Privacy Policy
Last updated: April 1, 2026
Siere Soft Ltd ("Siere," "we," "us," or "our") is a company registered in the Republic of Bulgaria. We operate the Siere platform available at siere.ai (the "Service"), an Agent Experience Optimization platform that helps websites become visible and readable to AI agents.
This Privacy Policy explains how we collect, use, store, and share your personal data when you visit our website or use the Service. It applies to all users, including website visitors, free-tier users, and paying subscribers.
Data Controller: Siere Soft Ltd, Bulgaria
Contact: privacy@siere.ai
1. Data We Collect
1.1 Account Information
When you create an account, we collect your name, email address, and authentication credentials managed through Supabase Auth. If you sign in via a third-party provider (e.g., Google), we receive the profile information that provider shares.
1.2 Payment Information
Payment processing is handled entirely by Stripe. We do not store credit card numbers or bank account details on our servers. Stripe may collect your card number, expiration date, CVC, and billing address. Please refer to Stripe's Privacy Policy for details.
1.3 Website Analytics
We collect anonymized usage data on siere.ai to understand how visitors interact with our website. This may include pages viewed, referral source, browser type, device type, and approximate geographic location derived from your IP address.
1.4 AI Agent Traffic Logs
When you connect your website to Siere, the Service analyzes incoming requests to detect and classify AI agent traffic (e.g., GPTBot, ClaudeBot, Googlebot). We collect and process logs related to these AI agent visits, including user-agent strings, request paths, timestamps, response codes, and content served. These logs relate to your website's visitors and bot traffic — not to you personally — but may in some cases include IP addresses.
1.5 Cookies and Tracking Technologies
We use cookies and similar technologies on siere.ai for the following purposes:
| Type | Purpose | Duration |
|---|---|---|
| Essential | Authentication, session management, security | Session / 30 days |
| Analytics | Understand usage patterns and improve the Service | Up to 12 months |
| Preferences | Remember your settings and display choices | Up to 12 months |
You can manage cookie preferences through your browser settings. Disabling essential cookies may affect your ability to use the Service.
1.6 Communications
When you contact us via email, submit a support request, or interact with our transactional emails (sent via Resend), we collect the content of those communications and associated metadata.
2. How We Use Your Data
We process your personal data for the following purposes and on the following legal bases under the GDPR:
| Purpose | Legal Basis (GDPR Art. 6) |
|---|---|
| Provide and operate the Service | Performance of contract |
| Process payments and manage subscriptions | Performance of contract |
| Send transactional emails | Performance of contract |
| Analyze AI agent traffic and generate audit reports | Performance of contract |
| Improve the Service and develop new features | Legitimate interest |
| Website analytics on siere.ai | Legitimate interest / Consent |
| Respond to support requests | Legitimate interest |
| Comply with legal obligations (tax, accounting) | Legal obligation |
| Send marketing communications (only with your consent) | Consent |
3. Data Sharing
We do not sell your personal data. We share data only with the following categories of recipients, strictly as needed to operate the Service:
- Stripe — payment processing
- Supabase — authentication and database hosting
- Resend — transactional email delivery
- Vercel — application hosting and content delivery
- Analytics providers — anonymized website usage data
All sub-processors are bound by data processing agreements. Where data is transferred outside the European Economic Area, we rely on Standard Contractual Clauses or adequacy decisions as appropriate.
4. Data Retention
We retain your personal data for as long as your account is active or as needed to provide you the Service. Specifically:
- Account data: retained while your account exists and for 30 days after deletion to allow recovery
- Payment records: retained as required by Bulgarian and EU tax law (typically 10 years)
- AI agent traffic logs: retained for the duration specified in your plan, after which they are aggregated and anonymized
- Analytics data: retained in anonymized form for up to 24 months
- Support communications: retained for up to 3 years after your last interaction
5. Your Rights Under the GDPR
As a data subject, you have the following rights:
- Access — request a copy of the personal data we hold about you
- Rectification — correct inaccurate or incomplete data
- Erasure — request deletion of your data ("right to be forgotten")
- Restriction — ask us to limit how we process your data
- Data portability — receive your data in a structured, machine-readable format
- Objection — object to processing based on legitimate interests
- Withdraw consent — where processing is based on consent, you may withdraw it at any time
To exercise any of these rights, email us at privacy@siere.ai. We will respond within 30 days. You may also delete your account directly from your dashboard settings. If you are unsatisfied with our response, you have the right to lodge a complaint with the Bulgarian Commission for Personal Data Protection (CPDP) or your local supervisory authority.
6. Security
We implement appropriate technical and organizational measures to protect your data, including encryption in transit (TLS), encryption at rest, role-based access controls, and regular security reviews. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.
7. Children's Privacy
The Service is not intended for individuals under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us at privacy@siere.ai and we will promptly delete it.
8. International Data Transfers
Siere Soft Ltd is based in Bulgaria (a member state of the European Union). Some of our sub-processors may be located outside the EEA (e.g., in the United States). In such cases, we ensure an adequate level of data protection through Standard Contractual Clauses approved by the European Commission, or by relying on adequacy decisions.
9. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or by posting a prominent notice on siere.ai. The "Effective date" at the top of this page reflects the latest revision.
10. Contact Us
Siere Soft Ltd
Republic of Bulgaria
Privacy inquiries: privacy@siere.ai
General inquiries: hello@siere.ai
Website: siere.ai
This Privacy Policy is governed by the laws of the Republic of Bulgaria and the European Union's General Data Protection Regulation (GDPR).