Privacy Policy

1. Introduction

This Privacy Policy explains how AdsOptim collects, uses, and protects personal data in compliance with the General Data Protection Regulation (GDPR).

2. Data Collected

AdsOptim collects only data strictly necessary for service operation:

  • Account Info: Email address, ID, organization role.

  • Advertising Metadata: Through the Sentinel service, we access and temporarily store campaign names, IDs, daily budget settings, and recent spending metrics (e.g., 'yesterday spend') via the Google Ads API

  • Purpose: This data is used exclusively to generate security alerts and historical budget charts for the user

  • Storage: Budget history is stored securely in our private database and is never shared with third parties

While AdsOptim Sentinel accesses and temporarily stores technical metadata (campaign names, IDs, and daily budgets) and spending status to generate alerts, it does not collect or store creative assets, targeting details, or long-term ROI performance metrics.

AdsOptim does not monitor, extract, analyze, or store advertising content or performance data displayed on third-party platforms.
Any visual elements processed by the extension remain within the user’s browser and are not transmitted to AdsOptim servers.

3. Purpose of Processing

Personal data is used to:

  • authenticate users and manage accounts,

  • manage access rights based on role and billing status,

  • handle subscriptions and payments,

  • provide user support and service-related communications,

  • comply with legal obligations.

Interface-related processing performed by AdsOptim occurs locally within the user’s browser session and is limited to display and usability enhancements.
AdsOptim does not perform server-side analysis of third-party platform interfaces or content.

4. Legal Basis (GDPR)

Data processing is based on:

  • performance of a contract (service access),

  • compliance with legal obligations,

  • legitimate interest in ensuring service functionality and security.

5. Hosting and Subprocessors

Data is hosted and processed using:

  • Firebase (Google Cloud) for authentication and application services,

  • Stripe for payment processing.

These providers comply with applicable GDPR and security standards.

6. Data Retention

Personal data is retained:

  • for the duration of service usage,

  • and for a reasonable period after termination, in accordance with legal and regulatory requirements.

Data that is no longer necessary is deleted or anonymized.

7. Data Security

AdsOptim implements appropriate security measures, including:

  • internal technical mechanisms,

  • automated access control systems,

  • data protection rules.

While reasonable safeguards are applied, no system can guarantee absolute security.

These measures are designed to prevent unauthorized access, misuse, or exposure of personal data, without revealing internal security logic or technical architecture.

8. User Rights

In accordance with GDPR, users have the right to:

  • access their personal data,

  • request rectification,

  • request deletion,

  • restrict or object to processing,

  • request data portability.

Requests may be submitted using the contact details below.

9. No Data Resale

Personal data is never sold, rented, or shared with third parties for commercial purposes.

10. Contact

For any questions related to data protection or GDPR rights, users may contact: contact@adsoptim.com