Legal

Privacy Policy

Last updated: 2 June 2026

1. About This Policy

AdVeego (“we”, “us”, “our”) is a Meta Ads analytics platform operated by WebChirpy. This Privacy Policy explains how we collect, use, store, and protect your information when you use AdVeego. By using AdVeego you agree to this policy.

2. Information We Collect

Account Information

When you create an account we collect your name, email address, and password (stored as a secure hash). If you sign in with Google or Facebook we receive your name and email from that provider.

Meta Ads Data (via Facebook OAuth)

When you connect your Meta Ads account, AdVeego requests the following permissions via Facebook OAuth:

  • public_profile — to display your Facebook profile name inside AdVeego
  • ads_read — to read your ad accounts, campaigns, ad sets, ads, and performance metrics (spend, impressions, clicks, ROAS, conversions, etc.)

All permissions are read-only. AdVeego cannot create, edit, pause, or delete any ads or campaigns in your Meta account.

The data we access includes: ad account names and IDs, campaign names, ad creative names, ad thumbnails and preview URLs, and performance metrics (spend, impressions, reach, clicks, CTR, CPM, CPC, ROAS, conversions). This data is fetched live from the Meta Marketing API and is not permanently stored on our servers.

Usage Data

We collect standard server logs (IP address, browser type, pages visited, timestamps) to operate and improve the service.

3. How We Use Your Information

  • To provide the AdVeego service — displaying your ad performance data and generating reports
  • To enable team features — sharing access to ad accounts with invited team members
  • To send transactional emails — account verification, password reset, team invitations
  • To improve the service — aggregated, anonymised usage analytics only

We do not use your Meta Ads data for advertising, profiling, or any purpose other than displaying it back to you within AdVeego.

4. Storage and Security of Meta Access Tokens

To retrieve your Meta Ads data without requiring you to re-authenticate on every visit, we store your Meta OAuth access token in our database. This token is encrypted at rest using AES-256-GCM encryption. Only the AdVeego server can decrypt it; it is never exposed to other users or third parties.

You can revoke AdVeego's access to your Meta account at any time by:

  • Clicking Disconnect in the AdVeego account selector, or
  • Going to Facebook Settings → Security and Login → Apps and Websites and removing AdVeego

When you disconnect, your access token is immediately deleted from our database.

5. Data Retention

  • Meta Ads performance data (spend, impressions, etc.) — not stored; fetched live on demand and cached for up to 5 minutes in server memory only
  • Meta access tokens — stored until you disconnect your Meta account or delete your AdVeego account
  • Account data (name, email, saved reports, team settings) — retained until you request account deletion
  • Server logs — retained for up to 90 days then permanently deleted

6. Sharing of Information

We do not sell, rent, or share your personal data or Meta Ads data with third parties for marketing or advertising purposes. We may share data only with:

  • Supabase — our database provider (data is stored on encrypted servers)
  • Resend — our transactional email provider (receives only your email address for delivery)
  • Sentry — our error monitoring service (receives anonymised error traces, no personal data)
  • Law enforcement — if required by law or valid legal process

7. Your Rights and Data Deletion

You have the right to access, correct, export, or delete your personal data at any time.

To delete your data:

  • Email us at team@adveego.com with the subject line “Data Deletion Request”
  • Include the email address associated with your AdVeego account
  • We will permanently delete all your account data within 30 days and confirm by email

Deleting your account also removes all stored Meta access tokens, saved reports, and team associations.

8. Facebook Data Deletion

As required by Meta's Platform Terms, you can request deletion of all data AdVeego holds that was obtained via Facebook Login. To do this:

  1. Go to Facebook Settings → Security and Login → Apps and Websites
  2. Find AdVeego and click Remove
  3. Then email team@adveego.com to request full account deletion

We will delete all associated data within 30 days and send a confirmation.

9. Cookies

We use only a session cookie (better-auth.session_token) to keep you signed in. We do not use third-party tracking cookies, advertising cookies, or analytics cookies.

10. Children's Privacy

AdVeego is not directed at children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by displaying a prominent notice in AdVeego. Continued use of AdVeego after changes are posted constitutes acceptance of the revised policy.

12. Contact

For any privacy questions, data access requests, or deletion requests: