Legal Operations

Privacy & Data Protection Policy

Effective Date: May 27, 2026 · Last Updated: May 27, 2026

1. Overview & Scope

AdSloth ("Platform", "Service", "we", "our", or "us") is a proprietary automated software system operated by **Fitcrafts LLC**, a limited liability company registered in the State of Texas, United States. We are dedicated to providing autonomous brand analysis, creative production, and campaign management software for app developers and performance marketers.

This document sets forth our comprehensive policies and procedures concerning the collection, utilization, processing, storage, and sharing of personal, behavioral, and telemetry data. This policy applies to all visitors, registered users, and entities accessing the Service via adsloth.app or any related API endpoints.

2. Structured Data Collection Matrix

We collect and classify information within the following distinct data categories:

CategorySpecific Elements CollectedPrimary Purpose
Identity DataGoogle Account ID, primary email address, full name, profile photo URL.User authentication, session verification, and secure platform access.
Brand InputsSubmitted brand URLs, competitor product names, App Store/Google Play links, target parameters.Feeding generative contexts into Google Gemini APIs to build Brand DNA profiles.
Generated AssetsGenerated ad copies, A/B copy variants, generated PNG images, voiceover audio structures, video assets.Saving user workspace states and enabling direct export/download options.
Campaign PerformanceSimulated conversion metrics, impressions, cost per action, client-side pixel telemetry events.Enabling ROAS calculations and mutating/evolving Brand DNA configurations.
Technical ParametersIP Address, browser type, geographic location (country level), device descriptors, network logs.Preventing platform abuse, verifying safety limits, debugging performance issues.

3. Computational AI Sub-Processors & Data Transfers

To deliver our automated marketing features, we transfer selected brand inputs and design context to external computational sub-processors. These operations are strictly limited to the execution of your direct generation commands:

  • Google Cloud & Generative AI Platform (Gemini, Imagen, Veo)

    We transmit website texts, descriptors, and audio generation commands directly to Google AI endpoints. This process is governed by Google’s Enterprise Privacy Agreements. Under these agreements, your submitted inputs are processed for real-time asset generation and are not utilized to train foundation models.

  • Google Firebase Cloud Infrastructure

    Your persistent profile configurations, telemetry events, and workspace states are hosted in Firestore database environments in United States data centers. All data is protected under Google Firebase Security Policies and Firestore Identity Rules.

Except for these computational partners required to provide the core services, we do **not** sell, exchange, rent, or lease personal or account data to third-party ad brokers or tracking networks.

4. Detailed Cookie Disclosures

AdSloth does not employ cross-site tracking pixels or invasive behavioral cookie matrices. We use only strictly necessary, functional cookies to maintain your login session:

  • Firebase Session Token: An HTTP-only cookie containing cryptographically signed access tokens to authenticate calls between your client and Firebase databases.
  • Theme Preference: A local storage setting to preserve styling selections across dashboard instances.

5. GDPR Compliance Statement (For EEA & UK Users)

For users accessing the Platform from the European Economic Area (EEA) or the United Kingdom, Fitcrafts LLC acts as a Data Controller.

  • Legal Basis for Processing: We process data based on the necessity of performing our contract with you (delivering the AI services under the Terms), our legitimate interest in securing our service, or your explicit consent.
  • Your GDPR Rights: You have the right to request access to, rectification of, portability of, or erasure of your personal data stored with us. You also possess the right to object to or restrict processing.
  • International Transfers: Your data is transferred to and processed in the United States. We secure these transfers using Standard Contractual Clauses (SCCs) to guarantee equivalent protection levels.

6. CCPA/CPRA Compliance Statement (For California Residents)

Under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), California residents are afforded specific rights regarding their personal information:

  • We do not "sell" or "share" your personal information as defined by California law.
  • You have the right to request disclosure of the specific categories of data we collect and share.
  • You have the right to request deletion of your information, subject to statutory business exemptions (e.g., verifying telemetry logic, compliance).
  • You have the right to non-discriminatory treatment for exercising your CCPA rights.

7. Data Security Safeguards

We execute robust architectural safeguards to protect your personal and analytical data:

  • **In-Transit Protection**: High-grade TLS 1.3/HTTPS encryption for all communication between the web browser and our API infrastructure.
  • **Session Safety**: Session keys are locked using HTTP-only parameters with Secure attributes, blocking client-side script access.
  • **Firebase Protection**: Strict backend Firebase security rules checking request authorization down to specific collection rows.

8. Retention & Deletion Policy

We retain your account profile and workspace assets as long as your registered account is active. If you initiate account deletion:

  • We terminate database mappings and permanently wipe your account identity row within 30 days.
  • All generated copy variations, image histories, and telemetry logs assigned to your `appId` are systematically deleted or anonymized.

9. Contact & Inquiries

If you have comments, requests, or questions regarding this Privacy and Data Protection Policy, please direct your correspondence to:

**Fitcrafts LLC / AdSloth Legal Dept**
Texas, United States
Email: hello@adsloth.app