Privacy Policy

AdFence Effective Date: April 30, 2026 Last Updated: April 30, 2026

This Privacy Policy describes how AdFence ("we," "us," or "our") collects, uses, stores, and protects information when you use our website, application, and related services (collectively, the "Service"). AdFence is an ad account security monitoring platform that helps agencies, media buyers, and advertisers protect their advertising accounts across platforms such as Meta, Google, TikTok, Snapchat, and Pinterest.

By accessing or using the Service, you agree to this Privacy Policy. If you do not agree, please do not use the Service.

1. Information We Collect

1.1 Account Information

When you create an AdFence account, we collect:

• Full name
• Email address
• Password (stored in hashed form)
• Company or agency name (if provided)
• Role or job title (if provided)

1.2 Billing Information

When you subscribe to a paid plan, payment processing is handled by our third-party payment processor, Stripe. We do not store your full credit card number. We may receive and store limited billing details from Stripe, such as the last four digits of your card, card brand, billing address, and transaction history.

1.3 Advertising Platform Data

When you connect your advertising accounts via OAuth, we access certain data from third-party advertising platforms, including but not limited to Meta, Google, TikTok, Snapchat, and Pinterest. This data may include:

• Ad account identifiers, names, and statuses
• Campaign, ad set, and ad-level configuration and status data
• Budget and spend information
• Account-level permissions and role assignments
• Account activity logs and change history
• Billing and payment method metadata associated with ad accounts
• Business Manager or equivalent organizational structure data

Important: By default, AdFence accesses advertising platform data in read-only mode for the purpose of security monitoring. We do not modify your ad campaigns, budgets, creatives, or account settings through our standard monitoring access. If you enable the Kill Switch feature, you grant AdFence limited write access solely to pause campaigns on your connected ad accounts when a security threat is detected. This write access is used exclusively for pausing campaigns and no other modifications are made to your account.

1.4 Usage Data

We automatically collect certain information when you use the Service, including:

• IP address
• Browser type and version
• Device type and operating system
• Pages visited and features used within AdFence
• Date, time, and duration of sessions
• Referring URL
• Actions taken within the Service (e.g., alerts viewed, workspaces created, ad accounts connected or disconnected)

1.5 Notification and Communication Data

If you configure alert notifications through third-party channels (such as Email, Slack, or Telegram), we store the relevant integration credentials and routing preferences necessary to deliver those notifications.

1.6 Cookies and Similar Technologies

We use cookies and similar tracking technologies to maintain sessions, remember preferences, and understand how the Service is used. You may control cookies through your browser settings, though disabling them may affect functionality.

2. How We Use Your Information

We use the information we collect for the following purposes:

• Providing the Service: To monitor connected ad accounts, detect anomalies, generate alerts, and produce Evidence Packs and reports.
• Account Management: To create and manage your AdFence account, workspaces, and team member access.
• Billing and Payments: To process subscription charges, pro-rated adjustments for newly added ad accounts, and manage your billing cycle through Stripe.
• Notifications and Alerts: To deliver real-time or digest-format security alerts via your configured channels (Email, Slack, Telegram).
• Product Improvement: To analyze usage patterns, improve features, fix bugs, and develop new functionality.
• Customer Support: To respond to your inquiries, troubleshoot issues, and provide technical assistance.
• Security and Fraud Prevention: To detect and prevent unauthorized access, abuse, or fraudulent use of the Service.
• Legal Compliance: To comply with applicable laws, regulations, legal processes, or enforceable governmental requests.
• Transactional Communications: To send essential service-related emails, including trial expiry warnings, payment failure notices, scan failure alerts, and OAuth token revocation notices.

3. Data Retention

3.1 Monitoring and Alert Data

AdFence retains monitoring data, alerts, and historical activity for a period determined by your subscription plan:

• Starter: 15 days
• Growth: 30 days
• Agency: 90 days
• Enterprise: Custom retention as agreed

These retention periods are fixed by plan and are not user-configurable. Data older than the applicable retention window is automatically and permanently deleted.

3.2 Disconnected Ad Accounts

When you disconnect an ad account from AdFence, it is immediately removed from all active monitoring views and account counts. Historical data and alerts associated with that account are retained until the plan's retention limit expires, after which they are permanently deleted.

3.3 Subscription Cancellation

If you cancel your AdFence subscription, your account is deactivated. Your data is retained for 30 days following cancellation and is then permanently deleted.

3.4 Account Deletion

You may delete your AdFence account at any time from your account settings. Account deletion results in a full, permanent, and irreversible wipe of all your data, including account information, monitoring history, alerts, workspace configurations, and team member associations.

4. How We Share Your Information

We do not sell, rent, or trade your personal information. We may share your information only in the following circumstances:

4.1 Service Providers

We share information with trusted third-party service providers who assist us in operating the Service, including:

• Payment processing (e.g., Stripe)
• Cloud infrastructure and hosting
• Email delivery and transactional messaging
• Analytics and monitoring tools

These providers are contractually obligated to use your information only to perform services on our behalf and in accordance with this Privacy Policy.

4.2 Advertising Platform APIs

When you connect your ad accounts, AdFence communicates with the respective advertising platform APIs (Meta Marketing API, Google Ads API, TikTok Marketing API, Snapchat Marketing API, Pinterest API) using OAuth tokens you authorize. We transmit only the data necessary to authenticate and retrieve monitoring information.

4.3 Team Members Within Your Account

If you use AdFence's Agency or Enterprise plan with multi-user access, information within a workspace (including ad accounts, alerts, and monitoring data) is visible to team members assigned to that workspace. Account owners and administrators have access to all workspaces within the account.

4.4 Legal Requirements

We may disclose your information if required to do so by law, regulation, legal process, or governmental request, or if we believe in good faith that disclosure is necessary to protect the rights, property, or safety of AdFence, our users, or the public.

4.5 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have regarding your information.

5. Data Security

We implement industry-standard technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit (TLS/SSL) and at rest
• Hashed password storage
• OAuth token-based authentication for advertising platform connections (we do not store your advertising platform passwords)
• Role-based access controls within the Service
• Regular security reviews and monitoring

Despite these measures, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security of your information.

6. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal information, including:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request correction of inaccurate or incomplete information.
• Deletion: Request deletion of your personal information (you may also self-serve this from account settings).
• Data Portability: Request your data in a structured, commonly used, machine-readable format.
• Objection: Object to certain processing of your personal information.
• Withdrawal of Consent: Where processing is based on consent, you may withdraw that consent at any time.
• Restrict Processing: Request that we restrict processing of your personal information under certain circumstances.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within the timeframe required by applicable law.

You may disconnect any ad account from AdFence at any time. Disconnection immediately revokes our access to that account's data via the respective advertising platform API.

6.2 Notification Preferences

You may configure your notification preferences (channels, severity thresholds, and quiet hours) at any time within your account settings. Each team member controls their own notification preferences independently.

7. Third-Party Services and Links

The Service may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party services you interact with through or in connection with AdFence, including but not limited to:

• Meta (Facebook) — https://www.facebook.com/privacy/policy
• Google — https://policies.google.com/privacy
• TikTok — https://www.tiktok.com/legal/privacy-policy
• Snapchat — https://www.snap.com/en-US/privacy/privacy-policy
• Pinterest — https://policy.pinterest.com/en/privacy-policy
• Stripe — https://stripe.com/privacy
• Slack — https://slack.com/trust/privacy/privacy-policy
• Telegram — https://telegram.org/privacy

8. International Data Transfers

AdFence may process and store your information in countries other than your own. By using the Service, you consent to the transfer of your information to countries that may have different data protection laws than your jurisdiction. We take steps to ensure that your information receives an adequate level of protection wherever it is processed.

9. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly. If you believe a child has provided us with personal information, please contact us at [email protected].

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, the Service, or applicable laws. When we make material changes, we will update the "Last Updated" date at the top of this page and, where appropriate, notify you via email or through the Service. Your continued use of the Service after any changes constitutes your acceptance of the updated Privacy Policy.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

AdFence Email: [email protected] Website: https://adfence.io