Privacy Policy (Long)

Effective date: [YYYY-MM-DD]

ResultsDriven Ads Agent (“we”, “us”, “our”) provides conversational analytics and reporting for marketing performance data. This Privacy Policy explains what data we collect, how we use it, and your rights.

1. Definitions

• “Service”: ResultsDriven Ads Agent web application and related services.
• “Platforms”: Connected ad/analytics platforms such as Google Ads, Google Analytics 4, Meta Ads, TikTok Ads, LinkedIn Ads, Reddit Ads, and Google Sheets.
• “Customer”: The business or individual using the Service.
• “Personal data”: Any information relating to an identifiable person.

2. Roles and responsibilities

If you connect client data, you act as the data controller. We act as a data processor on your behalf. You are responsible for obtaining necessary permissions and consents.

3. Data we collect

We process the minimum data necessary to operate the Service:

• Account identifiers, user profile details, and authentication info
• Platform configuration, connected account IDs, and permissions
• Conversation history, prompts, and generated outputs
• Performance metrics and attribution data from Platforms
• Report exports, scheduled reports, and delivery metadata
• Usage and diagnostic data (logs, IP addresses, device/browser info)
• Optional attachments or files you provide

4. Data sources

Data comes from the Platforms you authorize and from your direct inputs within the Service. You control which accounts are connected and can revoke access at any time.

5. Purpose of processing

We use data to:

• Provide analytics and insight generation
• Create, schedule, and deliver reports
• Surface recommendations and anomalies
• Enable collaboration features
• Respond to support requests and incidents
• Maintain security, prevent fraud, and improve reliability We do not sell personal data.

6. Legal basis (GDPR)

Where GDPR applies, we rely on:

• Contract performance (to deliver the Service)
• Legitimate interests (security, quality, and improvement)
• Consent (where required for specific integrations or marketing)

7. AI processing

We may send relevant data to AI providers (e.g., Anthropic, OpenAI, Mistral, Google Gemini) to generate insights or summaries. We minimize data shared and require contractual safeguards and data protection commitments.

8. Storage and security

• Secure hosting infrastructure and access controls
• Encryption in transit (TLS)
• Encryption at rest where applicable
• OAuth tokens stored encrypted
• Role-based access with tenant isolation
• Audit logging and monitoring

9. Retention and deletion

• Data retained while your account is active or as needed to provide the Service
• Deletion requests honored where feasible
• Certain records may be retained for legal, security, or billing purposes

10. Sharing and subprocessors

We share data only with authorized service providers (hosting, email, analytics, AI processing, support). We require confidentiality and data protection terms. We do not share data for advertising purposes.

11. International transfers

If data is transferred internationally, we apply appropriate safeguards (e.g., Standard Contractual Clauses) where required.

12. Cookies and tracking

We use essential cookies for session management and may use limited analytics cookies. You can control cookies through your browser settings.

13. Your rights

Depending on your jurisdiction, you may request access, correction, deletion, restriction, objection, or export of your data. Contact us to exercise these rights.

14. Children

The Service is not directed to children and we do not knowingly collect data from children.

15. Changes to this policy

We may update this policy. We will post changes and update the effective date.

16. Company details

[Company Name] [Company Address] [Registration ID] [VAT ID]

Contact: privacy@resultsdriven.ai (replace with your preferred inbox).