Privacy Policy

Pings is operated by A8T Labs. You can reach us at hello@pings.digital for privacy-related questions or data requests.

When you create an account we store your email address, a hashed password (or an OAuth identifier if you sign in with Google or Apple), and an optional display name. When you add a brand to monitor we store the brand name, website, description, and any prompts and competitors you add.

When you run a scan we store the scan results: your visibility score, per-engine responses, recommendations, and source URLs cited by the AI engines we queried on your behalf.

We collect anonymous request logs for operational purposes (IP address, user agent, request path, status code). These are kept for 30 days and then rotated out.

We do not use third-party analytics or tracking scripts, and we do not use advertising cookies.

Email and password are used to authenticate you. Brand and prompt data is used to produce the reports you asked for. Scan results are kept so we can show you history and trends over time. Request logs are used to diagnose outages and protect against abuse.

We share data with a small number of infrastructure providers that we rely on to operate the service:

• Supabase — authentication (email, hashed password, OAuth identity linking).
• OpenRouter — the gateway that forwards the scan queries we run on your behalf to ChatGPT, Perplexity, Gemini, Claude, and DeepSeek. OpenRouter sees the prompt text (which is a brand-related query), not your account details.
• Stripe — payment processing for paid plans. We never see or store your card number; Stripe does.
• Resend — transactional email (weekly digests, alerts, confirmation emails).

We do not sell your data. We do not share it with anyone outside the processors above.

Account data is kept for as long as your account exists. If you delete your account we remove your brands, prompts, scans, and alerts within 30 days. Request logs are rotated after 30 days automatically.

You can export or delete your data at any time by emailing hello@pings.digital. If you are in the EU, UK, or California you have additional rights under GDPR and CCPA, including the right to access, correct, delete, and port your data, and to object to processing. Contact us at the same address and we will respond within 30 days.

We use a single session cookie to keep you logged in. We do not use third-party tracking cookies, analytics cookies, or ad cookies. If you log in via Google or Apple, those providers set their own cookies on their domains during the OAuth flow — we don't control those.

Pings is a B2B product for brands and businesses. It is not directed at children under 13. We do not knowingly collect information from anyone under 13.

If we make material changes we will update the effective date at the top of this page and notify registered users by email before the change takes effect. Continued use of Pings after changes constitutes acceptance of the updated policy.

Questions, requests, or complaints: hello@pings.digital.