Deepage — Get cited by AI. Rank on Google. Prove it.

This Privacy Policy explains how Deepage FZ-LLC ("Deepage," "we," "us") collects, uses, and protects information when you visit our website, create an account, or use our content publishing platform. We've kept it as plain as possible. If anything is unclear, write to privacy@deepage.com.

SUMMARY · 30 SECONDS We collect only what we need to run the product, never sell your data, store it in audited regions, and let you export or delete everything from your account settings at any time.

01 Information we collect

We group information into three buckets, in order of how often we touch it:

Account information

Identity — name, work email, password hash, and the workspace you create.
Billing — card last four, billing address, and tax ID. Full card numbers live with our payment processor, never with us.
Auth tokens — OAuth tokens you grant for Google, GitHub, WordPress, Webflow, Shopify, and Notion connections.

Content you publish through Deepage

Source material — your website URL, brand documents, style guides, and any URLs you connect.
Generated drafts and edits — articles produced by our agents, your revisions, and version history.
Search Console data — query, click, impression, and ranking data for the properties you connect.

Usage and device data

Product telemetry — pages visited, features used, errors encountered.
Device — browser, OS, language, approximate location from IP (city-level only).
Cookies — strictly necessary for sign-in plus optional analytics. See our Cookies Policy.

02 How we use it

Each piece of data has a single, narrow purpose. We do not repurpose it for advertising, training general models, or selling to third parties.

Run the product — research, draft, edit, publish, and rank-track on your behalf.
Bill you correctly — process payments, send receipts, and handle tax.
Keep things safe — detect abuse, enforce rate limits, and respond to incidents.
Talk to you — service emails, occasional product updates you can opt out of, and the optional Friday newsletter.

03 Where it lives

Primary region United States — AWS us-east-1 SOC 2 Type II audited. Encryption at rest (AES-256) and in transit (TLS 1.3).

EU mirror Frankfurt — AWS eu-central-1 Available on request for EU/UK customers under GDPR.

Backups Cross-region, encrypted Retained 30 days, then permanently destroyed.

Sub-processors AWS, Stripe, Postmark, Anthropic, OpenAI Full live list at deepage.com/sub-processors.

04 Your rights

Wherever you live, you can exercise the rights below from your account settings, or by writing to us. We respond within 30 days, usually faster.

Access — download a full copy of your data in JSON.
Correct — fix anything inaccurate, in-app or by email.
Delete — erase your account and all linked content within 30 days.
Export — take your articles and rank history with you, in Markdown and CSV.
Restrict or object — pause specific processing activities.
Withdraw consent — for any optional processing, at any time.

05 Retention

We keep account and billing records for as long as your workspace is active, and for seven years after closure to satisfy tax and audit obligations. Drafts, published articles, and rank-tracking history are deleted within thirty days of account closure unless you ask us to act sooner.

06 Children

Deepage is a B2B product and is not intended for anyone under 16. We do not knowingly collect data from children. If you believe a child has signed up, write to privacy@deepage.com and we will delete the account.

07 Changes to this policy

When we make material changes, we email every account owner at least thirty days before they take effect, post a notice in-app, and update the version number at the top of this page. Past versions are archived and linked from the changelog.

08 How to reach us

For privacy questions, data requests, or to lodge a complaint, write to privacy@deepage.com. EU and UK residents may also contact their local supervisory authority.

Download as PDF VERSION v3.2 · APR 26, 2026

01 Information we collect

We group information into three buckets, in order of how often we touch it:

Account information

Identity — name, work email, password hash, and the workspace you create.

Billing — card last four, billing address, and tax ID. Full card numbers live with our payment processor, never with us.

Auth tokens — OAuth tokens you grant for Google, GitHub, WordPress, Webflow, Shopify, and Notion connections.

Content you publish through Deepage

Source material — your website URL, brand documents, style guides, and any URLs you connect.

Generated drafts and edits — articles produced by our agents, your revisions, and version history.

Search Console data — query, click, impression, and ranking data for the properties you connect.

Usage and device data

Product telemetry — pages visited, features used, errors encountered.

Device — browser, OS, language, approximate location from IP (city-level only).

Cookies — strictly necessary for sign-in plus optional analytics. See our Cookies Policy.

02 How we use it

Each piece of data has a single, narrow purpose. We do not repurpose it for advertising, training general models, or selling to third parties.

Run the product — research, draft, edit, publish, and rank-track on your behalf.

Bill you correctly — process payments, send receipts, and handle tax.

Keep things safe — detect abuse, enforce rate limits, and respond to incidents.

Talk to you — service emails, occasional product updates you can opt out of, and the optional Friday newsletter.

03 Where it lives

Primary region United States — AWS us-east-1 SOC 2 Type II audited. Encryption at rest (AES-256) and in transit (TLS 1.3).

EU mirror Frankfurt — AWS eu-central-1 Available on request for EU/UK customers under GDPR.

Backups Cross-region, encrypted Retained 30 days, then permanently destroyed.

Sub-processors AWS, Stripe, Postmark, Anthropic, OpenAI Full live list at deepage.com/sub-processors.

04 Your rights

Wherever you live, you can exercise the rights below from your account settings, or by writing to us. We respond within 30 days, usually faster.

Access — download a full copy of your data in JSON.

Correct — fix anything inaccurate, in-app or by email.

Delete — erase your account and all linked content within 30 days.

Export — take your articles and rank history with you, in Markdown and CSV.

Restrict or object — pause specific processing activities.

Withdraw consent — for any optional processing, at any time.