Privacy Policy

Effective Date: May 1, 2026 | Last Updated: May 1, 2026

1. Introduction

This Privacy Policy explains how Uplift AI Inc. ("Uplift AI", "Company", "we", "us", or "our"), a corporation incorporated under the laws of the Province of Ontario, Canada, collects, uses, discloses, and protects information when you use our products, services, platform, website, subscription plans, professional services, and related content or features (the "Services").

The Services include the Uplift AI web-based software platform, our SEO/GEO automation capabilities, automated article creation and publishing tools, AI-powered search visibility features, integrations, and the Uplift AI Partner Program for done-for-you automation and AI agent builds.

By accessing or using the Services, you acknowledge that your information will be handled as described in this Privacy Policy and our Terms & Conditions.

2. Information We Collect

2.1 Account and Authentication Information

When you create or access an account, we collect information such as:

  • Name, email address, phone number, and profile image if provided.
  • Login, session, verification, password reset, and account security records managed through our better-auth based authentication system.
  • Social login information from Google if you choose to sign in with Google.
  • Account creation, update, and last login timestamps.

2.2 Business, Website, and Onboarding Information

During onboarding, SEO analysis, and account management, we may collect:

  • Business name, website URL, sitemap data, and website content.
  • Business address, service area, location, and phone details.
  • Business categories, services, target customers, competitors, keywords, content preferences, and tone preferences.
  • Example blog URLs, brand assets, generated images, metadata, and content style signals.
  • SEO audit data, technical website signals, page metadata, crawl/scrape results, and recommendations.
  • For professional services and the AI Partner Program, business requirements, requested automation workflows, AI agent configuration details, implementation notes, and project communications.

2.3 Content and Usage Data

We collect information created, uploaded, generated, scheduled, delivered, or published through the Services, including:

  • Generated blog posts, outlines, keywords, titles, and metadata.
  • Content calendars, publishing schedules, drafts, and statuses.
  • Google Business Profile posts, media, reviews, replies, and insights.
  • Backlink, guest posting, local SEO, rank scan, and campaign data.
  • Feature usage, clicked actions, errors, logs, support requests, and workflow history.
  • AI prompt, output, token usage, model usage, and quality or safety signals needed to provide and monitor AI-powered features.
  • Text, articles, images, data, or other material generated, published, or delivered through the Services.

2.4 Third-Party Integration Data

When you connect third-party services or authorize integrations, we collect and store the information needed to operate the integration:

  • WordPress: site URL, plugin connection data, and integration keys.
  • Shopify: shop domain, OAuth tokens or API credentials, blog IDs, and store metadata.
  • Webflow: site IDs, collection IDs, OAuth tokens or API keys, and site metadata.
  • Wix: site IDs, OAuth tokens, collection IDs, and site metadata.
  • Framer: project IDs, API credentials, collection names, and site information.
  • Custom APIs: API endpoints, authentication credentials, headers, and mapping configuration.
  • Google Business Profile: account IDs, location IDs, business profile data, OAuth tokens, posts, reviews, review replies, media, and insights.

OAuth tokens, API credentials, and similar sensitive integration values are stored using protective measures such as encryption where supported by the Services.

2.5 Billing and Payment Information

Payments are processed by Stripe. We do not store full credit card numbers or sensitive card security codes on our servers. We do collect and store billing records needed to operate subscriptions, support customers, comply with legal obligations, and prevent abuse, including:

  • Stripe customer, subscription, invoice, checkout, and price IDs.
  • Subscription status, billing interval, trial status, renewal dates, and cancellation status.
  • Payment, refund, credit note, dispute, chargeback, and billing event metadata.
  • Amounts, currency, refund status, refund reason, and access actions tied to billing events.

2.6 Technical Data

We automatically collect technical information such as:

  • IP address, browser type, device information, and operating system.
  • Session identifiers, cookies, local storage, and similar technologies.
  • Request logs, performance data, error reports, security events, and audit logs.
  • Approximate location derived from network or account information.

3. How We Use Information

We use information to:

  • Provide, maintain, secure, and improve the Services.
  • Run onboarding, SEO audits, content generation, keyword research, and publishing workflows.
  • Operate connected integrations and automation you enable.
  • Generate AI-assisted content, recommendations, images, review replies, and analysis.
  • Scope, configure, build, deploy, and support professional services and AI Partner Program deliverables.
  • Manage accounts, authentication, trials, subscriptions, billing, refunds, and support.
  • Send transactional emails, product notices, billing notices, and support responses.
  • Detect, prevent, and investigate fraud, abuse, security incidents, and policy violations.
  • Analyze usage, reliability, cost, and performance of features.
  • Comply with legal obligations and enforce our Terms & Conditions.

We may use aggregated or de-identified information to understand and improve the Services. We do not sell your personal information.

4. How We Share Information

We share information only as needed to operate the Services, support customers, comply with law, or protect rights and safety.

4.1 Service Providers

We may share information with vendors that provide services such as hosting, databases, storage, email delivery, analytics, monitoring, customer support, payment processing, AI model processing, and security.

  • Stripe: payment processing, subscriptions, billing portal, refunds, and disputes.
  • Google: Google sign-in when used, Google Business Profile APIs, Maps/location features, and OAuth-connected Google services.
  • AI model providers: prompt and content processing needed to generate, analyze, or improve outputs requested through the Services.
  • Infrastructure and communication providers: hosting, database, email, logging, and monitoring services.

4.2 Connected Platforms

When you connect or use an integration, we share the information required to perform the requested action with that platform. This may include publishing blog content and metadata to WordPress, Shopify, Webflow, Wix, Framer, or a custom API; posting content, media, or replies to Google Business Profile; or syncing reviews, profile information, and insights.

Connected platforms have their own terms and privacy policies. Their handling of information is controlled by their policies once information is sent to them.

4.3 Legal, Safety, and Business Transfers

We may disclose information if we believe disclosure is reasonably necessary to comply with law, legal process, government requests, enforce our Terms, collect amounts owed, detect fraud, protect security, or protect the rights, property, and safety of users, us, or others.

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, information may be transferred as part of that transaction, subject to this Privacy Policy or a policy with materially similar protections.

5. Data Security

We use technical and organizational safeguards designed to protect information, including HTTPS, access controls, secure authentication, database protections, credential protection, logging, and monitoring. Sensitive integration credentials such as OAuth tokens and API keys are protected using measures such as encryption where supported by the Services.

No method of transmission or storage is completely secure. We cannot guarantee absolute security, and you are responsible for protecting your account, third-party accounts, and credentials.

6. Data Retention

We retain information for as long as reasonably necessary to provide the Services, maintain your account, operate connected integrations, support customers, comply with legal and accounting obligations, resolve disputes, enforce agreements, maintain security, and prevent abuse.

  • Account, business, subscription, and billing records may be retained while your account is active and for a reasonable period afterward.
  • Billing, refund, dispute, tax, and audit records may be retained as required for legal, accounting, fraud prevention, and compliance purposes.
  • Published content may remain available on connected third-party platforms until removed through those platforms.
  • Backup, log, and security records may persist for a limited period according to our operational practices.

Where appropriate, we delete, anonymize, or aggregate information when it is no longer needed.

7. Cookies and Tracking Technologies

We use cookies, local storage, and similar technologies to keep you signed in, maintain security, remember preferences, operate the dashboard, understand usage, and improve performance.

  • Essential cookies: required for login, security, and core Services functionality.
  • Functional cookies: remember preferences and interface settings.
  • Analytics and performance technologies: help us understand usage, errors, and feature reliability.

You can control cookies through your browser settings. Disabling essential cookies may prevent parts of the Services from working.

8. Your Privacy Rights

Depending on where you live, you may have rights to access, correct, delete, export, restrict, or object to certain processing of your personal information. You may also have the right to opt out of certain uses of personal information. We do not sell your personal information.

To make a privacy request, contact us at legal@upliftai.co. We may need to verify your identity and account ownership before completing a request. Some information may be retained where necessary for legal, security, billing, fraud prevention, or operational reasons.

If you use the Services on behalf of a business, agency, or client, you are responsible for ensuring you have the authority and any required notices or consents to provide personal information to us and connected platforms.

9. International Data Transfers

We and our service providers may process information in countries other than where you live. Those countries may have data protection laws different from your own. Where required, we use appropriate safeguards for cross-border transfers.

10. Privacy for Children

The Services are not intended for individuals under 18 years old. We do not knowingly collect personal information from children. If you believe a child provided personal information to us, contact us so we can take appropriate action.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If changes are material, we will provide notice by posting the updated Privacy Policy, emailing you, or notifying you through the Services. The updated date at the top of this page shows when this Privacy Policy was last revised.

Your continued use of the Services after the updated Privacy Policy becomes effective means you acknowledge the updated practices.

12. Contact Us

If you have questions, concerns, or requests about this Privacy Policy or our data practices, contact us at:

Uplift AI Inc.
Registered in Ontario, Canada
Legal Notices: legal@upliftai.co
General Inquiries: support@upliftai.co
Website: upliftai.co
Support: Schedule a call