Is TrueCite GDPR compliant?

Yes. TrueCite is GDPR and CCPA compliant. All customer data is encrypted at rest and in transit using TLS 1.3. TrueCite processes only the data necessary to deliver the service and never sells customer data to third parties.

Where is TrueCite data stored?

TrueCite data is stored on AWS infrastructure in the US East region, using Supabase for the database layer. Backups are encrypted and retained for 30 days.

How do I report a security vulnerability to TrueCite?

TrueCite operates a responsible disclosure program. Email security@truecite.ai with details of the vulnerability. The team aims to respond within 48 hours and will credit researchers for confirmed issues.

Measure

MentionShare Tracking

See your brand mention rate across 9 AI engines daily

Competitor Intelligence

Track share-of-voice vs competitors across all engines

Prompt Performance

Per-query mention rates and 90-day trend lines

Brand Sentiment

Track if AI describes your brand positively or negatively

Optimize

Fix Generator

Generate FAQ blocks, JSON-LD schema, and answer paragraphs

AI SEO Audit

Page-by-page AI readiness scoring with specific fixes

Integrations

Connect GA4, Search Console, Slack, and your data stack

Authority Capture

Build topical authority AI engines trust and cite

Featured

Fix Generator

Generate FAQ blocks, JSON-LD schema, and answer paragraphs — ready to publish in one click.

See how it works →

IntegrationsGA4 Search Console Slack API

By Team

Marketing Teams

Track AI visibility and generate content at scale

Founders & Startups

Get cited by AI engines from day one — no SEO agency needed

Agencies

Manage client workspaces with white-label PDF reporting

B2B SaaS Companies

Win AI-generated buyer comparisons in your software category

Enterprise

SSO, dedicated support & custom contracts

How Teams Use It

Improve AI Citations

Publish content that trains ChatGPT and Perplexity to recommend you

Prove AI-Driven ROI

Connect AI citations to real traffic and pipeline via GA4

Get a Competitive Edge

Real results from teams dominating AI-generated answers

Managing multiple clients?See Agency plan →

Content

Blog

New

AEO strategies, AI visibility guides, and industry insights

What's New

Updated

Latest product releases, features, and platform updates

AEO Beginner Guide

Free

Free 10-step guide to getting cited in AI search results

Tutorials

Step-by-step video walkthroughs for every feature

Reference

Documentation

Platform guide — features, workflows, and getting started

API Reference

REST API docs, authentication, and code examples

Case Studies

Real results from marketing teams and agencies

Comparisons

TrueCite vs Otterly, Peec AI, and more

Security

Data handling, compliance, and infrastructure

New to AEO?

Read the free guide →About us →

Security at TrueCite

By Sukanta Mohapatra, Founder & CEO · TrueCite · Updated June 1, 2026

Your data security is our top priority. Here is how we protect your information.

✓ GDPR Compliant✓ CCPA Compliant✓ SOC 2 Planned✓ TLS 1.3✓ Vercel SOC 2 Type II

🔒

Encryption in Transit

All data transmitted between your browser and TrueCite is encrypted using TLS 1.3. We enforce HTTPS across all endpoints and redirect all HTTP traffic.

🗄️

Encryption at Rest

All data stored in our Supabase database is encrypted at rest using AES-256. Database backups are also encrypted and stored securely.

🛡️

Row-Level Security

We use Supabase Row Level Security (RLS) to enforce data isolation at the database level. Users can only access their own data — even if our application layer has a bug.

🔑

Secure Authentication

Authentication is handled by Clerk, a SOC 2 Type II certified identity provider. We support multi-factor authentication and secure session management.

💳

PCI-Compliant Payments

All payment processing is handled by Stripe, a PCI DSS Level 1 certified provider. We never store card numbers, CVCs, or full PANs on our servers.

🏗️

Infrastructure Security

TrueCite runs on Vercel's edge network with DDoS protection. Our database runs on Supabase (AWS us-east-1) with automated backups and point-in-time recovery.

👤

Access Controls

Production database access is restricted to a minimal set of engineers. All access is logged and reviewed. We use the principle of least privilege throughout.

🔍

Security Audits

We conduct regular security reviews of our codebase and infrastructure. Dependency vulnerabilities are monitored and patched promptly.

🔎 Responsible Disclosure

We take security vulnerabilities seriously. If you discover a security issue in TrueCite, please report it to us privately before disclosing publicly. We will acknowledge your report within 48 hours and work to resolve critical issues within 7 days.

security@truecite.ai

Please do not publicly disclose before we have addressed the issue.

Have a security question?

security@truecite.ai →

Measure

MentionShare Tracking

See your brand mention rate across 9 AI engines daily

Competitor Intelligence

Track share-of-voice vs competitors across all engines

Prompt Performance

Per-query mention rates and 90-day trend lines

Brand Sentiment

Track if AI describes your brand positively or negatively

Optimize

Fix Generator

Generate FAQ blocks, JSON-LD schema, and answer paragraphs

AI SEO Audit

Page-by-page AI readiness scoring with specific fixes

Integrations

Connect GA4, Search Console, Slack, and your data stack

Authority Capture

Build topical authority AI engines trust and cite

Featured

Fix Generator

Generate FAQ blocks, JSON-LD schema, and answer paragraphs — ready to publish in one click.

See how it works →

IntegrationsGA4 Search Console Slack API

By Team

Marketing Teams

Track AI visibility and generate content at scale

Founders & Startups

Get cited by AI engines from day one — no SEO agency needed

Agencies

Manage client workspaces with white-label PDF reporting

B2B SaaS Companies

Win AI-generated buyer comparisons in your software category

Enterprise

SSO, dedicated support & custom contracts

How Teams Use It

Improve AI Citations

Publish content that trains ChatGPT and Perplexity to recommend you

Prove AI-Driven ROI

Connect AI citations to real traffic and pipeline via GA4

Get a Competitive Edge

Real results from teams dominating AI-generated answers

Managing multiple clients?See Agency plan →

Content

Blog

New

AEO strategies, AI visibility guides, and industry insights

What's New

Updated

Latest product releases, features, and platform updates

AEO Beginner Guide

Free

Free 10-step guide to getting cited in AI search results

Tutorials

Step-by-step video walkthroughs for every feature

Reference

Documentation

Platform guide — features, workflows, and getting started

API Reference

REST API docs, authentication, and code examples

Case Studies

Real results from marketing teams and agencies

Comparisons

TrueCite vs Otterly, Peec AI, and more

Security

Data handling, compliance, and infrastructure

New to AEO?

Read the free guide →About us →

Security at TrueCite

By Sukanta Mohapatra, Founder & CEO · TrueCite · Updated June 1, 2026

Your data security is our top priority. Here is how we protect your information.

✓ GDPR Compliant✓ CCPA Compliant✓ SOC 2 Planned✓ TLS 1.3✓ Vercel SOC 2 Type II

🔒

Encryption in Transit

All data transmitted between your browser and TrueCite is encrypted using TLS 1.3. We enforce HTTPS across all endpoints and redirect all HTTP traffic.

🗄️

Encryption at Rest

All data stored in our Supabase database is encrypted at rest using AES-256. Database backups are also encrypted and stored securely.

🛡️

Row-Level Security

We use Supabase Row Level Security (RLS) to enforce data isolation at the database level. Users can only access their own data — even if our application layer has a bug.

🔑

Secure Authentication

Authentication is handled by Clerk, a SOC 2 Type II certified identity provider. We support multi-factor authentication and secure session management.

💳

PCI-Compliant Payments

All payment processing is handled by Stripe, a PCI DSS Level 1 certified provider. We never store card numbers, CVCs, or full PANs on our servers.

🏗️

Infrastructure Security

TrueCite runs on Vercel's edge network with DDoS protection. Our database runs on Supabase (AWS us-east-1) with automated backups and point-in-time recovery.

👤

Access Controls

Production database access is restricted to a minimal set of engineers. All access is logged and reviewed. We use the principle of least privilege throughout.

🔍

Security Audits

We conduct regular security reviews of our codebase and infrastructure. Dependency vulnerabilities are monitored and patched promptly.

🔎 Responsible Disclosure

security@truecite.ai

Please do not publicly disclose before we have addressed the issue.

Have a security question?

security@truecite.ai →