What we don't send

  • We do not send your account email address, payment information, or personal contact details to AI model providers.
  • We do not send raw personal data from your account to AI models.
  • The generated test queries are specifically designed to exclude brand names, distinctive phrases, and any language that identifies you personally.

How providers use what we send

AI model providers process data under their own terms and privacy policies in addition to ours. We recommend reviewing the policies of providers whose outputs you rely upon. We select providers with commercially reasonable data handling commitments and, where available, use API configurations that limit data retention or model training on inputs.

5. Cookies, analytics, and advertising

A. What we use

We use cookies and similar technologies — including local storage and pixels — for:

  • Essential operations: authentication, security, session management, and core product functionality;
  • Analytics: understanding how the Services are used, including tools such as PostHog; and
  • Advertising and measurement: attribution and campaign performance, which may include tags or pixels for platforms such as Google, and other tools as our marketing activity evolves.

B. Consent (EU, UK, and similar jurisdictions)

If you are in the EU, UK, or another jurisdiction where consent is required before setting non-essential cookies, we use a consent management tool to load non-essential cookies and trackers only after you have provided consent. You can update your preferences through the cookie settings banner (where provided) or your browser controls.

C. Your choices

Depending on your jurisdiction and settings:

  • you can control non-essential cookies through the consent banner or cookie settings we provide;
  • you can block cookies via your browser settings, though some features may not function correctly if you do; and
  • you can opt out of certain targeted advertising through platform-level opt-out tools and, where we are required to provide them, controls within the Services.

6. How we share information

We do not sell your personal information. We may share information in the following circumstances.

A. Service providers

We share information with vendors that help us operate the Services, including providers of:

  • authentication and database services;
  • hosting, content delivery, and security infrastructure;
  • analytics;
  • email delivery;
  • payment processing;
  • AI model APIs — for generating analysis outputs as described in Section 4; and
  • advertising platforms — for campaign measurement and attribution, subject to consent where required.

We share only the information reasonably necessary for each provider to perform its function on our behalf.

B. Legal, safety, and enforcement

We may disclose information if we believe in good faith it is necessary to:

  • comply with applicable law, regulation, subpoena, or legal process;
  • protect the security or integrity of the Services;
  • protect our rights, property, or users; or
  • investigate or prevent fraud or abuse.

C. Business transfers

If we are involved in a merger, acquisition, financing, reorganization, or sale of assets, your information may be transferred as part of that transaction, subject to standard confidentiality protections.

D. With your direction

We may share information when you request or authorize us to do so — for example, when Professional Services require us to interact with your third-party platforms on your behalf.

7. Data retention

We retain information for as long as necessary to:

  • provide the Services;
  • maintain business records and audit trails;
  • comply with legal obligations;
  • resolve disputes and enforce our agreements; and
  • protect against fraud and abuse.

Crawl data and report outputs are retained for the duration of your account, as score history and trend data are a core part of the Services. You can request deletion of your data or delete your account at any time, subject to any retention required by law (such as tax or accounting records) or necessary for security purposes.

We may retain aggregated or de-identified information — which cannot reasonably be used to identify you — for longer periods for product improvement and analytics purposes.

8. Your rights and controls

A. Account controls

Where available in the Services, you can:

  • export your data and report history;
  • delete your account; and
  • manage your preferences, including marketing opt-in status.

B. Marketing emails

If you opted into marketing communications, you can unsubscribe at any time using the unsubscribe link in any marketing email. Transactional messages — such as receipts, security alerts, and report delivery notifications — are not subject to marketing opt-out and will continue to be sent as needed.

C. Jurisdiction-based privacy rights

Depending on where you live, you may have rights including:

  • access to the personal information we hold about you;
  • correction of inaccurate or incomplete information;
  • deletion of your personal information;
  • portability — receiving a copy of your data in a structured format;
  • objection to or restriction of certain types of processing; and
  • where processing is based on consent, withdrawal of consent at any time without affecting the lawfulness of processing before withdrawal.

To exercise any of these rights, contact us at support@visitsfromai.com. We may verify your identity before responding — for example, by confirming access to the email address associated with your account. Some rights may be limited by applicable law, such as where retention is legally required.

D. Targeted advertising opt-out

In some jurisdictions, you may have a right to opt out of "targeted advertising," "sale of personal information," or similar concepts under applicable privacy law. Where we offer such controls, we will honor them. You can also use platform-level opt-out tools and your cookie settings to limit targeted advertising.

9. International data transfers

We are based in the United States and may process and store information in the US and in other countries where we or our service providers operate. These countries may have different data protection laws than your own jurisdiction.

Where required by applicable law, we take steps designed to ensure that cross-border transfers of personal information are subject to appropriate safeguards — such as contractual protections with service providers — consistent with your jurisdiction's requirements.

10. Security

We implement reasonable administrative, technical, and organizational measures designed to protect your information against unauthorized access, loss, or misuse. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

If you provide credentials for Professional Services, we strongly encourage the use of delegated access methods (such as adding us as a collaborator or team member) where available, and recommend limiting access to the minimum necessary to perform the work.

11. Children's privacy

The Services are not directed to children, and we do not knowingly collect personal information from anyone under the age of 13 (or the applicable age of digital consent in your jurisdiction). If you believe a child has provided us with personal information, please contact us and we will take prompt steps to delete it.

12. Third-party links and services

The Services may link to or integrate with third-party websites and services. Their privacy practices are governed by their own policies, not ours. We are not responsible for the content, security, or privacy practices of any third-party service.

13. Changes to this Privacy Policy

We may update this Policy from time to time. If we make material changes, we will post the updated Policy on the site and may notify you by email or through the Services. Your continued use of the Services after changes become effective constitutes your acceptance of the updated Policy.

14. Contact us

For privacy questions, rights requests, or concerns, please contact:

Email: support@visitsfromai.com

Mail: Olmsted Tech LLC, 30 N Gould St Ste R, Sheridan, WY 82801, United States