CLIFF ("Cliff", "we", "us") is an SEO service: you connect your website and, optionally, your Google accounts, and Cliff does search-engine-optimization work on your site and reports the results to you. This policy explains what data we collect, why we collect it, and how we protect it.
1. Data we collect
Account data
Your email address and a password (stored only as a salted hash by our authentication system) when you create an account, plus your name if you provide it.
Business information you provide
Your website URL, business name, target market, service areas, and priorities — collected during onboarding so Cliff can plan work that fits your business.
Website access credentials
To make the changes you hire Cliff for, you provide an API token for your website platform (currently Webflow). The token is encrypted at rest with AES-256-GCM before storage and is used only to read and edit the site you connected. We never ask for, receive, or store your platform account password.
Google user data
If you connect a Google account, we receive read-only reporting data from Google Analytics and Google Search Console. Section 2 describes this in full.
Search ranking data
Keyword positions for your site, retrieved from our rank-tracking provider so your dashboard and reports can show where you rank.
Website content and change records
Cliff reads your site’s pages (titles, descriptions, copy, structured data) to plan and make improvements, and keeps a complete before-and-after record of every change it makes. That record is your safety net: it powers one-click rollback and the receipts in your weekly report.
Communications
The reports and notification emails we send you, and any messages you send us.
Usage data
Standard web analytics on our marketing site (page views, referrers) and the session cookies required to keep you signed in.
2. How we use Google user data
CLIFF’s use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
When you connect a Google account, we request only the following scopes and use them strictly as described:
- Basic profile (openid, email, profile) — to identify which Google account you connected.
- analytics.readonly — read-only access to the Google Analytics 4 property you select, used to show your traffic in your dashboard and weekly reports and to measure whether Cliff’s work on your site changed it.
- webmasters.readonly — read-only access to the Search Console property you select, used to show clicks, impressions, positions, and queries in your dashboard and reports, and to measure the outcome of each change Cliff makes.
OAuth tokens are encrypted at rest with AES-256-GCM. Report data retrieved from Google is stored only as needed to render your dashboard, strategy page, and report history.
We do not use Google user data for advertising. We do not sell Google user data. We do not transfer it to third parties except the sub-processors listed below acting on our behalf to provide the service you requested. We do not allow humans to read it except (a) with your explicit consent, (b) as necessary for security or to comply with law, or (c) in aggregated, de-identified form for internal operations. Google user data is never used to train or improve AI or machine-learning models — ours or anyone else’s.
You can disconnect Google at any time from your Connections page — we delete the stored tokens immediately — or revoke Cliff’s access from your Google account permissions page.
3. AI processing
Cliff uses large language models to analyze your website and its performance data, draft the changes it proposes, and write your reports. This processing runs through AI infrastructure providers (currently Anthropic) acting as our processors; data submitted through their APIs is not used to train their models. Every AI-drafted change must pass automated quality checks before it can ship, is recorded in your change log, and is reversible; changes in approval mode wait for your explicit approval first.
4. Sub-processors
We share data with these third parties only as required to operate the service:
- Convex — database and backend hosting.
- Vercel — application hosting and edge delivery.
- Google — the Analytics and Search Console APIs for accounts you connect.
- Webflow — your website platform, accessed with the token you provide.
- SE Ranking — keyword rank tracking for your site.
- Resend — delivery of report and notification emails.
- Stripe — payment processing; card details go directly to Stripe and never touch our systems.
- Anthropic — AI processing as described in section 3.
5. Data retention & deletion
You can disconnect your website or Google account at any time from the Connections page; we immediately delete the stored tokens. You can close your account at any time, which permanently removes your data within 30 days. Change records are kept while your account is active — they are what makes every change reversible — and are deleted with your account.
6. Security
All stored credentials (website tokens, Google OAuth tokens) are encrypted at rest with AES-256-GCM. All data in transit uses TLS 1.2+. We request the narrowest access that does the job — read-only wherever possible — and every change Cliff makes to your site is logged with a one-click rollback.
7. Your rights
Depending on your jurisdiction (PIPEDA, GDPR, CCPA, and similar) you may have the right to access, correct, export, or delete the personal data we hold about you. Email hello@choquer.agency and we’ll respond within 30 days.
8. Children
Cliff is a business service and is not directed to children under 13 (or under 16 in the EEA); we do not knowingly collect data from them.
9. Changes to this policy
We’ll update this page when our practices change and revise the "Last updated" date at the top. For material changes, we’ll notify active customers by email at least 30 days before the change takes effect.
10. Contact
Questions? Email hello@choquer.agency or write to CLIFF, c/o Bryce Choquer, Canada. See also our Terms of Service.