← Back to home

Privacy Policy

Last updated: February 2026

1. Introduction

Sighted ("we", "us", or "our") is an AI-powered product feed optimisation platform operated by a UK-based entity. We are committed to protecting your privacy and handling your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

This Privacy Policy explains how we collect, use, store, and protect your information when you use our website at sightedby.ai and the Sighted platform (the "Service").

2. Data Controller

Sighted is the data controller for the personal data processed through our Service. If you have any questions about how we handle your data, you can contact us at hello@sightedby.ai.

3. Information We Collect

3.1 Account Information

When you create an account, we collect your name, email address, and authentication credentials. If you sign in using Google OAuth, we receive your name, email address, and profile picture from Google.

3.2 Product Feed Data

When you use our Service, you upload or connect product feed data for optimisation. This may include product titles, descriptions, prices, images, categories, and other product attributes. We process this data solely to provide you with feed optimisation, AEO (AI Engine Optimisation) scoring, and ACO (AI Commerce Optimisation) scoring.

3.3 Usage and Analytics Data

We automatically collect information about how you interact with our Service, including pages visited, features used, browser type, device information, IP address, and referring URLs. This data helps us understand how the Service is used and identify areas for improvement.

3.4 Billing Information

Payment processing is handled by Stripe. We do not store your full credit card details on our servers. Stripe may collect your payment card number, billing address, and other information necessary to process transactions. Please refer to Stripe's Privacy Policy for details on how they handle your payment data.

4. How We Use Your Data

We use your information for the following purposes:

  • Providing the Service: To operate, maintain, and deliver product feed optimisation, scoring, and related features.
  • Account Management: To create and manage your account, authenticate your identity, and manage your subscription.
  • Communication: To send you transactional emails such as account verification, password resets, and billing notifications.
  • Product Improvement: To analyse usage patterns, diagnose technical issues, and improve the quality and functionality of our Service.
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes.

We process your data on the basis of contractual necessity (to provide the Service you have signed up for), legitimate interests (to improve and secure our Service), and where applicable, your consent.

5. Data Storage and Security

Your data is stored on Amazon Web Services (AWS) infrastructure located in the United Kingdom (eu-west-2 region). We implement appropriate technical and organisational measures to protect your data, including:

  • Encryption of data in transit using TLS/SSL
  • Encryption of data at rest using AWS-managed encryption keys
  • Access controls and authentication mechanisms to restrict data access to authorised personnel
  • Regular security reviews and monitoring

6. Third-Party Services

We use the following third-party services to operate our platform:

  • Stripe — for payment processing and subscription management. Stripe acts as an independent data controller for payment data.
  • Google OAuth — for optional single sign-on authentication. Google provides us with your basic profile information when you choose to sign in with Google.
  • Amazon Web Services — for cloud infrastructure, data storage, and email delivery (via Amazon SES).

We do not sell, rent, or share your personal data with third parties for their marketing purposes.

7. Cookies and Tracking

We use cookies and similar technologies for the following purposes:

  • Essential Cookies: Required for authentication, session management, and security. These cannot be disabled as they are necessary for the Service to function.
  • Analytics Cookies: Used to understand how visitors interact with our website and Service, helping us improve the user experience.

You can manage your cookie preferences through your browser settings. Disabling essential cookies may prevent you from using certain features of the Service.

8. Your Rights Under UK GDPR

Under the UK GDPR, you have the following rights regarding your personal data:

  • Right of Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can request that we correct any inaccurate or incomplete personal data.
  • Right to Erasure: You can request that we delete your personal data, subject to certain legal exceptions.
  • Right to Restrict Processing: You can request that we limit how we use your data in certain circumstances.
  • Right to Data Portability: You can request your data in a structured, commonly used, and machine-readable format.
  • Right to Object: You can object to processing based on legitimate interests or for direct marketing purposes.

To exercise any of these rights, please contact us at hello@sightedby.ai. We will respond to your request within one month, as required by law.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data protection rights have been violated.

9. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with the Service. If you close your account, we will delete or anonymise your personal data within 90 days, unless we are required to retain it for legal, regulatory, or legitimate business purposes (such as resolving disputes or enforcing our agreements).

Product feed data you upload is retained for the duration of your active subscription. Upon account deletion, all uploaded product feed data is permanently removed from our systems within 90 days.

10. International Data Transfers

Your data is primarily stored and processed in the United Kingdom. Some of our third-party service providers (such as Stripe) may process data outside the UK. Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions, to protect your data in accordance with UK GDPR requirements.

11. Children's Privacy

Our Service is not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will take steps to delete that information promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of the Service after such changes constitutes your acceptance of the updated policy.

13. Contact Us

If you have any questions or concerns about this Privacy Policy or how we handle your data, please contact us at:

hello@sightedby.ai