Last updated May 17, 2026

Privacy policy

This policy describes the data Ciited collects, what we do with it, and the choices you have. It applies to ciited.com, the Ciited web app, and any product or API we operate. If anything here is unclear, email privacy@ciited.com — a human will read it.

What we collect

We collect three categories of data:

• Account data. Email address, name, workspace name, and authentication tokens — provided when you sign up or sign in.
• Workspace data. The domains, prompts, competitor lists, and configuration you add to your workspace, plus the benchmark runs we produce on your behalf (AI responses, parsed citations, and source URLs).
• Usage data. Standard product analytics — pages viewed, features used, and aggregate performance metrics — used to improve the product. We do not sell this data.

How we use it

• To run benchmarks, generate audit findings, and deliver alerts.
• To operate, maintain, and improve the Ciited product.
• To communicate about your account, billing, and product updates.
• To investigate abuse, fraud, and security incidents on the platform.

Who we share it with

We share workspace data only with subprocessors that operate the Ciited service on our behalf — currently our hosting provider, database provider, error-tracking provider, and email-sending provider. We do not sell personal data and we do not share it with advertising networks.

Where it lives

Workspace data is stored in the United States, on infrastructure operated by our hosting and database providers. AI engines we benchmark against (OpenAI, Anthropic, Google, Perplexity) receive only the prompts we submit on your behalf; we do not send them your account or billing information.

How long we keep it

Account and workspace data is retained while your account is active. Benchmark runs are retained indefinitely so historical trends stay comparable. You can delete a workspace, which removes the underlying data, at any time from settings.

Your rights

You can request a copy of your data, correction of inaccurate data, or deletion of your account at any time by emailing privacy@ciited.com. If you’re in the EU, UK, or California, additional rights under GDPR or CCPA apply — we’ll honor them on request.

Cookies

We use a small number of cookies and similar technologies for authentication, security, and product analytics. We don’t use third-party advertising cookies. You can clear cookies in your browser at any time; signing in will create new authentication cookies.

Changes to this policy

We’ll update this page when material things change and note the new “Last updated” date at the top. If a change affects how we use existing data, we’ll email account holders before it takes effect.

Contact

Questions, concerns, or requests: privacy@ciited.com.

This is a starting-point policy. Have your counsel review before relying on it in any jurisdiction-specific filing.