Privacy & Security
How do I revoke access?
You have three independent ways to revoke. First, revoke a single MCP token from /account/tokens - this kills only that bearer, leaving other tokens (e.g. on different machines) working. Useful if you suspect one token has been exposed but want to keep using GSC PAP elsewhere.
Second, revoke the entire Google OAuth grant from your Google Account at myaccount.google.com/permissions - this severs our ability to call the Search Console API at all, even with a valid bearer. Useful if you want to cut us off completely without deleting your account.
Third, delete your account from /account/profile (Danger zone). This is the nuclear option: every MCP token is revoked, the Google OAuth grant is revoked at Google's side, your encrypted refresh token is marked revoked in our database, and a 30-day soft-delete grace period begins. After 30 days everything is hard-deleted including your Personal Archive. The grace period exists so you can recover an accidentally deleted account by signing in again before the timer expires.
Related questions
All questionsPrivacy & Security
Can other users see my data?
No. Your Search Console data, OAuth tokens, MCP sessions, archive, and tool call history are all isolated to your user account in our database. Every query passes through bearer-token authentication that resolves to a specific user, and every database query scopes results by user_id. There is no UI, API endpoint, or feature that exposes one user's data to another user.
Privacy & Security
What Search Console data can GSC PAP access?
GSC PAP requests the webmasters.readonly OAuth scope - the same read-only level you would grant to any third-party Search Console viewer. Specifically we can read your verified site list, search analytics (clicks, impressions, CTR, position by query, page, country, device, date), sitemap submission status, and URL inspection results. This is exactly the data you see in your own Search Console UI.
Setup
How do I add GSC PAP to Claude Desktop, Cursor, or Claude Code?
The flow is the same for all three clients: sign in with Google at gscpap.com, copy the bearer token shown on the connect screen, then paste a JSON config or run a single CLI command in your AI client. Total time about 60 seconds, all from the same web page.
Plug-and-play SEO copilot for your AI assistant 30 SEO tools, one token, your AI assistant. Sign in with Google to start.
Sign in with Google