See how your brand shows up in ChatGPT ✨ AI Visibility Analytics See How →

Stop reading.
Start ranking.

One well-placed comment pays for Readyt for a decade. Every week you wait, a competitor plants theirs.

Back

Privacy Policy

Last Updated:  July 15, 2026

Controller & Contact: The controller responsible for the processing of your personal data is PMH Technologies FZ-LLC, a company registered at RAKEZ (Ras Al Khaimah Economic Zone), Ras Al Khaimah, United Arab Emirates, under a RAKEZ commercial license, represented by its founder Paul-Marie Hamon. For any question about this Privacy Policy, to exercise your rights, or to reach our data protection point of contact regarding GDPR compliance, email privacy@readyt.ai (privacy) or legal@readyt.ai (legal matters).

Scope: This Privacy Policy explains how we collect, use, disclose and protect personal data when you visit https://www.readyt.ai, create an account, use Readyt, our SaaS that helps founders grow on Reddit and improve their visibility and citations across AI search engines (ChatGPT, Claude, Perplexity, Gemini), communicate with us, or make a payment. Although we are established in the UAE and our processing is governed by the laws of the United Arab Emirates (Emirate of Ras Al Khaimah), we honour the rights granted to users in the European Union and United Kingdom under the GDPR, and to California residents under the CCPA/CPRA. Readyt is independent and is not affiliated with, sponsored by, or endorsed by Reddit, Inc.; you remain responsible for your own Reddit account(s) and for complying with Reddit's User Agreement.

(1) When You Visit Our Website

In brief: When you simply browse readyt.ai, we process a limited amount of technical data needed to deliver the site securely, and, only if you consent, analytics data that helps us understand how the site is used.

Purpose: We process this data to serve our web pages to you, keep the site secure and available, prevent abuse and fraud, and improve the performance, content and usability of our website.

Data & Cookies: When you access the site, our hosting infrastructure automatically processes certain technical information, including your IP address, browser type and version, device and operating system, referring URL, the pages you view, and the date and time of access. Strictly necessary cookies (and equivalent local storage) are used to operate the site, remember your cookie preferences, and maintain security. With your consent, we also set analytics cookies and identifiers. You can accept or decline non-essential cookies through our cookie banner and change your choice at any time.

Legal Basis: Processing of strictly necessary technical data relies on our legitimate interest (Art. 6(1)(f) GDPR) in operating and securing the website. Analytics and any other non-essential cookies are set only on the basis of your consent (Art. 6(1)(a) GDPR), which you may withdraw at any time.

Processors: Our website is hosted by Vercel Inc. (340 S Lemon Avenue #4133, Walnut, CA 91789, USA). Website and product analytics are provided by Google Analytics 4 and PostHog, which we activate only after you give consent via our cookie banner.

(2) When You Sign Up or Onboard as a User or Partner

In brief: To create and manage your Readyt account, whether you sign up as a user or onboard as a partner, we process the account and profile data you provide to us.

Purpose: We use this data to register you, authenticate you, set up and administer your account and workspace, provide customer support, manage the partner relationship where applicable, and communicate with you about your account.

Data & Cookies: Depending on how you sign up, we process your name, email address, password (stored only in hashed form), company or project name, role, and any profile or onboarding details you choose to provide, together with authentication metadata such as session tokens and login timestamps.

Legal Basis: The processing is necessary for the performance of our contract with you and to take steps at your request prior to entering into a contract (Art. 6(1)(b) GDPR). Where you onboard as a partner, we also rely on our legitimate interest (Art. 6(1)(f) GDPR) in managing and developing the partnership.

Processors: Account creation, authentication and identity management are powered by Supabase (database & authentication, hosted in the EU region), acting as our processor.

(3) When You Use Our Product (Authenticated Users)

In brief: When you use Readyt as a signed-in user, we process the data you connect and generate inside the product so we can deliver its features, including monitoring Reddit, tracking keywords and threads, and powering AI features.

Purpose: We process this data to run the core service: connecting to your Reddit account, monitoring subreddits, threads and keywords you choose to track, surfacing relevant conversations and opportunities, generating suggestions and analytics, and improving your visibility and citations across AI search engines.

Data & Cookies: This includes data obtained from your connected Reddit account (such as your Reddit username, authorization tokens, and the public content and activity you authorize us to access), the keywords, subreddits and threads you track, the drafts, notes and settings you create, and usage data describing how you interact with the product. When you use AI-powered features, the relevant content you submit or track is transmitted to LLM providers so the feature can generate an output.

AI Features: To power AI functionality, relevant content is sent to our AI/LLM processors, OpenAI, Anthropic, Perplexity and Google, solely to generate the requested output. We instruct these providers not to use your content to train their general models where such an option is available. We do not sell your content, and we minimise what is shared to what the feature genuinely needs.

Legal Basis: Processing to deliver the features you request is necessary for the performance of our contract with you (Art. 6(1)(b) GDPR). We also rely on our legitimate interest (Art. 6(1)(f) GDPR) in operating, securing, maintaining and improving the product and preventing misuse.

Processors: Product data is stored with Supabase (EU region) and hosted via Vercel; AI features are served through OpenAI, Anthropic, Perplexity and Google.

(4) When You Receive Communications (Emails & Newsletters) or Contact Us / Schedule Meetings

In brief: When we send you emails, when you subscribe to our newsletter, when you contact us, or when you book a meeting with us, we process the data needed to communicate with you and follow up.

Purpose: We use this data to send transactional emails relating to your account and use of the service, to send newsletters and product or marketing updates where permitted, to respond to your enquiries and support requests, and to organise and hold meetings you schedule with us.

Data & Cookies: This includes your name, email address, the content and metadata of your messages, your communication and subscription preferences, engagement data such as whether an email was opened or a link clicked, and, for meetings, the scheduling details you provide such as your chosen time, time zone and any notes.

Legal Basis: Transactional and service-related emails are sent on the basis of the performance of our contract (Art. 6(1)(b) GDPR). Newsletters and marketing emails are sent on the basis of your consent (Art. 6(1)(a) GDPR) or, where legally permitted for existing customers, our legitimate interest (Art. 6(1)(f) GDPR); you can unsubscribe at any time. Handling your enquiries and scheduling meetings relies on our legitimate interest (Art. 6(1)(f) GDPR) in communicating with you and, where applicable, on pre-contractual or contractual steps (Art. 6(1)(b) GDPR).

Processors: Transactional and marketing email is delivered through Loops, and meeting scheduling is provided by cal.com, both acting as our processors.

(5) When You Make a Payment (Paying Customers)

In brief: When you subscribe to a paid plan, we process the billing data needed to take payment, issue invoices and manage your subscription.

Purpose: We use this data to process your payments, manage subscriptions, renewals and cancellations, prevent payment fraud, issue invoices and receipts, and comply with our accounting and tax obligations.

Data & Cookies: This includes your name, billing email and address, the plan you purchase, transaction amounts and history, and payment-status information. Your payment is processed by our payment provider; we do not store your full card number, card details are entered directly with the payment provider and only tokenised references and limited data (such as card brand and last four digits) are made available to us.

Legal Basis: Processing of billing data is necessary for the performance of our contract with you (Art. 6(1)(b) GDPR) and to comply with our legal obligations, in particular accounting and tax retention duties (Art. 6(1)(c) GDPR). Fraud prevention relies on our legitimate interest (Art. 6(1)(f) GDPR).

Processors: Payments are processed by Stripe, acting as our payment processor. Stripe's own processing of your payment data is subject to Stripe's privacy policy.

(6) When We Use Personal Data in Internal Operations

In brief: We process a limited amount of personal data to run PMH Technologies as a business, keeping our systems secure, understanding aggregate usage, and meeting our legal and accounting duties.

Purpose: We use personal data for information security and abuse prevention, internal and aggregated analytics to understand and improve our service, bookkeeping and financial administration, and to establish, exercise or defend legal claims and comply with applicable law.

Data & Cookies: This may include security and access logs, device and connection metadata, aggregated or pseudonymised usage statistics, and records needed for accounting, tax and compliance purposes.

Legal Basis: These activities rely on our legitimate interest (Art. 6(1)(f) GDPR) in securing, operating and improving our business, and on our legal obligations (Art. 6(1)(c) GDPR) where we are required to retain records or otherwise comply with the law.

Processors: Internal operations use the same core infrastructure and analytics providers described elsewhere in this Policy, including Supabase, Vercel, Google Analytics 4 and PostHog.

(7) Third-Country Transfers

In brief: Because we and our processors operate internationally, your personal data may be processed outside your country, including in the United Arab Emirates, the United States and the European Union.

Transfers: Our own establishment is in the UAE; several of our processors are located in or transfer data to the United States (including Stripe, Vercel, Google and certain of our AI/LLM providers), while others process data in the EU (such as Supabase). This means personal data may be transferred across borders to enable the service.

Safeguards: Where personal data of EU/UK users is transferred to a country that does not benefit from an adequacy decision, we rely on appropriate safeguards, in particular the EU-US Data Privacy Framework (where the recipient is certified) and/or the European Commission's Standard Contractual Clauses, complemented by supplementary technical and organisational measures where necessary. You may request a copy of the relevant safeguards by emailing privacy@readyt.ai.

(8) Your Rights as a Data Subject

Your Rights: Subject to applicable law, you have the right to access the personal data we hold about you, to have inaccurate data rectified, to have your data erased, to object to certain processing, to request restriction of processing, to receive your data in a portable format, and, where processing is based on consent, to withdraw that consent at any time without affecting the lawfulness of processing carried out beforehand. California residents have equivalent rights under the CCPA/CPRA, including the right to know, delete and correct, and to opt out of any "sale" or "sharing" of personal information (we do not sell your personal data).

How to Exercise Them: To exercise any of these rights, email privacy@readyt.ai. We handle requests free of charge and will respond within one month, a period we may extend where the law permits for complex or numerous requests, in which case we will let you know. We may need to verify your identity before acting on a request.

Right to Complain: If you believe our processing infringes data protection law, you may lodge a complaint with a supervisory authority. There is no single EU lead authority for Readyt, so EU users may complain to their own local data protection authority; UK users may complain to the ICO, and California residents may contact the California Privacy Protection Agency or Attorney General. We would appreciate the chance to address your concerns directly first.

(9) Further Information

Data Security: We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or alteration, including encryption in transit, access controls, hashed credentials, and use of reputable infrastructure providers. No system is perfectly secure, but we work continuously to protect your data.

Other Recipients: Besides the processors named above, we may disclose personal data to professional advisers (such as accountants and lawyers), and to authorities or third parties where required by law, to enforce our terms, or to protect our rights, users and the security of the service. In the event of a merger, acquisition or sale of assets, personal data may be transferred to the successor entity, subject to this Policy.

Processors and Agreements: We only work with processors that provide sufficient guarantees of compliance, and we enter into data processing agreements with them requiring them to process personal data solely on our instructions and to protect it appropriately. Our key processors include Vercel, Supabase, Stripe, Google Analytics 4, PostHog, Loops, cal.com, OpenAI, Anthropic, Perplexity and Google.

Automated Decisions: While Readyt uses AI to generate suggestions, analytics and content, we do not make decisions producing legal or similarly significant effects concerning you based solely on automated processing within the meaning of Art. 22 GDPR. AI-generated outputs are tools to assist you and remain under your control and review.

Children's Data: Readyt is intended for business users and is not directed to children. We do not knowingly collect personal data from children under the age of 16. If you believe a child has provided us with personal data, please contact privacy@readyt.ai and we will delete it.

Changes to this Policy: We may update this Privacy Policy from time to time to reflect changes in our practices, technology or legal requirements. When we make material changes, we will update the "Last Updated" date below and, where appropriate, notify you. Last Updated: July 15, 2026.