Privacy Policy

Effective Date: April 1, 2025
Last Updated: June 29, 2026

At Marvlus LLC (“Marvlus,” “we,” “us,” or “our”), we respect your privacy. Marvlus is an AI-driven SEO and marketing platform that runs website audits and helps you improve your search and AI visibility through tools such as keyword tracking, competitor analysis, and automated blog content. This Privacy Policy explains what information we collect, how we use and protect it, who we share it with, and your rights and choices. By using the Service, you agree to the practices described here.

1. Our Role and the Data We Handle

Because Marvlus is a software-as-a-service platform, we handle data in two capacities:

  • As a data controller, we determine how and why certain information is processed — for example, your account details and billing information, and the data we collect about how you use our website and Service.
  • As a data processor (or service provider), we process the website data you connect or submit to the Service (such as the URLs and page content we scan to run audits) in order to deliver the audit, SEO, and AI-visibility features you request.

 

We do not collect team or employee directory data.

2. Information We Collect

We collect information you provide, information we collect automatically, and information from third parties.

Information you provide directly

  • Account and profile information: name, email address, password, and organization or company name.
  • Website and audit data: the website URLs and page content you connect or submit for scanning, along with the resulting audit scores, SEO data, keyword and ranking data, AI-visibility results, and any content settings (for example, automated blog configuration).
  • Billing information: billing contact details. Payments are processed by Stripe; we do not store full payment card numbers on our systems.
  • Communications: the contents of messages you send us, including support requests and feedback.

 

Information we collect automatically

  • Usage data: features used, pages and reports viewed, audits run, and other interaction patterns.
  • Device and log data: IP address, browser type, operating system, device identifiers, referring URLs, and timestamps.
  • Cookies and similar technologies: see the Cookies and Analytics section.

 

Information from third parties

  • Authentication providers: if you sign in using single sign-on (SSO), we receive basic profile information from that provider.
  • Integrations: if you connect Marvlus to other tools, we may receive data from those integrations as authorized by you.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, maintain, and secure the Service, including running website audits and generating SEO and AI-visibility insights;
  • Authenticate users and manage accounts;
  • Process transactions and send related billing information;
  • Improve, personalize, and develop the Service, including analyzing usage patterns to enhance functionality;
  • Communicate with you about updates, security alerts, support, and administrative matters;
  • Respond to your inquiries and provide customer support;
  • Detect, prevent, and address technical issues, fraud, abuse, and security incidents;
  • Comply with legal obligations and enforce our terms and policies.

4. Legal Bases for Processing (Where Applicable)

If you are located in the European Economic Area (EEA), the United Kingdom, or another region with similar laws, we process your personal data under one or more of these legal bases:

  • Performance of a contract — to provide the Service you signed up for;
  • Legitimate interests — to operate, secure, and improve our Service, where those interests are not overridden by your rights;
  • Consent — for certain activities such as optional cookies or marketing emails, which you may withdraw at any time;
  • Legal obligation — where processing is necessary to comply with applicable law.

5. Cookies and Analytics

We use cookies and similar technologies to operate the Service, remember your preferences, keep you signed in, understand how the Service is used, and improve performance. These fall into strictly necessary cookies (required for the Service to function), functional cookies (which remember your settings), and analytics cookies (which help us understand usage in aggregate).

You can control or disable cookies through your browser settings, though disabling certain cookies may affect how the Service functions. Where required by law, we will request your consent before placing non-essential cookies.

6. How We Share Information

We do not sell or rent your personal data, and we do not share it with third parties for their own marketing purposes. We share information only in these limited circumstances:

  • Service providers and subprocessors: trusted third parties who perform services on our behalf, such as cloud hosting, analytics, customer support, and payment processing through Stripe. These providers may access information only as needed to perform their functions and are contractually obligated to protect it.
  • Legal and safety reasons: where required by law or legal process, or where we believe disclosure is necessary to protect our rights, your safety, or the safety of others, or to investigate fraud or security issues.
  • Business transfers: in connection with a merger, acquisition, financing, or sale of assets, in which case we will notify you of any change in control of your personal data.
  • With your consent: for other purposes with your consent or at your direction.

7. International Data Transfers

We may store and process information in countries other than the one in which you reside, including the United States. Where we transfer personal data across borders, we implement appropriate safeguards — such as Standard Contractual Clauses or an equivalent mechanism — to ensure your data remains protected in accordance with this policy and applicable law.

8. Data Retention

We retain personal data for as long as needed to provide the Service, comply with our legal obligations, resolve disputes, and enforce our agreements. Retention periods vary by the type of data and the purpose for which it was collected. When data is no longer needed, we take steps to delete or anonymize it.

9. Data Security

We implement reasonable administrative, technical, and organizational measures designed to protect your information against unauthorized access, loss, misuse, or alteration, including encryption in transit and access controls. No method of transmission over the internet or electronic storage is completely secure, however, and we cannot guarantee absolute security. If you believe your account may have been compromised, please contact us immediately.

10. Your Privacy Rights

Depending on where you live, you may have some or all of the following rights regarding your personal data:

  • Access — request a copy of the personal data we hold about you;
  • Correction — request that inaccurate or incomplete data be corrected;
  • Deletion — request that we delete your personal data;
  • Restriction or objection — request that we limit or stop certain processing;
  • Portability — request a copy of your data in a portable format;
  • Withdraw consent — where processing is based on consent, withdraw it at any time;
  • Non-discrimination — exercise your rights without discriminatory treatment.

 

To exercise any of these rights, contact us using the details in the Contact section. We will respond within the timeframe required by applicable law and may need to verify your identity first.

For California residents: we do not sell or share personal information as defined under the CCPA/CPRA. You have the right to know, delete, and correct your personal information and to be free from discrimination for exercising your rights.

For EEA/UK residents: you have the right to lodge a complaint with your local data protection authority.

11. Children's Privacy

The Service is not directed to children under the age of 16 (or the minimum age required in your jurisdiction), and we do not knowingly collect personal information from them. If you believe a child has provided us with personal data, please contact us and we will take steps to delete it.

12. Third-Party Links and Services

The Service may contain links to or integrations with third-party websites and services that we do not control. This Privacy Policy does not apply to those third parties, and we are not responsible for their privacy practices. We encourage you to review their privacy policies.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please reach out:

 

Marvlus LLC

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the “Last Updated” date below and, where appropriate, provide additional notice. We encourage you to review this policy periodically.