Adsynex
◉ Legal · Republic of Cyprus

Privacy Policy

Effective June 12, 2026 · adsynex.com · adsynex.inc@gmail.com

Adsynex ("we", "our", "us") operates the platform at adsynex.com. This Privacy Policy explains what personal data we collect, how we use it, and your rights under the General Data Protection Regulation (GDPR) and applicable Cyprus law. By using Adsynex, you agree to the practices described here.

01Data Controller

Adsynex is the data controller responsible for your personal data. For all privacy-related matters, contact us at: adsynex.inc@gmail.com

02Data We Collect

When you create an account

  • Name and email address
  • Google account identifier (if you sign in with Google)
  • Payment information — processed by our payment provider; we store only the last four digits of your card and your billing country

When you use the platform

  • Ad creatives you upload (images)
  • Experiment configurations (persona settings, audience parameters)
  • Usage data: experiment runs, credit consumption, timestamps
  • Technical logs: IP address, browser type, device type, pages visited

03Authentication

We do not store passwords. Authentication is handled in one of two ways:

  • Google Sign-In: we receive a token from Google confirming your identity. We do not receive or store your Google password.
  • Magic link: we send a one-time login link to your email address. The link expires after a short period and cannot be reused.

In both cases, your credentials are never stored on our servers.

04Legal Basis for Processing (GDPR)

We process your personal data on the following legal bases under GDPR Article 6:

  • Contract (Art. 6(1)(b)): processing necessary to provide the Service you signed up for — running experiments, managing credits, sending transactional emails
  • Legitimate interests (Art. 6(1)(f)): platform analytics, security monitoring, and fraud prevention
  • Legal obligation (Art. 6(1)(c)): retaining billing records as required by law
  • Consent (Art. 6(1)(a)): non-essential cookies and analytics — you may withdraw consent at any time

05How We Use Your Data

  • To provide the Adsynex service and generate experiment reports
  • To process payments and manage your credit balance
  • To send transactional emails (magic links, receipts, experiment completion notifications)
  • To improve the platform (aggregated, anonymised analytics)
  • To comply with legal obligations

We do not sell, rent, or trade your personal data to third parties.

06Ad Creatives

Images you upload are used solely to run the experiments you configure. They are stored on our servers for 12 months from the date of upload and then deleted unless you request earlier removal. We do not use your creatives to train AI models.

07Service Providers and International Transfers

We share limited data with trusted third-party processors who help us operate the platform:

  • Cloud hosting and storage providers
  • Payment processor
  • AI inference provider (processes creative images and prompt data to generate results)
  • Email delivery service (used to send magic links and transactional emails)
  • Google (authentication provider, when Google Sign-In is used)

Some providers may be located outside the EEA. Where data is transferred outside the EEA, we ensure appropriate safeguards are in place (such as EU Standard Contractual Clauses) in accordance with GDPR Chapter V.

These providers act as data processors and are contractually bound to process data only on our behalf and in accordance with this policy.

08Data Retention

  • Account data: retained while your account is active, and for 90 days after deletion
  • Ad creatives: 12 months from upload date
  • Experiment reports: 12 months from experiment date
  • Billing records: 7 years (legal requirement)

09Security

We implement reasonable technical and organisational measures to protect your data, including TLS encryption for data in transit, access controls, and regular security reviews. Authentication tokens and magic links are short-lived and invalidated after use.

No method of transmission over the internet is 100% secure. We cannot guarantee absolute security of your data and are not liable for breaches resulting from circumstances beyond our reasonable control.

10No Liability for Third-Party Services

The Service relies on third-party providers including Google (authentication), cloud hosting, payment processors, and AI inference providers. We are not responsible for the privacy practices, security, or conduct of these third parties. Your use of Google Sign-In is also governed by Google's own Privacy Policy and Terms of Service.

11Your Rights (GDPR)

As a data subject under GDPR, you have the following rights:

  • Right of access (Art. 15): request a copy of the personal data we hold about you
  • Right to rectification (Art. 16): request correction of inaccurate or incomplete data
  • Right to erasure (Art. 17): request deletion of your data ('right to be forgotten')
  • Right to restriction (Art. 18): request that we limit processing of your data
  • Right to data portability (Art. 20): receive your data in a machine-readable format
  • Right to object (Art. 21): object to processing based on legitimate interests
  • Right to withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting prior processing

To exercise any of these rights, email us at adsynex.inc@gmail.com. We will respond within 30 days. You also have the right to lodge a complaint with the Cyprus Commissioner for Personal Data Protection (www.dataprotection.gov.cy) or any other EU supervisory authority.

12Cookies and Tracking

We use cookies and similar technologies as follows:

  • Strictly necessary cookies: required for the platform to function (session management, authentication). These cannot be disabled.
  • Analytics cookies: help us understand how users interact with the platform. These are only set with your consent.

On your first visit, you will be shown a cookie consent banner. You may accept or decline non-essential cookies at any time. Withdrawing consent does not affect prior processing.

13Children

Adsynex is intended for users 18 and older. We do not knowingly collect personal data from children. If you believe a child has provided us with data, contact us at adsynex.inc@gmail.com and we will delete it promptly.

14Changes to This Policy

We may update this Privacy Policy at any time. We will notify registered users of material changes by email at least 14 days before they take effect. Continued use of Adsynex after changes take effect constitutes acceptance of the updated policy.

15Contact and Supervisory Authority

For privacy-related questions, contact us at: adsynex.inc@gmail.com

If you are not satisfied with our response, you have the right to complain to the Cyprus Commissioner for Personal Data Protection: www.dataprotection.gov.cy