Privacy
Summary — last updated 6 July 2026.
What we store. Your account (name, email), your workspaces, and the advertising data you connect: campaign structure, ads and performance metrics synced read-only from Meta, Google and LinkedIn.
How tokens are handled. Platform access tokens are encrypted (AES-256-GCM) before they are stored and are only decrypted by our isolated sync worker. They are never exposed to the browser or to the AI agent.
What the AI sees. The agent reads your workspace's advertising data to analyze and draft. It cannot publish or change anything — every proposed change requires your explicit approval, and every decision is written to an append-only audit log.
Deletion. Disconnecting a platform deletes the stored token. Revoking access from the platform's side (e.g. Meta data-deletion callback) does the same automatically. Email us to delete your account and all workspace data.
No resale. We do not sell your data or use one customer's data to serve another.