Privacy Policy — AdManager

This Privacy Policy explains how AdManager ("we", "us", or "our") collects, uses, stores, and protects your information when you use our advertising management platform at getadmanager.com (the "Service"). By using the Service, you agree to the practices described in this policy.

1. Information We Collect

Account Information

When you sign in using Google OAuth, we receive your name, email address, and profile picture from Google. We store this to identify your account and personalize your experience.

Advertising Platform Data

When you connect an advertising account (Google Ads, Meta Ads, or Microsoft Ads), we receive and store OAuth access tokens and refresh tokens for that platform. These tokens allow us to read campaign data and make approved changes on your behalf. We also store campaign names, performance metrics (impressions, clicks, spend, conversions, ROAS, CPA, CTR), and account identifiers.

Usage Data

We collect logs of actions taken within the platform, including recommendations applied or rejected, alerts generated, and reports created. This data is used to improve the Service and provide an audit trail.

2. How We Use Your Information

To provide, operate, and improve the advertising management Service
To monitor campaign performance and generate AI-powered optimization recommendations
To send performance alerts via email and Slack based on your notification preferences
To generate cross-platform performance reports
To authenticate your identity and maintain session security
To comply with legal obligations

We do not sell your personal information or advertising data to third parties. We do not use your advertising data to train AI models beyond generating recommendations for your own campaigns.

3. How We Store and Protect Your Data

All OAuth access tokens and refresh tokens are encrypted at rest using AES-256 encryption before being stored in our database. Plaintext credentials are never stored.

Our database is hosted on Supabase (PostgreSQL) with row-level security. Our application is deployed on Vercel with HTTPS enforced on all connections. We use Upstash Redis for rate limiting to protect against abuse.

Despite these measures, no system is 100% secure. We encourage you to use a strong, unique password for your Google account and enable two-factor authentication.

4. Third-Party Services

We use the following third-party services to operate the platform:

Google Ads API — to read and manage your Google Ads campaigns
Meta Marketing API — to read and manage your Meta Ads campaigns
Microsoft Advertising API — to read and manage your Microsoft Ads campaigns
Supabase — database hosting (data stored in the US)
Vercel — application hosting
Resend — transactional email delivery
Slack API — optional alert notifications
Anthropic Claude API — AI-powered recommendation generation
Upstash Redis — rate limiting

Each of these services has its own privacy policy governing how they handle data.

5. Google API Data Usage

AdManager integrates with Google APIs exclusively to provide advertising management features directly to you. The following scopes are requested during sign-in:

https://www.googleapis.com/auth/adwords

Google Ads API

We use this scope to perform the following operations on your behalf:

Read: Campaign names, statuses, budgets, bid strategies, and targeting settings
Read: Daily performance metrics — impressions, clicks, spend, conversions, conversion value, CTR, CPA, ROAS
Read: Search term reports to identify irrelevant queries driving spend
Read: Ad group and keyword performance data
Write: Campaign-level negative keywords (phrase match) — only after user approval via the dashboard or Slack
Write: Bid adjustments — only after explicit user approval in the Recommendations queue; never auto-applied
Write: Campaign pause/enable — only when triggered manually by the user in the dashboard

https://www.googleapis.com/auth/analytics.readonly

Google Analytics Data API (GA4)

Read-only. We use this scope to:

Read: Session counts, conversion events, and traffic source data from your GA4 property
Read: Daily trend data for displaying analytics charts in your dashboard

No write operations are performed on Google Analytics data.

https://www.googleapis.com/auth/tagmanager.readonly

Google Tag Manager API

Read-only. We use this scope to:

Read: GTM container and tag configurations to verify conversion tracking setup
Read: Tag types and firing rules to identify missing or misconfigured conversion tags

No write operations are performed on Google Tag Manager.

Limited Use Policy

Data obtained through Google APIs is used solely to provide and improve the advertising management features described above. We do not transfer, sell, or use this data for serving advertisements, for credit decisions, or for any purpose unrelated to operating this Service for your benefit. Our use complies with the Google API Services User Data Policy, including the Limited Use requirements.

6. Data Retention

We retain your account data and campaign metrics for as long as your account is active. If you disconnect a platform account, we stop syncing data from that platform but may retain historical metrics for reporting purposes. If you request account deletion, we will delete your personal information and OAuth tokens within 30 days.

7. Your Rights

You have the right to:

Access the personal data we hold about you
Request correction of inaccurate data
Request deletion of your account and associated data
Disconnect any connected advertising platform at any time via Settings
Revoke our Google Ads access via your Google Account permissions page

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page with an updated date. Continued use of the Service after changes constitutes acceptance of the updated policy.

9. Contact Us

If you have questions about this Privacy Policy or want to exercise your data rights, please contact us at:

tanveeeralam199@gmail.com