Privacy Policy

1. Introduction

Welcome to Adsgenix ("we", "our", or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI marketing platform at adsgenix.com. Please read this policy carefully. If you disagree with its terms, please discontinue use of our service.

Company Information: Adsgenix is operated from India and is subject to Indian data protection laws.

2. Information We Collect

Personal Data You Provide:

• Account information: Name, email address, phone number, and password when you register
• Business information: Business name, type, description, target audience, location, and marketing preferences provided during onboarding
• Payment information: Processed securely by Razorpay (for Indian users) — we never store your complete card details, only transaction references
• Communication data: Messages you send us via contact forms, email, or WhatsApp Business

Usage Data:

• Pages visited, features used, and time spent on platform
• AI prompts submitted and content generated
• Campaign data, ad performance metrics, and interaction patterns
• Video generation requests and credit usage
• WhatsApp message content (when using our WhatsApp automation feature)

Device & Technical Data:

• IP address, browser type, operating system
• Device identifiers, referring URLs
• Timestamps and geolocation data (for fraud prevention)

3. How We Use Your Information

• Service Delivery: To create and manage your account, provide AI marketing services, generate content, and process video requests
• Personalization: To customize AI-generated content based on your business profile and preferences
• Payment Processing: To process subscriptions, manage billing, and handle refunds via Razorpay
• Communication: To send transactional emails (OTP, welcome, billing, password resets) and service updates
• Platform Improvement: To analyze usage patterns, improve features, and develop new functionality
• Security: To detect fraud, prevent abuse, and protect platform integrity
• Legal Compliance: To comply with applicable laws, regulations, and legal processes

4. Third-Party Services & AI Providers

AI Content Generation Providers:

• Anthropic Claude: We use Claude 3.5 Sonnet for strategic marketing planning and Claude 3.5 Haiku for content drafting. When you request AI-generated content, your business context and prompts are sent to Anthropic's API. Anthropic does NOT use your data to train their models (we explicitly opt-out via API parameters). Read more: Anthropic Privacy Policy
• OpenAI GPT: Used for specific creative tasks and image analysis. Similar opt-out policies apply. Read more: OpenAI Privacy Policy

Video Generation Provider:

• HeyGen: When you use our AI Video feature, your video scripts and business information are sent to HeyGen's API to generate professional video content with AI avatars. HeyGen processes this data solely to create your requested videos and does not use it for other purposes. Read more: HeyGen Privacy Policy

Meta Platforms (Facebook, Instagram, WhatsApp):

• Meta Business API: When you connect your Meta account, we access your ad accounts, Pages, and Instagram profiles to create and manage advertising campaigns on your behalf. We use Meta's official APIs and comply with Meta's Platform Policy.
• WhatsApp Business API: When you enable WhatsApp automation, we receive and store messages sent to your WhatsApp Business number. These messages are processed by our AI to generate automated responses. We comply with WhatsApp's Business Data Processing Terms.
• Meta Pixel: We may use Meta Pixel on our landing pages to measure ad campaign effectiveness. This is governed by Meta's policies and your browser settings.
• Data Usage Commitment: We do NOT sell Meta data to third parties or use it for unauthorized surveillance. Access tokens are encrypted and stored securely.

Google Services:

• Google Ads API: When you connect Google Ads, we access your campaigns and performance data to provide management services.
• Google API Services Compliance: Adsgenix's use and transfer of information received from Google APIs adheres strictly to the Google API Services User Data Policy, including the Limited Use requirements. We do NOT use Google API data to develop, improve, or train generalized AI/ML models.

Payment Processing:

• Razorpay: All payment processing for Indian users is handled by Razorpay. Your card data is handled exclusively by Razorpay's PCI-DSS compliant systems. We only receive transaction confirmations and subscription status. Read more: Razorpay Privacy Policy

Email Services:

• SMTP/Email Providers: Transactional emails (OTP, billing, notifications) are sent via our email service providers. Only necessary data (name, email, transaction details) is shared.

Analytics & Monitoring:

• Usage Analytics: We collect anonymized usage data to improve our platform. IP addresses are hashed, and personal identifiers are removed.

5. API Token Security & Encryption

When you connect third-party services (Meta, Google, WhatsApp), we store access tokens to enable automated operations. These tokens are:

• Encrypted at Rest: All API tokens are encrypted in our database using AES-256 encryption
• Encrypted in Transit: All data transmission uses HTTPS/TLS 1.3
• Access Controlled: Only authorized platform processes can decrypt and use these tokens
• Time-Limited: Tokens are refreshed regularly and revoked immediately upon disconnection
• Audited: Token usage is logged for security monitoring

6. Data Retention & Deletion

Active Accounts: We retain your personal data for as long as your account is active or as needed to provide services.

Account Deletion (GDPR-Compliant):

• When you delete your account, we immediately and permanently delete all personally identifiable information (PII) including: name, email, phone number, business data, API tokens, and content
• We retain only anonymized, aggregated statistics (e.g., "total users this month") for platform analytics. These cannot be traced back to you
• Financial records (transaction IDs, amounts) are retained for 7 years as required by Indian tax law, but are disassociated from your identity

Legal Requirements: In rare cases, we may be required by law to retain certain data for longer periods (e.g., court orders, regulatory investigations).

7. Data Deletion Instructions (Meta & Google Compliance)

Method 1: Self-Service (Instant)

1. Log in to your Adsgenix Dashboard
2. Navigate to Settings via the sidebar or top-right menu
3. Scroll to the Danger Zone section at the bottom
4. Click the red "Delete My Account & Data" button
5. Confirm your choice in the popup dialog
6. Your personal data, Meta/Google/WhatsApp tokens, and business profile will be instantly and permanently deleted from our systems

Method 2: Email Request

Send an email to privacy@adsgenix.com with the subject "Data Deletion Request". Include your registered email address. We will manually process your request within 24 hours and send confirmation.

What Gets Deleted:

• ✅ All personal information (name, email, phone)
• ✅ All business data and content
• ✅ All API access tokens (Meta, Google, WhatsApp)
• ✅ All AI-generated content and prompts
• ✅ All usage history and analytics tied to your identity
• ❌ Anonymized aggregate statistics (no personal identifiers)
• ❌ Transaction records required by law (amounts only, no identity)

8. Cookies & Tracking Technologies

We use cookies and similar technologies to improve your experience:

• Essential Cookies: Required for login sessions, authentication, and core platform functionality (cannot be disabled)
• Analytics Cookies: Used to understand usage patterns and improve features (anonymized)
• Marketing Cookies: Meta Pixel and similar tools for ad campaign measurement (can be blocked via browser settings)

You may disable non-essential cookies in your browser settings. However, certain features may not function correctly.

9. Your Privacy Rights (GDPR & Global)

Depending on your location, you may have the following rights:

• Right of Access: Request a copy of all personal data we hold about you
• Right to Rectification: Request correction of inaccurate personal data
• Right to Erasure: Request deletion of your personal data ("right to be forgotten")
• Right to Restriction: Request that we limit processing of your data
• Right to Data Portability: Receive your data in a structured, machine-readable format (JSON export)
• Right to Object: Object to processing based on legitimate interests or direct marketing
• Right to Withdraw Consent: Withdraw consent at any time where processing is consent-based

To exercise any of these rights, contact us at privacy@adsgenix.com. We will respond within 30 days.

10. Data Security Measures

We implement industry-standard security measures to protect your data:

• Encryption: All data transmission uses HTTPS/TLS 1.3. Passwords are hashed using bcrypt. API tokens are encrypted with AES-256
• Authentication: JWT-based secure authentication with token expiration
• Access Controls: Role-based access, IP rate limiting, and fraud detection
• Infrastructure: Hosted on secure cloud infrastructure with regular security audits
• Monitoring: 24/7 security monitoring and intrusion detection

Disclaimer: While we implement robust security measures, no method of internet transmission is 100% secure. We cannot guarantee absolute security.

11. Children's Privacy

Adsgenix is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we discover that a child has provided personal information, we will delete it immediately. If you believe a child has provided us with personal data, please contact privacy@adsgenix.com.

12. International Data Transfers

Adsgenix operates from India. If you access our platform from outside India, your data may be transferred to and processed in India. By using our service, you consent to such transfers. We ensure appropriate safeguards are in place for international data transfers in accordance with applicable laws.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes via:

• Email to your registered address
• Prominent notice on our platform
• Updated "Last updated" date at the top of this policy

Your continued use of the platform after changes constitutes acceptance of the updated policy.

14. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact:

Response Time: We aim to respond to all privacy inquiries within 24-48 hours, and to fulfill formal data requests within 30 days.