How It WorksFeaturesPricingFAQ
Log inGet Started

Privacy Policy

Last updated: March 10, 2026

1. Introduction

Helindex ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform at helindex.com and related services.

2. Information We Collect

Account Information: When you create an account, we collect your name, email address, and password (hashed via Better Auth). If you sign in with Google, we receive your Google profile information.

Payment Information: Billing is processed by Stripe. We store your Stripe customer ID and subscription status but never store credit card numbers directly.

Site Data: Domains you add, keywords discovered, pages generated, and publishing history. WordPress credentials are encrypted with AES-256-GCM.

Search Console Data: When you connect Google Search Console, we access search analytics (queries, clicks, impressions, position) via OAuth with minimal required scopes.

Usage Data: We track feature usage for quota enforcement and product improvement, including pages generated, keywords imported, and publishing events.

3. How We Use Your Information

We use your information to:

  • Provide and maintain the Helindex platform
  • Process payments and manage subscriptions via Stripe
  • Generate content using AI (Anthropic Claude) based on your keywords and site data
  • Enrich keywords via DataForSEO and crawl sites via Firecrawl
  • Sync and display Search Console performance data
  • Publish content to your WordPress sites
  • Send transactional emails via Resend (verification, alerts)
  • Enforce tier-based usage limits

4. Third-Party Services

We share data with the following services as necessary:

  • Anthropic (Claude) — Site analysis, keyword discovery, content generation
  • DataForSEO — Keyword research and enrichment
  • Firecrawl — Site crawling and competitor analysis
  • Stripe — Payment processing and subscription management
  • Google Search Console — Performance monitoring (OAuth)
  • Resend — Transactional email delivery
  • Neon — Database hosting (PostgreSQL)
  • Vercel — Application hosting

5. Google API Services

Helindex's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

6. Data Security

We implement industry-standard security measures including encrypted database connections, AES-256-GCM encryption for stored credentials, hashed passwords, and HTTPS for all communications. However, no method of transmission over the Internet is 100% secure.

7. Data Retention

We retain your data for as long as your account is active. Upon account deletion, your data will be permanently removed within 30 days, except where retention is required by law.

8. Your Rights

You have the right to access, correct, or delete your personal data. You can export your data or request account deletion by contacting us at [email protected].

9. Contact

For privacy-related questions, contact us at [email protected].