1. Who we are
Boompath ("we", "our", "us") operates the website boompath.io and the web application at app.boompath.io. We provide an SEO automation platform for businesses.
For any privacy-related questions: privacy@boompath.io
2. What data we collect
Account data: When you create an account, we collect your name, email address, and a hashed password. We never store your password in plain text.
Business data: Information you provide about your business — website URL, description, competitors, target audience. This is used exclusively to power Boompath's SEO modules.
Usage data: How you interact with the platform — pages visited, features used, XP earned, modules completed. Used to improve the product and personalize your experience.
Payment data: Billing is handled by Stripe. We do not store your card details. Stripe's privacy policy applies to payment processing.
Technical data: IP address, browser type, device type, referral source. Standard web analytics data.
3. How we use your data
- To operate and personalize the Boompath platform
- To generate AI-powered SEO analysis, keyword research, and content specific to your business
- To process payments and manage your subscription
- To send transactional emails (account confirmation, billing receipts)
- To send product updates and feature announcements (you can opt out at any time)
- To improve the platform based on aggregate usage patterns
We do not sell your data. We do not use your data to train third-party AI models without your consent.
4. Third-party services
Boompath integrates with the following services, which may process your data:
- Supabase — database and authentication hosting
- Stripe — payment processing
- DataForSEO — search data provider (domain and keywords transmitted)
- Anthropic — AI infrastructure provider (business context transmitted to generate analysis)
- Vercel — application hosting
Each provider is bound by their own privacy policies and data processing agreements.
5. Data retention
We retain your account and business data for as long as your account is active. If you delete your account, your data is permanently deleted within 30 days, except where we are required by law to retain certain records.
6. Your rights
Depending on your location, you may have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your data ("right to be forgotten")
- Object to or restrict certain processing
- Data portability (receive your data in a machine-readable format)
To exercise any of these rights, email privacy@boompath.io. We will respond within 30 days.
7. Cookies
Boompath uses cookies for authentication (to keep you logged in) and basic analytics. We do not use advertising or tracking cookies. You can disable cookies in your browser settings, but this may affect your ability to log in to the platform.
8. Security
We use industry-standard security practices: HTTPS everywhere, hashed passwords, row-level security on our database, and restricted API access. No system is 100% secure, but we take your data security seriously.
9. Changes to this policy
We may update this policy from time to time. When we make material changes, we'll notify you via email or an in-app notice. The "last updated" date at the top of this page reflects the most recent revision.
10. Contact
Questions about this policy or your data: privacy@boompath.io