Privacy Policy

1.1 Information You Provide Directly

When you contact us, request an audit, schedule a consultation, or become a Client, we may collect the following categories of information:

• name, job title, and business affiliation; • business name, website URL, and country of operation; • email address and telephone number; • business address and billing address; • any additional information you elect to share during consultations or in written correspondence.

1.2 Payment Information

All payment processing is handled exclusively by Stripe, Inc. We do not directly receive, store, or process credit-card, debit-card, or banking information. Stripe collects payment details under its own privacy policy, available at www.stripe.com/privacy. From Stripe, we receive only the transaction metadata necessary to administer your subscription, including your name, billing email address, the last four digits of your payment card, and transaction status.

1.3 Information Collected Automatically

When you visit our website, we automatically collect a limited set of technical information, including:

• internet protocol (IP) address and approximate geographic location; • browser type, version, and operating system; • pages visited, time spent on those pages, and referral source.

We use the information we collect for the following purposes:

(a) to deliver, administer, and improve the services you have purchased;

(b) to process payments through our payment processor;

(c) to communicate with you regarding your account, services, support requests, and operational matters;

(d) to send periodic informational updates relating to AI visibility, from which you may unsubscribe at any time;

(e) to maintain, improve, and secure our website and services;

(f) to comply with applicable legal obligations and respond to lawful requests from public authorities.

We do not sell your personal information to third parties under any circumstances. We do not use your personal information to target advertising across other websites or platforms.

We share information only with the service providers necessary to deliver our services, each of which is bound by its own privacy policy and contractual confidentiality obligations. These providers currently include:

• Stripe, Inc. — payment processing (www.stripe.com/privacy); • Google LLC (Workspace) — email and document management (www.google.com/policies/privacy); • Calendly, LLC — appointment scheduling (www.calendly.com/privacy); • Make.com (Celonis) — workflow automation (www.make.com/en/privacy-notice); • Loom, Inc. — video messaging (www.loom.com/privacy); • third-party content production and authority-signal partners, where engaged on Client's behalf in fulfillment of the services.

Each such provider receives only the minimum information necessary to perform its specific function. We may also disclose information where required by law, valid court order, or governmental authority of competent jurisdiction, or where necessary to protect our legal rights or the safety of others.

We retain Client information for the duration of the active engagement and for a period of up to seven (7) years thereafter to comply with applicable tax, accounting, regulatory, and legal obligations. You may request earlier deletion of your information by contacting [email protected], subject to our ongoing legal and regulatory retention obligations.

We implement reasonable organizational, administrative, and technical measures designed to protect your information from unauthorized access, alteration, disclosure, or destruction. These measures include the use of encrypted data transmission (HTTPS/TLS), restricted access to operational systems on a need-to-know basis, and engagement of reputable service providers with established security practices.

Notwithstanding the foregoing, no method of internet transmission or electronic storage is one hundred percent (100%) secure, and we cannot guarantee absolute security.

Subject to your jurisdiction and applicable law (including, where relevant, the European Union General Data Protection Regulation and the California Consumer Privacy Act), you may have the following rights with respect to your personal information:

(a) the right to request a copy of the personal information we hold about you;

(b) the right to request correction of inaccurate or incomplete information;

(c) the right to request deletion of your personal information, subject to applicable retention requirements;

(d) the right to object to or restrict certain processing activities;

(e) the right to data portability, where applicable;

(f) the right to withdraw consent for marketing communications at any time.

To exercise any of these rights, please contact us at [email protected]. We will respond to verified requests within thirty (30) days of receipt, or such longer period as may be permitted by law where the request is complex or numerous.

Our website uses minimal cookies, limited to those required for basic site functionality and aggregate analytics. We do not use third-party advertising cookies or cross-site tracking technologies. Should we introduce additional analytics or tracking in the future, we will update this Privacy Policy and, where required by applicable law, provide an appropriate consent mechanism prior to deployment.

Cited is a United States-based business operating internationally. By using our services, you acknowledge and agree that your information may be transferred to, processed in, and stored in the United States and other jurisdictions in which our service providers operate. We undertake reasonable steps to ensure that any international data transfer is conducted in accordance with applicable law and with adequate protection for the information transferred.

Our services are intended for business use by adults aged eighteen (18) years and older. We do not knowingly collect personal information from individuals under the age of eighteen. If we become aware that we have inadvertently collected personal information from a minor, we will take reasonable steps to delete such information promptly.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. Material changes will be communicated to active Clients via electronic mail and reflected in the "Last Updated" date set forth at the top of this Privacy Policy. We encourage you to review this Privacy Policy periodically.

Questions, requests, or concerns regarding this Privacy Policy or the personal information we hold about you should be directed to:

Brightbay LLC Operating as Cited 30 N Gould Street, Suite R Sheridan, Wyoming 82801 United States of America Email: [email protected] Web: www.getaicited.co