Privacy Policy

Last updated: July 12, 2026.

1. Data controller

GenSig (gensig.app) — [email protected].

2. What we collect

DataWhy
Email addressAccount sign-in (passwordless magic links) and essential service emails.
Brand configurationsThe domains, questions, competitors and annotations you set up — the core of the Service.
Analysis resultsAI engine answers and derived metrics, archived so you can see trends.
Usage recordsA log of analyses run, used for plan limits and billing history. Retained even if brands are deleted.
Workspace activityAn audit log of configuration changes and team actions, visible to your workspace.

We do not collect passwords (sign-in is passwordless), payment card data (handled entirely by Paddle, our Merchant of Record) or advertising identifiers.

3. Processors we rely on

ProviderPurpose
SupabaseDatabase, authentication and realtime infrastructure.
OpenAIProcessing the category questions and site content to produce analyses. Questions are brand-neutral by design; your site's public content may be included in prompts.
PaddleCheckout, subscription billing, taxes and invoices.
ResendDelivery of sign-in and service emails.
RailwayApplication hosting.

4. What we do not do

5. Retention and deletion

Deleting a brand permanently removes its configuration, archived reports and monitors. Usage records (count and timestamps of analyses) are retained for billing integrity. To delete your entire account and associated personal data, email [email protected] — we complete deletion within 30 days, except records we must keep for legal or billing reasons.

6. Your rights

Depending on your jurisdiction (e.g. GDPR, CCPA), you may have rights to access, correct, export or delete your personal data, and to object to or restrict processing. Contact us and we will respond within 30 days.

7. Security

Data is encrypted in transit, access to production systems is restricted and authenticated, and sign-in uses single-use email links instead of stored passwords. No system is perfectly secure; we will notify affected users of any breach as required by law.

8. Changes

Material changes to this policy will be announced by email or in-app before they take effect.