PAISync, Inc. ("PAISync," "we," "our," or "us") operates an AI-powered advertising optimization platform that connects to third-party advertising platforms on behalf of our customers ("Advertisers"). This Data & Privacy Policy explains what data we collect, how we use it, who we share it with, and your rights. By using PAISync, you agree to this policy.
Ads Platform Notice: Because PAISync directly interfaces with advertising platforms (Google Ads, Meta, TikTok, LinkedIn, Amazon DSP, and others), we process advertising performance data, audience signals, and campaign configuration data on behalf of Advertisers. This policy covers both our own data practices and our role as a data processor for our customers' advertising activity.
1 Information We Collect
We collect data in three categories:
Account & Business Data
- Name, email address, company name, and billing information when you register
- Role and permissions settings for team members you add to your workspace
- Communications you send to our support or sales team
Ad Platform & Campaign Data (processed on your behalf)
- Campaign structures, ad creative metadata, audience segment configurations
- Spend, impression, click, conversion, and ROAS data pulled via platform APIs
- Bid strategy settings, budget allocation rules, and optimization parameters
- Attribution data and conversion events as reported by connected platforms
- Platform-level audience identifiers (hashed — we never receive raw PII about end-consumers from ad platforms)
Usage & Technical Data
- Log data including IP address, browser type, pages visited, and session duration
- Feature interaction events used to improve the PAISync dashboard
- Cookies and similar tracking technologies (see Section 7)
2 How We Use Your Data
- To operate and deliver the PAISync platform and AI optimization services
- To autonomously reallocate budgets, adjust bids, and test creatives on your behalf
- To generate performance reports, insights, and anomaly alerts
- To train and improve our AI models — using only aggregated and anonymized signals; your raw campaign data is never used to train models shared across other customers without your consent
- To send transactional emails (billing receipts, alert notifications, product updates)
- To comply with legal obligations and enforce our Terms of Service
We do not sell your data to third parties. We do not use your advertising performance data for any purpose outside of providing services to you.
3 Advertising Platform Integrations
PAISync connects to third-party ad platforms via their official APIs using OAuth tokens you grant us. By connecting a platform, you authorize PAISync to:
- Read campaign performance data from that platform
- Create, modify, pause, and delete campaigns on your behalf
- Adjust bids, budgets, and targeting settings as directed by our AI optimization engine
You may revoke platform access at any time from your PAISync dashboard or directly from the ad platform's security settings. Revoking access stops our AI from making further changes but does not delete historical data already pulled.
Each connected platform has its own privacy policy governing how they process data. We encourage you to review these:
4 Data Sharing & Third Parties
We share data only in the following limited circumstances:
- Service Providers: Cloud infrastructure (AWS), analytics tools, payment processors (Stripe), and email delivery services — bound by data processing agreements
- Ad Platforms: We write campaign changes back to platforms on your behalf (this is the core function of PAISync)
- Legal Requirements: When required by law, subpoena, or to protect our rights and users' safety
- Business Transfers: In the event of a merger, acquisition, or asset sale, data may transfer to the acquiring entity with advance notice to you
We do not share your campaign data with competitors or use it for cross-customer advertising targeting.
5 Data Retention
- Account data is retained for the duration of your subscription plus 90 days after cancellation
- Campaign performance data synced from ad platforms is retained for up to 36 months to power historical analytics and AI model context
- Billing records are retained for 7 years to comply with financial regulations
- You may request earlier deletion by emailing hluo@paisync.com
6 Your Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate data
- Deletion: Request deletion of your data (subject to legal retention requirements)
- Portability: Request your data in a structured, machine-readable format
- Objection: Object to certain types of processing, including profiling
- Withdraw Consent: Where processing is based on consent, withdraw it at any time
CCPA (California): California residents have the right to know what personal information is collected, to opt out of sale (we do not sell data), and to non-discrimination for exercising rights.
GDPR (EU/UK): EU and UK residents have additional rights under GDPR. PAISync acts as a data processor for your advertising data and a data controller for your account data. Our lawful bases for processing include contract performance, legitimate interest, and consent.
To exercise any right, contact us at hluo@paisync.com. We will respond within 30 days.
7 Cookies & Tracking
PAISync uses cookies and similar technologies for:
- Essential cookies: Required for login sessions and platform security — cannot be disabled
- Analytics cookies: Help us understand how the dashboard is used (e.g. page visits, feature usage) — can be opted out
- Preference cookies: Remember your display settings and notification preferences
We do not place advertising or retargeting cookies on our own website visitors. You can control cookies through your browser settings at any time.
8 Data Security
We implement industry-standard security measures including:
- TLS 1.3 encryption for all data in transit
- AES-256 encryption for data at rest
- OAuth 2.0 for all ad platform API connections (we never store your platform passwords)
- Role-based access controls and audit logging within our infrastructure
- Regular third-party penetration testing and SOC 2 Type II compliance (in progress)
Despite these measures, no system is 100% secure. In the event of a data breach affecting your information, we will notify you within 72 hours as required by applicable law.
9 Children's Privacy
PAISync is a B2B platform intended for business use only. We do not knowingly collect personal data from individuals under the age of 18. If you believe a minor has provided us with data, please contact us at hluo@paisync.com and we will promptly delete it.
10 Changes to This Policy
We may update this policy from time to time. When we make material changes, we will notify you by email and update the "Last Updated" date at the top of this page. Your continued use of PAISync after changes become effective constitutes your acceptance of the updated policy.
11 Contact Us
For any privacy-related questions, data requests, or concerns, please reach out to our Privacy Team:
PAISync, Inc. — Privacy Team
Email:
hluo@paisync.com
Response time: within 2 business days for general inquiries, within 30 days for formal data requests