Privacy Policy

1. Introduction & Scope

Welcome to WRANKS ("Company", "we", "our", or "us"). We are committed to protecting the privacy and security of your personal and corporate information. This Privacy Policy outlines our practices regarding the collection, processing, use, disclosure, and protection of information when you access or use the WRANKS platform, application programming interfaces (APIs), software frameworks, and associated services (collectively, the "Service").

By accessing or using our Service, you acknowledge that you have read, understood, and agree to the data practices described in this Privacy Policy. If you do not agree with our policies, please refrain from using the Service.

2. Information Collection Mechanisms

We collect various typologies of data in order to provision, manage, and optimize the Service:

• Personally Identifiable Information (PII): Including but not limited to full name, email address, corporate affiliation, and authentication credentials securely encrypted.
• Financial & Billing Data: Payment details, billing addresses, and tax identifiers are processed securely by our authorized Payment Card Industry (PCI) compliant merchant of record (Dodo Payments). We do not store raw primary account numbers (PAN) or CVV elements on our infrastructure.
• Customer Data Types (Proprietary Data): Brand nomenclatures, predefined prompts, domain heuristics, competitor lists, and geospatial targeting directives you program into the platform.
• Telemetry & Automated Data: Machine-readable metadata captured automatically via operational logging, including IP addresses, User-Agent strings, temporal access stamps, payload sizes, rate-limiting constraints, and API utilization metrics.

3. How Your Information is Utilized

Data processing is exclusively purposed for the legitimate business interests of WRANKS, including:

• Executing core functionalities, such as benchmarking brand visibility across LLM ecosystems.
• Managing account provisioning, user authentication, and subscription lifecycle events.
• Deploying security and fraud detection models to enforce Acceptable Use parameters.
• Aggregating anonymized analytical models to improve architectural efficiency.
• Ensuring compliance with governing laws, subpoenas, and court orders applicable in definitive jurisdictions.

4. Sub-Processors & Data Sharing

To operate our highly available infrastructure, we conditionally transfer subset data to vetted sub-processors under strict Data Processing Agreements (DPAs):

• Dodo Payments: For merchant clearing and fiscal compliance.
• OpenRouter / AI Inference Partners: We transmit purely mechanical prompts to LLM endpoints to execute visibility assessments. We expressly mandate "zero-retention" endpoints where available to prevent third-party training on your proprietary brand metrics.
• Infrastructure Providers: For decentralized database hosting and queue operations (e.g., Redis layer, DynamoDB nodes).

We do not sell, rent, or lease your personal data to non-affiliated third parties for marketing purposes.

5. Security Posture & Standards

WRANKS leverages defense-in-depth architecture to insulate platform data:

• Transit Security: All API and HTTP streams require minimum TLS 1.3 cryptographic protocols.
• At-Rest Security: Relational and object storage data is encrypted transparently using AES-256 algorithms.
• Access Control: Zero-Trust access strategies and Role-Based Access Control (RBAC) dictate platform limits.

While we strive to use commercially reasonable means to protect your data, no transmission layer over the public internet is infallibly secure. Assumption of risk remains with the end user.

6. Global Data Transmissions

WRANKS is hosted within global datacenter regions. By utilizing the Service, you consent to the cross-border routing and processing of your Information within the United States, European Economic Area (EEA), or other jurisdictions where our sub-processors compute, provided robust standard contractual clauses (SCCs) govern the vector.

7. Data Retention Statutes

We maintain active tenant data contingent on the lifecycle of the subscription. For active accounts, metadata logs and historical query snapshots are retained up to a rolling 12-month window. Following account termination, WRANKS initiates a hard-delete cascade across active databases within 30 days, retaining only legally mandatory fiscal artifacts (e.g., invoices) for contiguous tax cycles (up to 7 years).

8. Statutory Rights (GDPR / CCPA)

Subject to applicable localized legislation, you may exercise specific sovereign rights over your data profile, including the Right of Access, Right to Rectification, Right to Erasure ("Right to be Forgotten"), Right to Restrict Processing, and Right to Data Portability. To exercise any mandated statutory right, written petition must be submitted to the Data Protection Officer (DPO).

9. Minors' Data Exemptions

The Service strictly constitutes B2B architecture not directed toward, nor intended for, any individual under the age of 18. WRANKS will unconditionally purge any ingested record corresponding to a minor upon discovery.

10. Contacting the Data Protection Officer

For any inquiries regarding this Privacy Policy, subjective privacy directives, or to file a formal DSAR (Data Subject Access Request), please contact our legal team directly:

WRANKS Legal & Privacy Department
Email: privacy@wranks.com