Privacy Policy

TopicalDrift.com provides three tools for SEO content architecture:

• Topical Drift Analyzer — sitemap crawling, main-content extraction, 768-dimensional embeddings, UMAP semantic projection, k-means clustering, internal link context analysis, and GSC data integration (optional).
• Topical Map Generator — seven-stage AI pipeline that produces a structured content map from a macro topic and seed keyword. Includes SERP analysis, entity extraction, topic classification, URL architecture generation, and internal linking plan.
• Topical Map Editor — a free browser-based visual editor for loading, editing, and exporting topical and concept maps. No account required. Most functions run entirely in the browser.

"You" refers to the person or organization using our website and services.

E) Google Search Console data (optional)

If you connect Google Search Console via OAuth 2.0, we may access GSC performance data such as:

• Queries, clicks, impressions, CTR, and average position for your property
• Page-level performance metrics
• Date ranges you specify for analysis

We use GSC data only to produce the analyzes and reports you request. We do not access unrelated properties or use your GSC data for purposes beyond your requested crawls. You can revoke access at any time through your Google account settings.

We use MagicLinks for passwordless authentication:

• When you sign in, we send a time-limited login link to your email address
• Clicking the link authenticates your session
• We do not store passwords — only your email address and authentication tokens
• Authentication tokens expire after a set period (typically 30 days)
• We use secure, encrypted cookies to maintain your logged-in session

Topical Map Generator

• What we collect: macro topic, seed keyword, and optional site URL. We do not collect or store raw SERP HTML — only extracted topic candidates, entities, and structured pipeline outputs.
• AI pipeline processing: topic text is sent to AI model APIs (e.g., OpenAI) to classify topics, generate entities, and build the map structure. We send cleaned topic strings — not personal data or full site content.
• SERP data: we fetch publicly available search results as part of topic discovery. This data is used solely to build your map and is not stored in a form that can be attributed to you beyond the generated map output.
• Map storage: generated maps (nodes, edges, URLs, entities, confidence scores) are stored in your account. You may delete them at any time by contacting us or using in-app controls.
• Usage limits: we log map generation events (timestamp, account ID, macro/seed keyword) to enforce the 3 maps/month beta limit and prevent abuse.

Topical Map Editor

• No account required. The Editor runs entirely in your browser. JSON files you load are not transmitted to our servers during editing.
• No data collected during editing. Node edits, layout changes, and exports all happen locally in your browser session. We do not observe or collect the content of maps you edit unless you Save them to your account.
• Save function: if you use the Save function, the map JSON is transmitted to and stored on our servers associated with your account. The same deletion rights apply as for generated maps.
• Exports: PNG, SVG, CSV, and JSON exports are generated in your browser and downloaded directly. We do not receive copies of your exported files.
• Usage analytics: we may log that the Editor was visited (page view) but do not log the content of maps you load or edit without an account.

• Provide the Drift Analyzer: run unlimited crawls (fair use), generate embeddings, compute UMAP projections, calculate semantic distances, detect drift/mismatch, build clusters, create interactive radial maps, identify linking opportunities, and produce reports/exports.
• Provide the Topical Map Generator: process macro and seed keyword inputs through the seven-stage AI pipeline, run SERP analysis and entity extraction, generate structured map JSON, store maps in your account, and enforce the 3 maps/month beta limit.
• Provide the Topical Map Editor: serve the browser-based editor application. Data processing during editing happens in your browser — we only process data you explicitly save to your account.
• Authentication: send MagicLinks emails, maintain login sessions, manage account access.
• Support: respond to requests, troubleshoot issues, provide implementation guidance, and improve reliability.
• Improve the product: analyze aggregate usage patterns (not individual site content or map content) to improve UI, embedding accuracy, UMAP parameters, clustering quality, AI pipeline performance, and workflows.
• Security: prevent abuse (including fair use policy enforcement), protect accounts, monitor for suspicious activity, and detect automated attacks.
• Billing (when paid plans launch): process subscriptions, manage plan limits, handle upgrades/downgrades.
• Communications: send service updates, feature announcements, beta pricing notifications, and (with consent) marketing emails.

To provide analysis and track improvements over time (especially with unlimited crawls), we store:

• Page embeddings: high-dimensional vectors representing semantic meaning (generated via sentence-transformers/all-MiniLM-L6-v2)
• UMAP projections: 2D coordinates (x, y) for visualization
• Semantic angles: Angular positions calculated from UMAP projections
• Cluster assignments: K-means cluster IDs and centroids
• Distance measurements: Actual (0-2.0) and normalized (0-1) semantic distances
• Link context embeddings: Vectors for anchor + surrounding text + container context

What we don't store:

• Full raw HTML of your pages (only extracted main content text)
• Complete GSC query lists (only aggregate performance data)
• Passwords (we use passwordless MagicLinks)

If you're in the EU/UK/EEA, we process information under one or more of these legal bases:

• Contract (Art. 6(1)(b) GDPR): to provide the service you requested (crawls, embeddings, reports).
• Legitimate interests (Art. 6(1)(f) GDPR): to secure and improve our service, prevent abuse, and analyze aggregate usage patterns.
• Consent (Art. 6(1)(a) GDPR): for optional features (e.g., non-essential cookies, marketing emails) where required. You can withdraw consent at any time.
• Legal obligation (Art. 6(1)(c) GDPR): to comply with applicable law (e.g., tax, fraud prevention).

We share information with service providers who help us operate the service:

Other sharing scenarios:

• Legal: to comply with lawful requests, court orders, protect rights/safety, or prevent fraud/abuse.
• Business changes: in connection with a merger, acquisition, or asset sale (we'll provide notice where required by law).

We keep data only as long as necessary for the purposes described above:

Your information may be transferred to, stored, and processed in countries other than your own, including the United States.

• We use service providers that operate globally (hosting, OpenAI API, etc.)
• Where we transfer data from the EU/UK/EEA to other countries, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) or adequacy decisions
• By using the service, you consent to these transfers as necessary to provide the service

We use cookies and similar technologies:

We use reasonable administrative, technical, and organizational measures designed to protect your data:

• Encryption: HTTPS/TLS for data in transit; encryption at rest for sensitive data
• Passwordless authentication: MagicLinks eliminate password-related vulnerabilities
• Access controls: Least-privilege principles, role-based access
• Monitoring: Automated alerts for abuse, suspicious activity, and anomalies
• Regular updates: Security patches applied promptly
• Data minimization: We don't store full HTML, passwords, or unnecessary data

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal information we hold about you
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your account and associated data (subject to legal/operational requirements)
• Portability: Receive your data in a structured, machine-readable format (CSV/JSON exports)
• Object: Object to processing based on legitimate interests
• Restrict: Request restriction of processing in certain circumstances
• Withdraw consent: Where we rely on consent (e.g., marketing emails, optional cookies), you can withdraw it at any time
• Lodge a complaint: Contact your data protection authority (if in EU/UK/EEA)

Specific actions:

• Revoke GSC access: Via your Google account permissions (google.com/permissions)
• Export data: Use our CSV/JSON export features in the app
• Delete account: Contact us with your request
• Unsubscribe from emails: Click unsubscribe link in emails

Our services are not directed to children under 13 (or 16 in the EU, or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If you believe we've inadvertently collected information from a child, please contact us immediately so we can delete it.

We may update this Privacy Policy from time to time. We will update the "Last updated" date above, and if changes are material we will provide additional notice (such as a banner, email, or in-app notification, where appropriate). Continued use of the service after changes take effect constitutes acceptance of the updated policy.

For privacy questions, data requests, or security concerns, contact us here: