Privacy Policy

Last updated: March 29, 2026

1. Introduction

Digital Face (“we,” “our,” or “us”) operates the Digital Face platform at digitalface.ai. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our service.

By using Digital Face, you agree to the collection and use of information as described in this policy. If you do not agree, please do not use our service.

2. Information We Collect

Account Information

When you create an account, we collect your email address, name (if provided), and authentication credentials. We support sign-in via Google OAuth and email/password.

Advertising Platform Data

When you connect your Google Ads or Meta Ads account via OAuth, we access campaign data, ad performance metrics, search term reports, audience data, and account structure information. We request only the permissions necessary to provide our auditing and optimization features. We do not access your Google or Meta account passwords.

Usage Data

We collect information about how you use Digital Face, including MCP tool calls made, features accessed, and interactions with our dashboard. This data is used to provide the service, enforce plan limits, and improve our product.

Payment Information

Billing is handled by Stripe. We do not store your credit card number, CVV, or full card details. We store your Stripe customer ID and subscription status to manage your plan.

Communications

If you submit your email through our waitlist or lead magnet forms, we store that email and may contact you about Digital Face. You can unsubscribe at any time.

3. How We Use Your Information

  • To provide and improve the Digital Face platform
  • To connect to your advertising accounts and run audits, optimizations, and reports
  • To enforce your subscription plan limits (tool call quotas)
  • To send you product updates and notifications you request
  • To respond to support requests
  • To detect and prevent fraud and abuse
  • To comply with legal obligations

4. Google API Services

Digital Face's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We only request Google Ads scopes necessary to read campaign performance and make approved optimizations
  • We do not share your Google Ads data with third parties for advertising purposes
  • We do not use Google Ads data to train AI models
  • You can revoke Google access at any time from your Google Account security settings or from your Digital Face account settings

5. Meta Platform Data

When you connect Meta Ads via OAuth, we access your ad account data under Meta's Platform Terms. We only request permissions necessary for campaign management and reporting. We do not store Meta user data beyond what is needed to operate the service, and we comply with Meta's Platform Policy requirements.

6. Data Sharing

We do not sell your personal information. We share data only:

  • With service providers who help operate Digital Face (Stripe for billing, Supabase for database hosting, Vercel for deployment)
  • When required by law, court order, or government authority
  • In connection with a merger, acquisition, or sale of assets (with notice to you)

7. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we delete your personal data within 30 days, except where retention is required by law or for legitimate business purposes (e.g., fraud prevention).

Ad performance data accessed via API is processed in memory and used to generate reports and recommendations. We do not archive your raw Google Ads or Meta Ads data indefinitely — cached data is purged regularly.

8. Security

We use industry-standard security measures including TLS encryption in transit, encrypted storage of sensitive credentials, OAuth 2.0 for third-party integrations (no password storage), and regular security reviews. However, no system is 100% secure. If you believe your account has been compromised, contact us immediately at security@digitalface.ai.

9. Your Rights

Depending on your location, you may have rights to access, correct, delete, or export your personal data. To exercise these rights, email us at privacy@digitalface.ai. We respond to requests within 30 days.

You can also delete your account and associated data directly from your account settings at any time.

10. Cookies

We use cookies and similar technologies to maintain your session, remember your preferences, and analyze usage. We use:

  • Session cookies: Required to keep you logged in
  • Analytics cookies: Anonymous usage data to improve the product (you can opt out)

11. Changes to This Policy

We may update this Privacy Policy. We will notify you of material changes by email or via a notice in the dashboard. Continued use of Digital Face after changes take effect constitutes acceptance of the updated policy.

12. Contact

For privacy questions or requests, contact us at privacy@digitalface.ai or write to:

Digital Face
hello@digitalface.ai