AdsDirector.aiAdsDirector.ai
Sign inSign up

Privacy Policy

Last updated: March 18, 2026

1. Introduction

Welcome to AdsDirector.ai ("AdsDirector," "we," "us," or "our"). AdsDirector.ai is an AI-powered advertising creative generation platform that helps businesses create high-quality ad copy, images, and campaign assets. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at adsdirector.ai and use our services (collectively, the "Service").

By accessing or using our Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.

2. Information We Collect

We collect several types of information from and about users of our Service, including:

2.1 Account Information

When you register for an account, we collect information you provide directly, including:

  • Email address — provided during registration or via Google OAuth sign-in
  • Password — if you register with email and password (stored securely by our authentication provider, Supabase)
  • Google account information — if you choose to sign in with Google OAuth, we receive your name, email address, and profile picture from Google
  • Display name and profile details — any additional profile information you choose to provide

2.2 Payment and Billing Information

When you subscribe to a paid plan or make a one-time purchase, your payment information is collected and processed by Stripe, our third-party payment processor. We do not store your full credit card number, debit card number, or bank account details on our servers. We receive and store:

  • Your Stripe customer ID and subscription or transaction identifiers
  • The last four digits of your payment method for display purposes
  • Billing address (if provided to Stripe)
  • Transaction history, including amounts, dates, and plan details
  • Subscription status and renewal dates

2.3 User-Uploaded Content

In order to generate ad creatives, you may upload or provide the following content to the Service:

  • Product images — photographs or graphics of your products that are used in ad creative generation
  • Website URLs — we may capture screenshots of your website for style reference and brand analysis to inform the creative output
  • Brand information — company names, taglines, product descriptions, target audience details, and other marketing inputs you provide
  • Creative briefs and prompts — text instructions and preferences you submit to guide AI-generated content

2.4 Generated Content

We store the ad creatives, copy, and images that our AI systems generate on your behalf, including:

  • AI-generated ad images and graphics
  • AI-generated ad copy and text variations
  • Ad angles, frameworks, and campaign strategies
  • Metadata associated with generated content (timestamps, generation parameters, model versions)

2.5 Usage and Analytics Data

We automatically collect certain information when you access or use our Service, including:

  • Device information — browser type and version, operating system, device type, screen resolution
  • Log data — IP address, access times, pages viewed, referring URLs, and actions taken within the Service
  • Usage patterns — features used, generation frequency, interaction with generated content
  • Analytics data — collected via Umami (a privacy-focused analytics platform) and Meta Pixel for advertising measurement

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Service Delivery and Operations

  • To create and manage your account, authenticate your identity, and provide access to the Service
  • To process your uploaded content and generate AI-powered ad creatives, copy, and campaign assets
  • To store and organize your generated content in your personal library
  • To process payments, manage subscriptions, and handle billing through Stripe
  • To send transactional emails related to your account, such as welcome emails, payment receipts, and subscription updates

3.2 AI Content Generation

  • To send your text prompts, brand information, and creative instructions to third-party AI providers (Google Gemini and Groq) for content generation
  • To send your uploaded product images to Google Gemini for AI-powered image generation and editing
  • To capture and analyze website screenshots for style reference during the creative generation process

3.3 Analytics and Improvement

  • To understand how users interact with the Service and identify areas for improvement
  • To measure the effectiveness of our marketing campaigns and advertising efforts
  • To monitor and analyze usage trends, performance, and reliability of the Service
  • To develop new features, products, and services based on aggregated usage data

3.4 Communication

  • To respond to your inquiries, support requests, and feedback
  • To send you updates about the Service, including feature announcements and policy changes
  • To send marketing communications, where permitted by law (with the ability to opt out)

3.5 Legal and Safety

  • To comply with applicable laws, regulations, and legal processes
  • To protect the rights, property, and safety of AdsDirector.ai, our users, and the public
  • To detect, prevent, and address fraud, abuse, security issues, and technical problems
  • To enforce our Terms of Service and other agreements

4. AI and Content Generation

Our Service uses third-party artificial intelligence providers to generate ad creatives and copy on your behalf. It is important that you understand how your data interacts with these AI systems:

4.1 Google Gemini (Image Generation)

We use Google's Gemini AI models to generate and edit ad images. When you request image generation, the following data may be sent to Google:

  • Your text prompts and creative instructions
  • Product images you have uploaded (used as reference for generation)
  • Website screenshots captured for style reference
  • Brand information and visual preferences relevant to the generation request

Google's use of this data is governed by Google Cloud's Data Processing terms. When using Google Gemini through their API, your prompts and inputs are not used to train Google's general AI models.

4.2 Groq (Copy Generation)

We use Groq's inference platform running LLaMA language models to generate ad copy, angles, and text-based creative content. When you request copy generation, the following data may be sent to Groq:

  • Your text prompts and creative briefs
  • Brand information, product descriptions, and target audience details
  • Any text-based context you provide for the generation request

Groq processes your data in accordance with their privacy policy and data processing agreements. Data sent to Groq via their API is not used to train or improve their models.

4.3 Your Rights Over AI-Generated Content

You retain full ownership and usage rights over the ad creatives, copy, and other content generated through our Service using your inputs. We do not claim any intellectual property rights over content generated for you. See Section 6 for more details on content ownership.

5. Data Sharing and Third-Party Services

We share your information with the following categories of third parties, solely as necessary to provide and improve the Service:

5.1 Authentication — Supabase

We use Supabase for user authentication, database services, and file storage. Supabase stores your account credentials, user data, and uploaded/generated content. Supabase processes data in accordance with their Privacy Policy and applicable data processing agreements.

5.2 Payments — Stripe

We use Stripe to process all payments, subscriptions, and billing. When you provide payment information, it is transmitted directly to Stripe and subject to Stripe's Privacy Policy. We never store your full payment card details on our systems.

5.3 AI Providers — Google (Gemini) and Groq

As described in Section 4, we transmit user inputs, prompts, and uploaded images to Google Gemini and Groq for AI-powered content generation. These providers process data in accordance with their respective privacy policies and data processing agreements.

5.4 Hosting — Vercel

Our Service is hosted on Vercel. Vercel may process request metadata such as IP addresses, user agent strings, and request logs. Vercel's data handling is governed by their Privacy Policy.

5.5 Analytics — Umami and Meta Pixel

We use Umami, a privacy-focused web analytics tool, to collect anonymized usage data such as page views, referral sources, and general geographic information. Umami does not use cookies and does not collect personally identifiable information.

We use Meta Pixel (Facebook Pixel) to measure the effectiveness of our advertising campaigns on Meta platforms. Meta Pixel may collect information about your browsing activity, including pages visited and actions taken, and may use cookies or similar tracking technologies. This data is shared with Meta Platforms, Inc. and is subject to Meta's Privacy Policy. You can opt out of Meta's tracking through your Facebook ad preferences or browser settings.

5.6 Other Disclosures

We may also disclose your information if required to do so by:

  • Law or legal process — in response to a subpoena, court order, or other legal obligation
  • Protection of rights — to protect the rights, property, or safety of AdsDirector.ai, our users, or the public
  • Business transfers — in connection with a merger, acquisition, reorganization, or sale of assets, in which case your information may be transferred to the acquiring entity
  • With your consent — when you have given us explicit permission to share your information for a specific purpose

We do not sell your personal information to third parties.

6. User Content and Intellectual Property

6.1 Your Uploaded Content

You retain all ownership rights to the content you upload to the Service, including product images, brand assets, and other materials. By uploading content, you grant AdsDirector.ai a limited, non-exclusive license to use, process, and transmit that content solely for the purpose of providing the Service to you (e.g., sending images to AI providers for creative generation).

6.2 AI-Generated Content

You own the ad creatives, copy, images, and other outputs generated by the Service using your inputs. You are free to use, modify, distribute, and commercialize your generated content without restriction. AdsDirector.ai does not claim any ownership or intellectual property rights over content generated for you.

6.3 License to AdsDirector.ai

By using the Service, you grant us a limited, worldwide, non-exclusive, royalty-free license to use, reproduce, and display your uploaded and generated content solely for the purposes of:

  • Operating, maintaining, and improving the Service
  • Providing technical support and resolving issues related to your account
  • Creating aggregated, anonymized, and de-identified data for analytics and product development (individual content is never shared publicly without your consent)

7. Data Storage and Security

7.1 Where We Store Your Data

Your data is stored using the following infrastructure:

  • Supabase — account data, application data, and file storage (uploaded images and generated content) are stored in Supabase-managed infrastructure, which utilizes cloud data centers with industry-standard security measures
  • Stripe — payment and billing data is stored by Stripe in PCI DSS-compliant infrastructure
  • Vercel — application code and serverless functions are deployed on Vercel's global edge network

7.2 Security Measures

We implement commercially reasonable security measures to protect your personal information, including:

  • Encryption of data in transit using TLS/SSL (HTTPS) across all communications
  • Encryption of data at rest in our database and storage systems
  • Secure authentication via Supabase Auth with support for email/password and Google OAuth, including secure session management using HTTP-only cookies and JWT tokens
  • Strict access controls limiting employee and system access to user data on a need-to-know basis
  • Regular security reviews and monitoring of our infrastructure and third-party dependencies

7.3 Security Limitations

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data. You are responsible for maintaining the confidentiality of your account credentials and for any activity that occurs under your account.

8. Cookies and Tracking Technologies

8.1 Cookies We Use

We use the following types of cookies and similar technologies:

  • Essential/session cookies — required for authentication and session management. These cookies are necessary for the Service to function and cannot be disabled.
  • Authentication tokens — secure tokens (JWTs) stored in cookies to maintain your logged-in session

8.2 Third-Party Tracking

  • Meta Pixel — places cookies and uses tracking pixels to measure ad performance and enable retargeting on Meta's advertising platforms (Facebook, Instagram). You can control Meta's tracking through your Facebook Ad Preferences.
  • Umami Analytics — a privacy-focused analytics solution that does not use cookies, does not collect personally identifiable information, and is fully compliant with GDPR, CCPA, and PECR without requiring cookie consent.

8.3 Managing Cookies

Most web browsers allow you to control cookies through their settings. You can set your browser to refuse all cookies or to indicate when a cookie is being set. However, disabling essential cookies may prevent you from using certain features of the Service, including signing in to your account.

9. Data Retention and Deletion

9.1 Retention Periods

We retain your information for the following periods:

  • Account data — retained for as long as your account is active and for a reasonable period thereafter to fulfill legal obligations and resolve disputes
  • Uploaded and generated content — retained for as long as your account is active. Content is stored in Supabase Storage and remains accessible through your account
  • Payment records — retained as required by applicable tax and financial regulations (typically 7 years for transaction records)
  • Usage and analytics data — retained in aggregated or anonymized form for product improvement purposes
  • Server logs — retained for a limited period (typically 30-90 days) for security and troubleshooting purposes

9.2 Account Deletion

You may request deletion of your account and associated data at any time by contacting us at our contact page. Upon receiving a verified deletion request, we will:

  • Delete your account and profile information
  • Delete your uploaded content and generated creatives from Supabase Storage
  • Cancel any active subscriptions through Stripe
  • Remove your data from our active databases within 30 days
  • Retain only the minimum information required by law (such as transaction records for tax compliance)

Please note that data already transmitted to third-party AI providers (Google Gemini, Groq) as part of prior generation requests may be subject to those providers' own retention policies, though API-based interactions are typically not retained by these providers beyond the processing window.

10. Children's Privacy

The Service is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children under 18 years of age. If we become aware that we have inadvertently collected personal information from a child under 18, we will take steps to delete that information as soon as possible.

If you are a parent or guardian and believe that your child has provided us with personal information, please contact us at our contact page so that we can take appropriate action.

11. International Data Transfers

Your information may be transferred to, stored, and processed in countries other than your country of residence, including the United States, where our service providers (Supabase, Stripe, Vercel, Google, and Groq) maintain their infrastructure. These countries may have data protection laws that differ from those in your jurisdiction.

By using the Service, you consent to the transfer of your information to these countries. We take steps to ensure that your data receives an adequate level of protection in the jurisdictions in which we process it, including by relying on:

  • Standard contractual clauses approved by relevant data protection authorities
  • Data processing agreements with our service providers that include appropriate security and privacy commitments
  • Certifications and compliance frameworks maintained by our service providers (e.g., SOC 2, ISO 27001, PCI DSS)

12. Your Rights and Choices

Depending on your location and applicable laws, you may have the following rights regarding your personal information:

12.1 Access and Portability

You have the right to request a copy of the personal information we hold about you, including your account data, uploaded content, and generated creatives. We will provide this information in a commonly used, machine-readable format upon request.

12.2 Correction

You have the right to request correction of any inaccurate or incomplete personal information we hold about you. You can update certain account information directly through your account settings.

12.3 Deletion

You have the right to request deletion of your personal information, subject to certain exceptions (such as data we are required to retain by law). See Section 9.2 for details on account deletion.

12.4 Opt-Out of Marketing

You may opt out of receiving marketing communications from us by following the unsubscribe instructions in any marketing email we send, or by contacting us directly. Please note that even if you opt out, we may still send you transactional or service-related communications.

12.5 Opt-Out of Tracking

You can opt out of Meta Pixel tracking through your Facebook Ad Preferences, by using browser-based ad-blocking tools, or by enabling "Do Not Track" in your browser settings.

12.6 Data Restriction and Objection

Where applicable under GDPR or similar laws, you have the right to restrict or object to the processing of your personal information in certain circumstances.

12.7 Exercising Your Rights

To exercise any of these rights, please contact us at our contact page. We will respond to your request within 30 days (or sooner if required by applicable law). We may ask you to verify your identity before processing your request to protect your account security.

12.8 California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including:

  • The right to know what personal information we have collected, used, disclosed, or sold
  • The right to request deletion of your personal information
  • The right to opt out of the sale of your personal information — we do not sell personal information
  • The right to non-discrimination for exercising your privacy rights

12.9 European Residents (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR), including the rights described above as well as:

  • The right to lodge a complaint with a supervisory authority in your country of residence
  • The right to withdraw consent at any time, where processing is based on consent

Our legal bases for processing your personal information under GDPR include: performance of a contract (providing the Service), legitimate interests (improving the Service, security, fraud prevention), compliance with legal obligations, and your consent (where applicable).

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will:

  • Update the "Last updated" date at the top of this page
  • Notify you by email or through a prominent notice on the Service if the changes are significant
  • Where required by law, obtain your consent before applying material changes

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of the Service after any changes constitutes your acceptance of the updated Privacy Policy.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

We aim to respond to all inquiries within 30 days of receipt. For urgent privacy-related matters, please include "PRIVACY" in your email subject line.