Privacy Policy

Welcome to Adsnapshot.com! This Privacy Policy explains how Guandor, a sole tradership based in Sweden ("Adsnapshot," "we," "us," or "our"), collects, uses, shares, and protects your personal information when you visit our website Adsnapshot.com (the "Website") and use our web application and related services (collectively, the "Service").

We are committed to protecting your privacy and handling your data in an open and transparent manner. Please read this policy carefully to understand our practices regarding your personal data.

For any privacy-related questions or requests, please contact us at: [email protected] .

We collect information about you directly from you, through your use of our Service, and from third-party services you connect to Adsnapshot.

2.1. Information You Provide Directly:

• Account Creation (via Kinde Auth): When you create an Adsnapshot account using Kinde Auth, we collect and store your full name, email address, and profile picture URL as provided by Kinde.
• Communications: If you contact us for support or inquiries (e.g., via email), we will collect the content of your communications and any information you provide.

2.2. Information from Meta Platforms (Facebook/Instagram):

• OAuth Connection: When you connect your Meta account to Adsnapshot, we request the following permissions via Facebook OAuth: email , ads_read , and public_profile .
• Meta Data Access: We access data from your Meta account necessary to provide the Service, including:
  • Your Facebook Name/ID and email address (as provided by Meta).
  • A list of Ad Accounts you manage and their IDs.
  • Ad Creative IDs.
  • Ad content, such as ad text, images, videos, and call-to-action details related to the ads for which you request previews.
• Meta Access Tokens: We store your Meta OAuth access tokens securely in our database to maintain the connection and access your ad data on your behalf.

2.3. Information Collected Automatically Through Use of the Service:

• Ad Preview Generation & Storage:
  • When we generate an ad preview, we use the Ad ID and preview URL obtained from the Meta Marketing API. Our in-house screenshot server then captures an image of this ad.
  • The generated ad preview image is stored in a Cloudflare bucket. We also store metadata alongside it, including an internal Adsnapshot ID, the related Meta Ad ID, and the ad format (e.g., "instagram_standard"). These ad previews are visual representations of public-facing ads and do not inherently contain sensitive personal information from your Meta ad campaigns beyond what is publicly visible in the ad itself.
• API Key Usage: If you generate and use an Adsnapshot API key, we log requests made using this key, including the API key used (or an identifier for it), the timestamp, the API endpoint accessed, and the parameters used in the request. We do not log the IP address of the API requester.
• Usage Data & Analytics (PostHog): We collect information about how you interact with our Website and Service for analytics purposes to improve our offerings. This includes information like browser type, device type, pages visited, features used, and clickstream data. We use PostHog for these analytics. We have configured PostHog to not collect your IP address.
• Cookies and Similar Technologies: We use cookies and similar tracking technologies to operate and personalize our Website and Service. These include:
  • Strictly Necessary Cookies: Essential for the Service to function, such as for Kinde Auth login sessions, maintaining your session on Adsnapshot, and security purposes.
  • Preferences Cookies: Used to remember choices you make (e.g., if you set a default ad account in the future).
  • Analytics Cookies: Set by PostHog to help us understand website and service usage patterns.
  • Marketing Cookies: We may use these cookies to show you relevant ads for Adsnapshot on other websites or platforms.
  You will be presented with a cookie consent banner to manage your preferences for non-essential cookies.

2.4. Payment Information (via Polar.sh):

• We use Polar.sh as our third-party payment processor for subscription plans.
• Adsnapshot does not store full payment card details (card numbers, CVV, etc.). We do not directly collect or store your full payment card details. Polar.sh handles all payment card processing.
• We may retain certain transaction data such as invoice details, payment dates, transaction history (e.g., payment success/failure), and Polar.sh-generated customer or subscription IDs.

We use the information we collect for the following purposes:

• To Provide and Maintain the Service: To operate Adsnapshot.com, generate ad previews, manage API keys, provide customer support, and fulfill our contractual obligations to you.
• To Authenticate Users: To securely log you into your Adsnapshot account using Kinde Auth and to authenticate with Meta Platforms on your behalf.
• To Process Payments: To manage your subscriptions and process payments through Polar.sh for our paid plans.
• To Communicate with You: To send you service-related communications (e.g., welcome emails, service updates, security alerts, billing notices, support responses).
• To Monitor and Analyze Usage: To understand how our Service is used, identify trends, troubleshoot issues, and improve its functionality, performance, and user experience, using analytics data (as described above).
• To Enforce Our Terms and Policies: To ensure compliance with our Terms of Service and other applicable policies.
• For Security and Fraud Prevention: To protect the security and integrity of our Service, our users, and to prevent fraudulent activities.
• To Comply with Legal Obligations: To comply with applicable laws, regulations, legal processes, or governmental requests.

We do not sell your personal information. We may share your information in the following circumstances:

• Meta Platforms: We interact with Meta Platforms by sending requests to their APIs on your behalf to access your ad data and generate previews, as authorized by you through the OAuth connection.
• Third-Party Service Providers (Sub-processors): We use trusted third-party service providers to help us operate, provide, improve, understand, customize, support, and market our Service. These providers will only process your information on our behalf and under our instructions, and they are obligated to protect your information. These include:
  • Kinde Auth: For user authentication.
  • Cloudflare: For hosting our application (Workers), storing ad preview images (Buckets), and providing CDN, DNS, and security services.
  • Polar.sh: For payment processing and subscription management.
  • PostHog: For website and application analytics (configured not to collect IP addresses).
  • Resend: For sending transactional emails.
• Legal Requirements: We may disclose your information if required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation, (ii) protect and defend our rights or property, (iii) prevent or investigate possible wrongdoing in connection with the Service, (iv) protect the personal safety of users of the Service or the public, or (v) protect against legal liability.
• Business Transfers: If Adsnapshot is involved in a merger, acquisition, or asset sale, your personal information may be transferred as part of that transaction. We will provide notice before your personal information is transferred and becomes subject to a different privacy policy.

We implement reasonable and appropriate technical and organizational measures to protect your personal information from unauthorized access, use, alteration, or destruction, consistent with industry standard practices. These measures include:

• Using SSL/TLS encryption for data in transit.
• Implementing access controls to our systems.
• Employing security safeguards for sensitive data like Meta OAuth access tokens stored in our database.

However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

We retain your personal information for as long as necessary to provide you with our Service, comply with our legal obligations, resolve disputes, and enforce our agreements.

• Account Information: We retain your account information (from Kinde Auth) for as long as your account is active and for a period of 90 days after your account is closed, unless a longer retention period is required or permitted by law.
• Ad Previews: Generated ad previews and their associated metadata are stored in Cloudflare Buckets to support the "Retrievals" feature of our Service. They are generally retained as long as your account is active or to support the functionality of the Service. We may periodically review and implement more specific retention limits for ad previews, and this policy will be updated accordingly.
• Usage Logs and API Logs: Logs that may contain personal information (such as an email address in API logs or usage logs if it was explicitly captured before IP collection was disabled) will be retained for operational, security, and analytical purposes. Such logs will be reviewed periodically, and personal data within them will be anonymized or pseudonymized (e.g., after 12-18 months) where feasible and appropriate, unless required for ongoing security, fraud prevention, or legal obligations.
• Deletion Requests: You can request the deletion of your personal data as described in Section 7 (Your Data Rights).

If you are in the European Economic Area (EEA), or other regions with similar data protection laws, you have certain rights regarding your personal information. Adsnapshot.com is operated by Guandor, a sole tradership based in Sweden, and we aim to respect these rights for all our users.

• Right to Access: You have the right to request access to the personal information we hold about you.
• Right to Rectification: You have the right to request correction of inaccurate or incomplete personal information.
• Right to Erasure (Right to be Forgotten): You have the right to request the deletion of your personal information under certain conditions.
• Right to Restriction of Processing: You have the right to request that we restrict the processing of your personal information under certain circumstances (e.g., if you contest the accuracy of the data).
• Right to Data Portability: You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format, and to transmit those data to another controller where processing is based on consent or contract and carried out by automated means. We will endeavor to fulfill such requests manually upon contact.
• Right to Object: You have the right to object to the processing of your personal information where it is based on our legitimate interests, or for direct marketing purposes.
• Right to Withdraw Consent: If we are processing your personal information based on your consent (e.g., for certain cookies or marketing communications), you have the right to withdraw your consent at any time.
• Opt-out of Communications: You can opt-out of receiving non-essential (e.g., marketing) emails from us by clicking the "unsubscribe" link provided in such emails.

To exercise any of these rights, please contact us at [email protected] . We will respond to your request within a reasonable timeframe and in accordance with applicable law.

You also have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR. For Sweden, the supervisory authority is the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten - IMY).

If you are an individual in the EEA, we collect and process information about you only where we have legal bases for doing so under applicable EU laws. The legal bases depend on the Services you use and how you use them. This means we collect and use your information only where:

• It's necessary to provide you the Services, including to operate the Services, provide customer support and personalized features, and to protect the safety and security of the Services ( Contractual Necessity ).
• It satisfies a Legitimate Interest (which is not overridden by your data protection interests), such as for research and development, to market and promote the Services (where consent is not required), and to protect our legal rights and interests, for security and fraud prevention.
• You give us Consent to do so for a specific purpose (e.g., for non-essential cookies, or marketing communications where required).
• We need to process your data to comply with a Legal Obligation .

Your information, including personal data, is primarily processed and stored on Cloudflare servers located within the European Economic Area (EEA).

However, some of our third-party service providers (as listed in Section 4) may be based outside the EEA. If we transfer your personal data out of the EEA to such providers, we will ensure that appropriate safeguards are in place to protect your personal data, such as by relying on an adequacy decision by the European Commission, or by using Standard Contractual Clauses (SCCs) or other legally recognized transfer mechanisms.

Adsnapshot.com is not intended for or directed at children under the age of 16 (or the relevant age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without verification of parental consent, we will take steps to remove that information from our servers.

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by sending an email to the address associated with your account or by posting a prominent notice on our Website prior to the change becoming effective. We encourage you to review this Privacy Policy periodically for any updates. Your continued use of the Service after any changes or revisions to this Privacy Policy shall indicate your agreement with the terms of such revised Privacy Policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Guandor (Adsnapshot.com)
Email: [email protected]