Privacy Policy

1. Introduction

NegativeShield (“NegativeShield,” “we,” “us,” or “our”) provides a tool that analyzes Google Ads search terms with the help of artificial intelligence and helps advertisers manage negative keywords. This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using NegativeShield you agree to the practices described here.

2. Information We Collect

• Account & authentication data. When you sign in, we store your email address and basic account details through our authentication provider (Supabase) so we can identify you and manage access to your organization and projects.
• Google Ads data. When you connect a Google Ads account via Google OAuth, we access and store data needed to operate the service: search terms, campaign and keyword data, performance metrics, and related account metadata. We use this data to classify search terms and generate negative-keyword suggestions, and to apply negative keywords back to Google Ads when you ask us to.
• OAuth credentials. Your Google OAuth refresh token is stored encrypted in Supabase Vault. It is used only to access the Google Ads data you have authorized, and is never shared with third parties.
• Uploaded files. If you upload a CSV of search terms instead of connecting Google Ads, we process and store its contents to provide the service.
• Usage data. We collect limited product-analytics and diagnostic data to operate, secure, and improve the service.

3. How We Use Your Information

• To classify search terms and identify irrelevant traffic using large language models, and to generate suggested negative keywords.
• To apply negative keywords and exclusion lists back to your Google Ads account at your direction.
• To authenticate you, enforce usage quotas, and operate multi-tenant access controls.
• To maintain, secure, troubleshoot, and improve the service.

4. Google API Services & Limited Use

NegativeShield’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We do not use Google user data for advertising, do not sell it, and do not transfer it to others except as necessary to provide or improve the service, to comply with applicable law, or as part of a merger or acquisition. We do not use Google user data to train generalized AI/ML models.

5. Third-Party Service Providers

We rely on the following subprocessors to operate the service. They process data only on our behalf and under their respective terms:

• Supabase — authentication, database, and encrypted secret storage.
• OpenAI — large-language-model classification of search terms.
• Vercel — application hosting and infrastructure.
• Google — Google Ads API access for the accounts you connect.

6. Data Retention & Deletion

We retain your data for as long as your account is active or as needed to provide the service. You can disconnect your Google Ads account at any time from your settings, which revokes our access and removes the stored OAuth credentials. To request deletion of your account and associated data, contact us at [email protected]. We will delete or anonymize your data within a reasonable period, except where retention is required by law.

7. Your Rights

Depending on your location, you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. To exercise these rights, contact us at the address below. You may also revoke NegativeShield’s access to your Google account at any time via your Google Account permissions page.

8. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be reflected by updating the “Last updated” date above and, where appropriate, by additional notice.

9. Contact

Questions about this Privacy Policy or your data can be sent to [email protected].