Privacy Policy
Last updated: 2026-04-10
1. Who we are
sen-ai.fr ("we", "us", "the Service") is operated by the entity listed on our Legal Notice page. We are the data controller for the personal data described below. The Service is a SaaS platform that measures and reports on how generative AI models (ChatGPT, Gemini, etc.) reference brands across a chosen domain.
For any privacy-related question, contact: contact@sen-ai.fr.
2. What data we collect
Account data
- Email address, name (provided at registration or via Google sign-in)
- Hashed password (bcrypt) when registering with email/password
- Google account identifier when signing in via Google OAuth
- Account creation timestamp
Workspace data ("clients")
You can create one or more workspaces ("clients") to organize your scans. For each workspace we store: workspace name, brand identifier, your role (owner / editor / viewer), and links to other users you've invited.
Scan data
When you create a scan, we store the target domain, the SEO keywords pulled from HaloScan for that domain, the topics and personas generated by Claude, the questions sent to LLM providers, the raw responses returned by those providers, the citations and brand mentions extracted, and any opportunities or content suggestions derived from the analysis.
Billing data
Payments are processed by Stripe. We never see or store your card details. We store: a Stripe customer identifier, a transaction history (credit ledger: which packs you bought, when, for how much), and a Stripe Checkout Session identifier per purchase (used for idempotency).
Technical data
Server logs include the IP address of your requests, the endpoint hit, the HTTP status, and a timestamp. These logs are kept for up to 30 days for debugging and security investigations, then rotated.
3. How we use your data
- Provide the Service: run scans on your behalf, store results, render dashboards.
- Authenticate you: verify your password or Google identity, issue session tokens.
- Bill you: process credit pack purchases via Stripe, maintain your credit ledger.
- Operate the platform: debugging, security monitoring, abuse prevention.
- Comply with legal obligations: tax, accounting, lawful requests from authorities.
We do not sell your data. We do not share it with advertisers. We do not use it to train AI models.
4. Legal basis (GDPR Art. 6)
- Performance of a contract (Art. 6(1)(b)) - when you sign up and use the Service.
- Legitimate interest (Art. 6(1)(f)) - server logs for security and debugging.
- Legal obligation (Art. 6(1)(c)) - billing records for tax compliance.
5. Sub-processors
To deliver the Service we route data to the following providers. Each one is bound by a Data Processing Agreement and processes data only on our instructions.
| Provider | Purpose | Data shared | Location |
|---|---|---|---|
| Hetzner Online GmbH | Hosting (database, application servers) | All data at rest | Helsinki, Finland (EU) |
| Stripe Payments Europe | Payment processing | Email, name, payment details | Ireland (EU) |
| OpenAI, L.L.C. | LLM scan execution (GPT models) | Scan questions only - no account data | United States (DPA + SCCs) |
| Anthropic, PBC | Topic / persona / brand classification (Claude) | Scan content only - no account data | United States (DPA + SCCs) |
| Google LLC | Gemini LLM scans + Google sign-in | Scan questions / OAuth identity | United States (DPA + SCCs) |
| HaloScan SAS | SEO keyword data for the scanned domain | Domain name only | France (EU) |
We will notify you in advance if we add new sub-processors that materially affect your data.
6. Data retention
- Account data: retained until you delete your account.
- Scan data: retained until you delete the scan or your account.
- Billing records: retained 10 years (French tax law).
- Server logs: rotated every 30 days.
7. Your rights (GDPR Art. 15–22)
You can exercise the following rights at any time:
- Right of access (Art. 15) and right to portability (Art. 20):
download a complete JSON export of all your data via the
GET /api/auth/me/exportendpoint, or from your account settings. - Right to erasure (Art. 17): delete your account and all
associated data via
DELETE /api/auth/me, or from your account settings. Workspaces you solely own are wiped together with all their scans, brands, and credit history. - Right to rectification (Art. 16): edit your name, email, and other profile fields from your settings.
- Right to object / restrict processing (Art. 18, 21): contact us.
- Right to lodge a complaint: with the French data protection authority, the CNIL.
8. Security
- HTTPS / TLS for all traffic (Let's Encrypt certificates).
- Passwords hashed with bcrypt (never stored in clear).
- Authentication via HttpOnly + Secure cookies (not accessible to JavaScript).
- Database-level uniqueness constraints to prevent double-billing on payment retries.
- Application-level rate limiting to mitigate brute-force and resource-exhaustion attacks.
- Per-row locking on credit operations to prevent race conditions.
- Automated refunds when a scan job fails so users are never charged for undelivered work.
9. Cookies
We use exactly one cookie: a session token (token),
set HttpOnly + Secure + SameSite=Lax, valid for 24 hours. This is strictly
necessary to keep you logged in. We do not use any tracking, advertising, or
analytics cookies.
10. International transfers
Our infrastructure (Hetzner, Stripe, HaloScan) is hosted within the European Union. Some sub-processors providing AI capabilities (OpenAI, Anthropic, Google) process data in the United States. These transfers are covered by Standard Contractual Clauses (SCCs) approved by the European Commission and by each provider's Data Processing Agreement.
11. Children
The Service is not intended for users under 16. We do not knowingly collect data from children. If you believe a child has registered, contact us and we will remove the account.
12. Changes to this policy
We may update this policy from time to time. Material changes will be announced in-app and the "last updated" date at the top of this page will be revised. Continued use of the Service after a change constitutes acceptance.