Privacy Policy

Account & Authentication Data

• Email address (provided via Google OAuth sign-in)
• Google OAuth access tokens and refresh tokens

Google Search Console Data

• Search queries, impressions, clicks, CTR, and average positions
• Landing page URLs and site properties you connect
• Historical performance data for the date ranges you select

Usage & Feature Data

• Content groups, annotations, and filters you create
• Keywords you research and content briefs you generate
• Feature usage counts (for plan limit enforcement)
• Link exchange records you add to the Link CRM

Payment Data

• Email address and subscription plan tier
• Payment details (credit card, billing address) are processed directly by our payment provider, Dodo Payments — we never see or store your full card number

We use your information to:

• Authenticate you and maintain your session
• Fetch and display your Search Console analytics
• Provide keyword research, content briefs, and SEO tools
• Enforce plan-based usage limits
• Process payments and manage subscriptions
• Enable sharing via magic links (read-only dashboard access)
• Improve and maintain the service

We do not sell your personal data or Search Console data to any third party.

Wizible requests access to the following Google OAuth scopes:

• webmasters.readonly — Read-only access to your Search Console data
• userinfo.email — Your email address for account identification
• documents — To export content briefs to Google Docs
• drive — To save exported files to your Google Drive
• spreadsheets — To export data to Google Sheets

We only access the Google data necessary to provide our services. Your Google data is not shared with any third party except as described in this policy. We comply with the Google API Services User Data Policy, including the Limited Use requirements.

You can revoke Wizible's access to your Google account at any time via your Google Account permissions page.

We use the following third-party services to operate Wizible:

Each third-party service is governed by its own privacy policy. We encourage you to review them.

We use the following cookies, all of which are essential for the service to function:

All cookies are HTTP-only (inaccessible to JavaScript), use the Secure flag in production, and are set with SameSite=Lax for CSRF protection. We do not use any analytics, advertising, or tracking cookies.

Your data is stored on Google Cloud Platform infrastructure in the United States. We implement the following security measures:

• HTTP-only, Secure, SameSite cookies to protect authentication tokens
• Server-side token storage with automatic expiry and refresh
• Session validation on all protected API routes
• Magic link tokens transmitted via HTTP headers (not URLs) to prevent logging
• Plan-based access controls and feature gating
• HTTPS encryption for all data in transit

While we take reasonable steps to protect your data, no method of electronic storage is 100% secure. We cannot guarantee absolute security.

Wizible allows you to create magic links — shareable, read-only URLs that give others access to view your Search Console dashboard for a specific property.

• Magic links are scoped to a single Search Console property
• Recipients get read-only access — they cannot modify your data
• You can deactivate magic links at any time from your dashboard
• We track the access count and last-accessed timestamp for each link

Other than the third-party services listed above and magic link recipients you choose, we do not share your personal data or Search Console data with anyone.

Payments are processed by Dodo Payments. When you subscribe to a paid plan:

• You are redirected to Dodo Payments' secure checkout
• We never see or store your full credit card number
• We receive your email, subscription status, and plan tier via webhooks
• You can manage your subscription through the Dodo Payments customer portal

• Access tokens expire after 1 hour and are refreshed automatically
• Refresh tokens are stored for up to 7 days
• Usage counters reset monthly or daily depending on the feature
• Account data (email, plan, settings) is retained while your account is active
• Search Console data is fetched in real time from Google and is not permanently stored on our servers

If you wish to have all your data deleted, please contact us (see below) and we will remove your data within 30 days.

Depending on your location, you may have the right to:

• Access — Request a copy of the personal data we hold about you
• Correction — Request correction of inaccurate data
• Deletion — Request deletion of your personal data
• Portability — Request your data in a portable format
• Revoke consent — Revoke Google OAuth access via your Google Account settings
• Opt out — Log out and stop using the service at any time

To exercise any of these rights, please contact us at the email address below.

Wizible is not intended for use by anyone under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page. We encourage you to review this policy periodically. Continued use of the service after changes constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy or want to exercise your data rights, please contact us: