LITE ASO
0%
Lite ASO
Sign InGet Started

Privacy Policy

Last updated: April 19, 2026

1. Controller and Scope

Lite ASO ("we," "us," or "our") operates the Lite ASO website, dashboard, APIs, and related services at liteaso.com and api.liteaso.com. This Privacy Policy explains how we collect, use, disclose, and protect personal data when you use our Service.

For privacy questions, data subject requests, or account deletion requests, contact us at [email protected].

2. Personal Data We Collect

2.1 Account and Legal Records

When you create an account, we collect your email address, hashed password, account status information, and records showing when you accepted our Terms, acknowledged our Privacy Policy, confirmed the minimum age requirement, and optionally consented to product or marketing emails.

2.2 App, Keyword, and Workspace Data

We collect the app URLs, app identifiers, tracked keywords, metadata drafts, competitor lists, notes, reports, alerts, review-reply content, onboarding inputs, and other workspace data you choose to add to Lite ASO.

2.3 Public Store Data

We collect and cache publicly available app-store information, such as listing metadata, rankings, ratings, reviews, and category positions, in order to provide ASO analysis. This data may still contain personal data if app-store users publicly include it in reviews or profile text.

2.4 Store Connection Credentials

If you connect App Store Connect or Google Play Console, we store the credentials or keys you submit in encrypted form so that requested store-management features can work.

2.5 Billing, Communication, and Support Data

We collect payment-provider references such as Stripe customer or subscription IDs, support and contact messages, password reset requests, feedback, and community content that you submit through the Service.

2.6 Technical, Security, and Usage Data

We automatically collect technical data such as IP address, browser and device information, authentication events, request metadata, timestamps, error logs, and limited usage telemetry used for security, abuse prevention, troubleshooting, and product improvement.

2.7 Cookies and Similar Technologies

We use cookies and similar technologies for authenticated sessions, consent storage, analytics, and advertising measurement where allowed by your preferences. Details are provided in our Cookie Policy.

3. How We Use Personal Data

We use personal data to:

  • Provide, operate, and maintain the Service
  • Authenticate your identity and manage your account
  • Track keyword rankings, app-store performance, competitor changes, and review activity for apps you choose to monitor
  • Generate metadata drafts, reports, and AI-assisted analysis you request
  • Send transactional notices, password reset emails, alerts, and support responses
  • Process billing and subscription management
  • Secure the Service, enforce our terms, and prevent fraud or abuse
  • Improve the product, measure site usage, and evaluate marketing performance when you have allowed optional cookies
  • Send product updates and marketing emails if you opted in

4. Legal Bases

Depending on the situation, we rely on one or more of the following legal bases:

  • Contract: to create your account, provide Lite ASO features, manage subscriptions, and respond to service requests you initiate
  • Legitimate interests: to secure the Service, prevent abuse, maintain logs, improve the product, and defend legal claims
  • Consent: for optional analytics cookies, advertising cookies, and marketing emails where consent is required
  • Legal obligation: where retention, disclosure, tax, accounting, or law-enforcement duties apply

5. Data Sharing and Recipients

We do not sell your personal data. We may disclose it to:

  • Infrastructure and hosting providers that host our application, databases, logs, queues, and backups
  • Email and communications providers that deliver password reset or operational emails
  • Payment providers such as Stripe for billing, checkout, and subscription management
  • Analytics and advertising providers such as Google and Meta, but only for optional tracking categories you enabled
  • Platform providers such as Apple and Google when you ask us to use connected store credentials or review-management features
  • Connected AI assistants or integrations when you deliberately connect third-party assistants or tools through OAuth, MCP, or API access
  • Authorities, courts, or advisers where required for law, enforcement, or protection of rights

6. International Transfers

Some service providers or connected platforms may process personal data outside your country. Where required, we use appropriate safeguards and contractual measures for such transfers.

7. Security

We implement technical and organizational safeguards designed to protect personal data, including:

  • Passwords are hashed using bcrypt before storage
  • Authentication tokens are stored in httpOnly cookies rather than localStorage
  • Store credentials are encrypted at rest before database storage
  • All API communication is encrypted via HTTPS
  • Sensitive fields are masked in logs where practical
  • Rate limiting is enforced to prevent abuse

No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

8. Retention

We retain account and workspace data for as long as your account is active and for a limited period afterward where necessary for backups, fraud prevention, dispute handling, or legal obligations. We generally aim to remove or anonymize personal data within 30 days of a validated deletion request unless a longer retention period is required by law or justified by security, accounting, or claim-defense needs.

9. Your Rights

You have the right to:

  • Access: request confirmation and a copy of personal data we hold about you
  • Correction: request correction of incomplete or inaccurate data
  • Deletion: request deletion where the law gives you that right
  • Restriction or objection: object to or limit certain processing
  • Portability: request transfer of certain data in a structured format
  • Withdraw consent: withdraw optional marketing or cookie consent at any time

To exercise rights under applicable law, contact [email protected]. You may also have the right to complain to the competent supervisory authority.

10. Children

Our Service is not directed to children under 16. We do not knowingly create accounts for children below that age. If you believe a child provided personal data to us, contact us so that we can investigate and delete it where appropriate.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be posted on this page with a revised "Last updated" date.

12. Contact Us

If you have questions about this Privacy Policy, please contact us at [email protected].