Privacy Policy

1. Who we are

The data controller is NET SEO MEDIA SRL (trading as netSEO / netSEO Ads), CUI RO 29957449, J2012003328409, registered office Str. Alexandria, nr. 90, Bucharest, 051538, Romania. The platform is available at netseoads.com. Privacy enquiries: contact@netseoads.com.

2. What we process

Depending on how you use the service, we may process: identity and contact details (name, email, phone, company); account and preference data (language, role); technical data (IP address, browser type, security logs); billing and contract data; advertising data you voluntarily connect (Google Ads, Meta Ads) — campaigns, metrics, search terms, account structure; OAuth tokens and account identifiers needed for sync; action and audit logs within the platform.

3. Why we use it

We process data to: create and manage your account; connect ad accounts and sync performance; generate AI recommendations and run the approval workflow; apply changes you approve to connected platforms; provide support and service-related communications; maintain security, prevent abuse, and meet legal obligations; improve the product using aggregated insights, without external commercial profiling.

4. Legal basis (GDPR)

We rely on: contract performance (Art. 6(1)(b)) — delivering the platform; legitimate interests (Art. 6(1)(f)) — security, technical logs, fraud prevention; consent (Art. 6(1)(a)) — marketing communications where applicable, and non-essential cookies; legal obligation (Art. 6(1)(c)) — invoicing and statutory retention. For your end clients’ campaign data, we usually act as processor; you must have a lawful basis vis-à-vis your clients.

5. Google Ads, Meta Ads, and APIs

When you connect Google Ads or Meta Ads, you authorise us via OAuth to access data you permit on those platforms. We comply with Google policies (including the Google API Services User Data Policy) and applicable Meta policies. We use data solely to provide netSEO Ads features — we do not sell it, use it for our own advertising, or transfer it to third parties for other purposes. You can revoke access anytime in the platform or in your Google/Meta account settings.

6. Recipients and processors

We use providers that help us operate the service: hosting and IT infrastructure, transactional email, payment processors (e.g. Stripe when enabled), and Google/Meta APIs for data you authorise. All are bound by confidentiality and, where required, standard contractual clauses. An updated list is available on request at contact@netseoads.com.

7. Transfers outside the EEA

Some providers may process data in the United States or other countries. Where this happens, we apply GDPR safeguards — typically EU Standard Contractual Clauses (SCCs) or adequacy decisions where applicable.

8. How long we keep data

Account data is kept for the contract term and then as required by law (e.g. accounting records). Security and audit logs are retained for limited periods, generally up to 24 months unless law requires otherwise. After account closure, we delete or anonymise data within a reasonable timeframe, except where we must retain it legally.

9. Your rights

You have the right to access, rectify, erase, restrict, port, and object, as provided by GDPR. You may withdraw marketing consent at any time. To exercise rights, email contact@netseoads.com; we respond within 30 days. You may lodge a complaint with your supervisory authority — in Romania, ANSPDCP (www.dataprotection.ro).

10. Security

We use encryption in transit (HTTPS/TLS), role-based access, secure authentication, logging, and organisational measures to limit data access. No system is 100% secure; please report suspected issues promptly.

11. Children

The service is aimed at professionals and businesses. We do not knowingly collect data from anyone under 16.

12. Changes

We may update this policy. The current version is published on netseoads.com with the “Last updated” date. Material changes will be communicated by email or in-app notice.