# Privacy Policy Last updated: 2025-09-02 This Privacy Policy describes how AEO Checker top1 pro (the “Service”, “we”, “us”, or “our”) collects, uses, and safeguards information about users (“you”). We handle personal information in accordance with applicable laws, including Japan’s Act on the Protection of Personal Information (APPI), where relevant. ## 1. Controller - Business name: YAフィッティング (YA Fitting) - Responsible person: yoshito.k - Location: Japan (Full address will be disclosed without delay upon request.) - Contact: nobutatu_masaishi@ymail.ne.jp ## 2. Information We Collect - Account information: name, email address, authentication identifiers (including via external identity providers) - Usage data: in-app actions, settings, request/response logs, error and crash logs - Analysis input: URLs, text, files, or other content you submit for analysis - Billing data: payment status and billing info (card details are processed by payment processors and not stored by us) - Device and cookies: browser/OS information, IP address, identifiers, cookies/local storage ## 3. How We Collect Information - Information you provide directly - Information received via external identity providers (e.g., Clerk) - Automatic collection during your use of the Service (access logs, cookies, device information) - Information from payment processors regarding payment status ## 4. Purposes of Use - Provide, operate, maintain, and protect the Service (including authentication, access control, billing, and support) - Improve features and quality, analyze performance, and respond to incidents - Communicate about new features or campaigns (where permitted by law or with your consent) - Prevent abuse, ensure security, protect rights, and comply with legal obligations - Create aggregated and/or anonymized statistics for analytics and public reporting ## 5. Legal Bases (where required) - Performance of a contract and pre-contractual steps - Our legitimate interests (e.g., service improvement, security, abuse prevention) - Compliance with legal obligations - Your consent (for activities where consent is required; you may withdraw consent at any time) ## 6. Retention We retain personal information only as long as necessary to fulfill the purposes described above or as required by law. When no longer needed, we delete or anonymize the information within a reasonable period. ## 7. Sharing and Disclosure We do not share personal information with third parties except: - With service providers/Processors who assist us (e.g., authentication, hosting, storage, analytics, payments) - When required by law or valid governmental/legal requests - To protect the rights, property, or safety of us, our users, or the public ## 8. Processors and External Services We use trusted third-party services to operate the Service, including: - Clerk (authentication) - Supabase (data storage/processing) We supervise such processors appropriately and require them to implement suitable security measures. Each third party’s own terms and privacy policies apply to their processing. ## 9. International Transfers Your information may be processed and stored outside your country, including in jurisdictions that may not offer the same level of data protection as your jurisdiction. Where required, we implement appropriate safeguards consistent with applicable laws. ## 10. Cookies and Similar Technologies We use cookies and similar technologies for authentication, functionality, and analytics. You can disable cookies in your browser; however, some features of the Service may not function properly. ## 11. Logs and Analytics We collect access logs and usage analytics to maintain and improve the Service. Logs may include IP addresses, device information, and activity traces. ## 12. Security We implement reasonable technical and organizational measures to protect personal information (e.g., access controls, encryption, logging, least privilege, and staff training). However, no method of transmission or storage is completely secure. ## 13. Your Rights Subject to applicable laws, you may have rights to access, correct, add to, delete, or suspend the use of your personal information, and to request cessation of third-party disclosures. ## 14. Requests and Inquiries To make requests regarding your personal information, contact us at the email above. We will verify your identity and respond within a reasonable period. A fee may be charged where permitted by law. ## 15. Children and Minors Users under the age of 20 (in Japan) should obtain consent from a parent or guardian before using the Service. ## 16. Changes to this Policy We may update this Privacy Policy from time to time. Material changes will be notified within the Service. Continued use after changes indicates acceptance of the updated policy. --- Note on third-party services: We rely on Clerk for authentication and Supabase for data storage/processing. Please refer to those services’ privacy notices for details on their data handling.