Privacy & data-processing notice
Last updated: 19 June 2026
1. Who we are
Sorontai ("we", "us") operates this AI citation-visibility tool. This notice explains what personal data we collect, why, and the rights you have over it. It applies in particular to the early-access waitlist, where we collect details so we can contact you about the free trial.
2. What data we collect
When you request early access you provide a desired login and an email address (both required), and optionally a company name and phone number. When you use the tool we also process the domains, topics and prompts you submit for an audit, and basic technical request data (such as timestamps) needed to run and secure the service. We do not knowingly collect special-category data and ask that you do not submit it.
3. Why we process it and on what basis
Early-access details are processed on the basis of your consent, given when you submit the form, so that we can contact you about the trial and manage the waitlist. Data you submit to run an audit is processed to provide the service you requested. We may also process limited data on the basis of our legitimate interest in keeping the service secure and improving it.
4. How long we keep it
We keep early-access details until the trial programme ends or until you ask us to delete them, whichever comes first. Audit and visibility data is retained only as long as needed to provide and improve the service. When data is no longer needed it is deleted or anonymised.
5. Who we share it with
We do not sell your data. We use a small number of processors strictly to run the service: our hosting and database provider, and — only when those features are used — the AI and web-data providers that power audits and visibility capture. These providers act on our instructions and handle data under their own contractual and security obligations.
6. Your rights
Subject to applicable law (including the GDPR where it applies), you can request access to your data, correction of inaccurate data, deletion, restriction or objection to processing, and data portability. Where processing is based on consent, you can withdraw it at any time without affecting prior processing. You also have the right to complain to your local data-protection authority.
7. Security
We apply reasonable technical and organisational measures to protect your data, including access controls and encrypted transport. No method of transmission or storage is perfectly secure, but we work to protect your information and limit access to those who need it.
8. International transfers
Our providers may process data outside your country. Where that happens, we rely on appropriate safeguards (such as standard contractual clauses) as required by applicable law.
9. Contact
To exercise any of your rights or ask a question about this notice, contact us at [email protected].