Limelit

Privacy Policy

Last updated May 5, 2026

Limelit (“we”, “us”, “our”) helps brands track how AI search engines including ChatGPT, Perplexity, Claude, and Gemini mention them. This policy explains what data we collect, how we use it, and the choices you have.

1. Data we collect

Account data. When you sign up we receive your name, email address, and a profile image from your OAuth provider (Google).

Brand and prompt data. Domain names, competitor lists, buyer-question prompts, and brand-voice configuration you create inside Limelit.

AI engine responses. The text and citation URLs returned by AI search engines when we run your prompts on your behalf.

Source pages we fetch. When you generate a blog draft we fetch the source URL you provided so the AI writer has context. We do not store these pages beyond the lifetime of the generation job.

Telemetry. Standard logs (IP address, user-agent, request paths) and product analytics events that help us debug and improve the service.

2. How we use your data

  • To run AI search prompts and aggregate the results into your dashboard.
  • To generate, refresh, and publish blog drafts on your behalf.
  • To send transactional email (sign-in alerts, billing receipts).
  • To diagnose service issues and improve product quality.

We do not sell your data. We do not use your prompts or generated content to train third-party models.

3. Sharing

We share data with the AI engine providers strictly to run your prompts: OpenAI, Anthropic, Google, and Perplexity. Each provider’s privacy policy applies to their handling of those requests.

We use Vercel for hosting, Google Cloud Run for backend services, and Neon for our database. These vendors process data on our behalf under their respective data-processing agreements.

4. Your choices

  • You can export or delete your data at any time from /settings.
  • You can revoke API keys and pause auto-refresh schedules.
  • You can email us at hello@limelit.xyz with any privacy request.

5. Security

Data is encrypted in transit (TLS) and at rest. Sessions are scoped to short-lived cookies. Sensitive credentials live in Google Secret Manager.

6. Changes

We’ll update this page when our practices change and bump the “Last updated” date above. For material changes affecting existing users, we’ll also send notice via email.

7. Contact

Questions? hello@limelit.xyz.