Privacy Policy

Last Updated: April 17, 2026 Effective Date: April 17, 2026

Adlyfts ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our Services.

By using our website or Services, you consent to the practices described in this Policy. If you do not agree, please do not use our website or Services.

1. Information We Collect

1.1 Information You Provide

When you interact with us, we may collect:

Contact and identity data:

  • Full name
  • Email address
  • Company name (optional)
  • Country or location (for service availability and tax purposes)

Payment information:

  • Billing address
  • Payment card details (processed by Stripe and ABA PayWay — we do not store full card numbers)
  • Transaction history and invoice records

Business and campaign data (during onboarding):

  • Company website, industry, size
  • Social media accounts and ad account access
  • Brand assets (logos, images, guidelines)
  • Campaign goals, target audience, competitors
  • Any other information you voluntarily provide

Communications:

  • Messages you send via contact forms or email
  • Support requests and correspondence

1.2 Information Collected Automatically

When you visit our website, we may automatically collect:

  • IP address and approximate geographic location
  • Browser type, version, and language
  • Device type and operating system
  • Pages visited, time spent, and referring URL
  • Cookie and session data (see Cookie Policy)

1.3 Information from Third Parties

We may receive information from:

  • Payment processors (Stripe, ABA PayWay) — transaction confirmations
  • Advertising platforms (Meta, Google, TikTok, LinkedIn) — campaign performance data, when you grant us access
  • Analytics providers — aggregated website usage statistics

2. How We Use Your Information

We use your information to:

  • Provide Services: Set up and manage ad campaigns, generate reports, communicate with you
  • Process payments: Collect fees, issue refunds, prevent fraud
  • Communicate: Send onboarding information, service updates, and respond to inquiries
  • Improve our Services: Analyze usage patterns, develop new features, enhance user experience
  • Legal compliance: Meet regulatory obligations, enforce our Terms, resolve disputes
  • Marketing (with consent): Send occasional updates about our services (you can unsubscribe anytime)

We will never sell your personal information to third parties.

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA) or United Kingdom, we process your data under the following legal bases:

  • Contract performance: To deliver the Services you purchased
  • Legitimate interest: To improve our Services, prevent fraud, ensure security
  • Consent: For marketing communications and non-essential cookies (you may withdraw consent anytime)
  • Legal obligation: To comply with tax, accounting, and regulatory requirements

4. How We Share Your Information

4.1 Service Providers

We use trusted third-party providers to operate our business:

| Provider | Purpose | Data Shared | |----------|---------|-------------| | Stripe | Payment processing | Name, email, payment details, transaction amount | | ABA PayWay | Payment processing (Cambodia & Asia) | Name, email, payment details, transaction amount | | Resend | Transactional email delivery | Name, email | | Vercel | Website hosting | IP address, usage data | | Railway | API hosting | IP address, usage data | | Neon | Database hosting | All stored customer data |

All providers are contractually obligated to protect your data and use it only for the specified purposes.

4.2 Advertising Platforms

When you grant us access to your ad accounts, we interact with platforms like Meta, TikTok, Google, and LinkedIn on your behalf. These platforms have their own privacy policies that govern their use of data.

4.3 Legal Requirements

We may disclose your information if required by law, court order, or to protect our legal rights, prevent fraud, or respond to government requests.

4.4 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred. You will be notified of any such change.

5. Data Storage and Security

5.1 Where We Store Your Data

Your data is stored on servers operated by our service providers, which may be located in various regions. We ensure all providers offer adequate data protection standards.

5.2 Security Measures

We implement industry-standard security measures, including:

  • HTTPS encryption for all data transmission
  • Encrypted database storage
  • Access controls and authentication
  • Regular security audits
  • Limited employee access on a need-to-know basis

Despite these measures, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security but will notify you promptly of any breach affecting your data.

5.3 Data Retention

We retain your information for as long as necessary to provide Services and comply with legal obligations:

  • Active client data: For the duration of the engagement
  • Transaction records: 7 years (for tax and accounting purposes)
  • Onboarding form data: Up to 3 years after last activity
  • Marketing consent records: Until consent is withdrawn
  • Website analytics: 26 months

After these periods, we either delete or anonymize your data.

6. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Ask us to correct inaccurate or incomplete data
  • Deletion: Request deletion of your data (subject to legal retention requirements)
  • Portability: Receive your data in a structured, machine-readable format
  • Restriction: Ask us to limit processing of your data
  • Objection: Object to processing based on legitimate interests
  • Withdraw consent: Withdraw previously given consent at any time
  • Complaint: Lodge a complaint with your local data protection authority

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to operate our website. For details, see our Cookie Policy.

8. Children's Privacy

Our Services are not directed to individuals under 18. We do not knowingly collect personal information from minors. If you believe a minor has provided us with information, contact us immediately and we will delete it.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your own. When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses (for EEA transfers)
  • Adequate privacy protections by service providers
  • Your explicit consent where required

10. Third-Party Links

Our website may contain links to third-party sites. We are not responsible for their privacy practices. Please review their privacy policies before providing any information.

11. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email (to active clients) and posted on our website at least 30 days before taking effect. The "Last Updated" date at the top reflects the latest revision.

12. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:

Adlyfts Email: [email protected] Address: Phnom Penh, Kingdom of Cambodia

We will respond to all inquiries within 30 days.

By using our website and Services, you acknowledge that you have read and understood this Privacy Policy.