Privacy Policy
Effective date: May 12, 2026
Brandvoys (“we”, “our”, or “us”) operates the Brandvoys platform — a B2B SaaS tool that crawls company websites and generates LinkedIn articles. This Privacy Policy explains what data we collect, why we collect it, how we use it, and your rights over it.
By using Brandvoys, you agree to the practices described here. If you have any questions, email us at hello@brandvoys.com.
1. Information we collect
1.1 Information you provide directly
- Account information: your email address when you sign up via Google OAuth or email magic link.
- Company information: company names and website URLs you add to Brandvoys.
- Content you provide: optional context you enter (e.g. target audience, product descriptions, proof points) to guide article generation.
- Feedback and edits: thumbs-up/thumbs-down ratings, regeneration notes, and any edits you make to generated articles. These signals are used to improve future generation quality for your account.
- Payment information: billing details collected by our payment processor, Razorpay. We do not store card numbers or bank details on our servers.
1.2 Information we collect automatically
- Usage data: which features you use, how often you generate articles, which company profiles you access.
- Log data: IP addresses, browser type, and timestamps associated with requests to our service, retained for security and debugging purposes.
1.3 Information collected from third-party websites
When you add a company URL, we use Firecrawl to crawl publicly accessible pages on that website. We store the crawled text content (web page copy, blog posts, product descriptions) to build a brand profile for your account. We only crawl public pages — we do not bypass authentication, login walls, or robots.txt directives that prohibit crawling.
You are responsible for ensuring you have the right to add any company URL you submit, including your employer's website or a client's website if you are an agency.
1.4 LinkedIn data
Brandvoys does not require a LinkedIn connection. If you choose to connect your LinkedIn account to publish articles directly, we request only the minimum OAuth scopes needed to post on your behalf. We do not store your LinkedIn credentials, and we do not read your LinkedIn feed, connections, or messages. You can disconnect LinkedIn at any time from your settings page.
2. How we use your information
- To provide the service: generate LinkedIn articles using your brand profile and any context you provide.
- To improve generation quality: your feedback signals (thumbs, edits, regen notes) are used to personalise future generations for your account. They are not used to train shared AI models.
- To manage your subscription: process payments, send receipts, and manage plan limits.
- To communicate with you: send transactional emails (account setup, password reset). We do not send marketing emails without your consent.
- To ensure security and prevent abuse: monitor usage for fraud, enforce rate limits, and debug errors.
We do not sell your data. We do not use your content to train shared or public AI models.
3. How we share your information
We share data with the following third-party service providers to operate the platform:
| Provider | Purpose | Data shared |
|---|---|---|
| Supabase | Database, authentication, and file storage | Account data, brand profiles, generated articles |
| AWS Bedrock (Anthropic Claude) | AI article generation and scoring | Brand profile, topic, context — no personal identifiers |
| OpenAI | Generating text embeddings for semantic search | Website text chunks — no personal identifiers |
| Firecrawl | Crawling company websites | Website URLs you submit |
| Razorpay | Payment processing and subscription management | Billing details, subscription status |
| Inngest | Background job processing (crawl, ML jobs) | Company IDs and job metadata |
| Vercel | Hosting and deployment | Request logs |
We require all service providers to protect your data under confidentiality obligations consistent with this policy. We do not share your data with advertisers or data brokers.
We may disclose your information if required by law, court order, or government request, or to protect the rights and safety of Brandvoys, our users, or the public.
4. Data storage and retention
All data is stored in Supabase (PostgreSQL database hosted on AWS). Data is stored in the us-east-1 AWS region by default.
We retain your account data for as long as your account is active. Generated articles and brand profiles are retained to provide the service. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or tax obligations (e.g. payment records are retained for 7 years under applicable law).
Crawled website content is retained as long as the corresponding company profile exists in your account. You can trigger a re-crawl at any time from the settings page, which overwrites the stored content.
5. Your rights
Depending on your jurisdiction, you may have the following rights:
- Access: request a copy of the personal data we hold about you.
- Correction: ask us to correct inaccurate or incomplete data.
- Deletion: ask us to delete your account and associated data.
- Portability: request your data in a machine-readable format.
- Objection: object to processing based on legitimate interests.
To exercise any of these rights, email hello@brandvoys.com. We will respond within 30 days.
6. Cookies and tracking
Brandvoys uses session cookies managed by Supabase Auth to keep you logged in. We do not use third-party advertising cookies or tracking pixels. We do not use Google Analytics or similar behavioural tracking tools.
You can disable cookies in your browser settings, but this will prevent you from staying logged in.
7. Security
We use industry-standard security practices including TLS encryption in transit, encrypted storage at rest via Supabase and AWS, and row-level security policies on the database so each user can only access their own data. Access to production systems is limited to authorised personnel.
No system is perfectly secure. If you discover a security vulnerability, please disclose it responsibly by emailing hello@brandvoys.com.
8. Children's privacy
Brandvoys is a B2B service intended for use by businesses and professionals aged 18 and above. We do not knowingly collect personal data from anyone under 18. If we become aware that we have collected data from a minor, we will delete it promptly.
9. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will update the effective date at the top of this page. If the changes are material, we will notify you by email. Continued use of Brandvoys after an update constitutes acceptance of the revised policy.
10. Contact
If you have any questions about this Privacy Policy or how we handle your data, contact us at: