AI micro-drafts now availableTry free →
FeaturesPricingBlog

Compare

vs Semrushvs Surfer SEOvs Frase

Tools

Decay CalculatorRefresh Checklist

Learn

BlogAboutChangelog
Log inGet Started Free

Privacy Policy

Last updated: March 2026

SerpVive ("we", "us", "our") is operated by Levi Braga, based in Brazil. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use serpvive.com and our services.

What We Collect

We collect the following information:

  • Account information: your name, email address, and country (provided at signup or via Google Sign-In).
  • Google Search Console data: search performance data (clicks, impressions, positions, CTR) for the sites you connect. We request read-only access only.
  • Usage data: pages you visit, features you use, and diagnoses you request (via PostHog, anonymized).
  • Payment information: processed entirely by Stripe. We never see or store your credit card number.

Google User Data We Access

Google Search Console:

We access your search performance data through the Google Search Console API with read-only permission (scope: webmasters.readonly). This includes:

  • Search queries that lead to your website
  • Click counts, impressions, average position, and CTR per page
  • Page-level performance metrics over the last 16 months

Google Account (for login):

When you sign in with Google, we access your name, email address, and profile picture solely for authentication purposes.

We do NOT access:

  • Gmail, Google Drive, Google Ads, Google Analytics, or any other Google service data.
  • We cannot modify your Search Console data, submit URLs, or change any settings — our access is strictly read-only.

How We Use Your Data

We use your data to:

  • Monitor your content performance and calculate Health Scores and Decay Scores.
  • Run AI-powered diagnoses that compare your content with competitors.
  • Generate Refresh Briefs with actionable recommendations and micro-drafts.
  • Measure the results of content updates (before/after comparison).
  • Send weekly digest emails with your site's health status.
  • Improve the product based on anonymized usage patterns.

We do not sell your data to third parties. We do not use your data for advertising.

How We Use Google User Data

Search Console data is used exclusively to:

  • Monitor your website's search performance over time.
  • Calculate decay scores and health scores for your pages.
  • Identify pages that are losing traffic.
  • Generate AI-powered diagnoses that explain why pages are declining.
  • Measure the results of content updates (before/after comparison).

Google account data (name, email) is used solely for authentication and account identification.

We do not use Google user data for advertising, marketing to third parties, or any purpose unrelated to providing the SerpVive service.

How We Share Google User Data

We share Google user data with the following third-party services, solely to provide the SerpVive service:

  • Supabase (database hosting): Stores your search performance data securely in PostgreSQL with Row Level Security. Hosted on AWS infrastructure.
  • Anthropic (AI analysis): When you request an AI diagnosis, your page's performance data and content are sent to Claude AI for analysis. Anthropic does not use API inputs/outputs to train their models (per their privacy policy).
  • Vercel (hosting): Processes API requests. Does not persistently store Google user data.

We do not sell, rent, or share Google user data with advertisers, data brokers, or any third party for their own purposes.

We do not share your Google Search Console data with other SerpVive users. Each user's data is isolated via Row Level Security.

How We Store and Protect Your Data

All Google user data is stored in Supabase (PostgreSQL) with:

  • Row Level Security (RLS) ensuring each user can only access their own data.
  • Encrypted connections (TLS/SSL) for all data in transit.
  • Google OAuth refresh tokens are stored encrypted in the database.
  • Access tokens are short-lived (1 hour) and refreshed automatically.

We use industry-standard security practices including:

  • HTTPS everywhere — all connections are encrypted.
  • Secure HTTP-only cookies for authentication sessions.
  • Rate limiting on all API endpoints.
  • Input validation and sanitization on all user inputs (via Zod schema validation).
  • No secret keys or API credentials are ever exposed to the client/browser.

Data Retention and Deletion

  • Active accounts: we retain your Google Search Console data for as long as your account is active.
  • Disconnect GSC: you can disconnect your Google Search Console at any time from Settings. This removes the OAuth connection but retains historical performance data in your account.
  • Delete account: you can delete your entire account at any time from Settings > Danger Zone. This permanently deletes all your data, including:
    • All Google Search Console data (metrics, queries, page performance data)
    • All AI diagnoses and refresh history
    • Your profile and account information
    • OAuth tokens and connections
  • Free accounts: inactive accounts with no login for 12 months may be deleted with 30 days notice.

After account deletion, we retain no Google user data. To request data deletion without deleting your account, contact us at serpvive@gmail.com.

Google API Services Compliance

SerpVive's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

We only request the minimum scopes necessary: webmasters.readonly for Search Console data access, and standard sign-in scopes (email, profile) for Google authentication.

AI Processing

When you request a diagnosis, we send your page content and competitor content to Anthropic's Claude API for analysis. Important details:

  • Anthropic does not use API inputs/outputs to train their models (per their privacy policy).
  • Content is processed in real-time and not stored by Anthropic after the request completes.
  • We store the diagnosis results (causes, brief, recommendations) in our database tied to your account.

Cookies

We use only essential cookies:

  • Authentication cookies: Supabase session tokens to keep you logged in.
  • Preference cookies: active site selection, UI preferences.
  • Analytics: PostHog uses a first-party cookie for anonymous session tracking. No cross-site tracking.

We do not use advertising cookies or third-party tracking cookies. See our Cookie Policy for full details.

Your Rights

Depending on your location, you may have the following rights under GDPR (EU), LGPD (Brazil), or similar laws:

  • Access: request a copy of all data we hold about you.
  • Correction: update or correct your personal information.
  • Deletion: request permanent deletion of your account and all associated data.
  • Export: request a machine-readable export of your data.
  • Objection: object to data processing for specific purposes.

You can delete your account directly from Settings > Danger Zone. For data export or other requests, email us at serpvive@gmail.com.

Contact

For any privacy-related questions or requests, contact us at:
serpvive@gmail.com

Levi Braga
SerpVive — serpvive.com
Brazil