Privacy Policy

We collect the following categories of personal data:

• Account information: your name and email address when you sign up
• Ad platform data: spend, impressions, clicks, conversions and revenue pulled from connected ad accounts via official APIs
• Usage data: pages visited, features used, and session duration to improve the product
• Cookies and local storage: authentication tokens and user preferences

We do not collect payment card details directly — payments are processed by third-party providers.

Your data is used solely to provide and improve the Verabix service:

• Authenticate your account and maintain your session
• Fetch and display your ad performance data in the dashboard
• Generate AI-powered insights via the Vera agent
• Send transactional emails (e.g. account notifications)
• Diagnose bugs and improve product performance

We do not sell your personal data to third parties and we do not use your data for advertising purposes.

Verabix integrates with the following third-party platforms to retrieve your advertising data:

• Meta Ads (Facebook) — facebook.com/privacy
• Google Ads — policies.google.com/privacy
• Google Analytics — policies.google.com/privacy

We access these platforms only with your explicit authorisation via OAuth. You can revoke access at any time from within Verabix or directly from each platform's settings.

We also use Supabase for database hosting and authentication, and Anthropic for AI features.

We retain your data for as long as your account is active. You may request deletion of your account and all associated data at any time by contacting us at the address below.

Ad performance data retrieved from third-party APIs is cached for up to 24 hours and then refreshed. We do not store raw ad account credentials — only encrypted OAuth tokens.

If you are located in the European Union, you have the following rights under the GDPR:

• Right of access — request a copy of the personal data we hold about you
• Right to rectification — request correction of inaccurate data
• Right to erasure — request deletion of your personal data
• Right to restriction — request that we limit how we process your data
• Right to portability — receive your data in a machine-readable format
• Right to object — object to processing based on legitimate interests

To exercise any of these rights, please contact us at admin@verabix.com. We will respond within 30 days.

We use AES-256 encryption for all stored credentials, HTTPS for all data in transit, and follow industry-standard security practices.

Verabix uses the Google Ads API to retrieve campaign performance data on behalf of authenticated users. Our use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

• We only request access to Google Ads data that is necessary to provide the Verabix dashboard service.
• We do not use Google Ads data for any purpose other than displaying it to the authenticated account owner.
• We do not share, sell, or transfer Google Ads data to third parties.
• We do not use Google Ads data for advertising or remarketing purposes.
• Users can revoke Google Ads access at any time from within Verabix or from their Google Account settings at myaccount.google.com.

For any questions about this Privacy Policy or your personal data, please contact: