Last updated: June 12, 2026
AdRule ("we", "our") operates adrule.in, a compliance and uptime monitoring service for Google Ads advertisers. This policy describes what data we collect, why, and how we handle it.
Account data: your email address and authentication credentials (passwords are hashed; we never see them). Service data: the Google Ads account information you authorize us to access — ad IDs, ad text, final URLs, campaign identifiers, and ad status — plus the scan results, findings, and action logs our service generates. Technical data: standard server logs including IP address and browser type, used for security and rate limiting.
When you connect a Google Ads account, you grant AdRule access via Google OAuth with the Google Ads scope. We use this access solely to: read your active ads and their destination URLs for monitoring; and, only if you enable automated protection, change the status (pause/enable) of specific ads according to the protection mode you configure. OAuth refresh tokens are encrypted at rest. We do not sell Google user data, do not use it for advertising, and do not share it with third parties except the infrastructure providers that host our service. You can revoke access at any time from your Google account security settings or by disconnecting the account inside AdRule; on request we delete stored campaign data. AdRule's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
To provide the service: scanning landing pages, reviewing ad content against published Google Ads policies, alerting you, and performing the protective actions you configure. To operate the business: authentication, billing, support, and service communications. We do not use your data to train AI models and we do not sell it to anyone.
Data is stored with Supabase (database, hosted in Mumbai, ap-south-1) and our application runs on Vercel. Access tokens are encrypted at rest, transport is TLS-only, and row-level security ensures each customer can access only their own records.
Account and service data is retained while your account is active. If you disconnect a Google Ads account or delete your AdRule account, associated campaign data is deleted within 30 days of request.
You may request access to, correction of, or deletion of your personal data at any time by contacting us at the address below.
Questions about this policy: support@adrule.in