Privacy Policy
Effective: 1 January 2026 · Version 2026-01-01
Prebo Digital (“we”, “us”, “our”) operates the Adsynth advertising intelligence platform (“Service”). Adsynth is operated by Prebo Digital. This Privacy Policy explains how we collect, use, disclose, and protect personal information when you use the Service. We are committed to processing personal information lawfully and in line with the South African Protection of Personal Information Act, 2013 (POPIA) and, where it applies to you, the EU and UK General Data Protection Regulation (GDPR).
This policy does not apply to data we process strictly on behalf of a customer as their operator/processor; that processing is governed by our Data Processing Agreement.
1. Who we are and how to contact us
We are the responsible party (POPIA) / controller (GDPR) for personal information processed about you as a user of the Service.
Prebo Digital Office Park Block A, Unit 17 Van Hoof Street Willowbrook, Ruimsig Johannesburg, 1709 South Africa Phone: 087 292 2101 Information Officer, Prebo Digital
Privacy and data-protection enquiries, and data-subject requests: info@prebodigital.co.za.
2. Personal information we collect
- Account information: name, email address, account credentials, and organisation/role details you provide when you register or are invited.
- Billing information: subscription plan, transaction history, and limited billing details. Card data is handled by our payment processor; we do not store full card numbers.
- Usage and technical data: log data (IP address, browser/device type and settings, dates and times of access), in-product activity, and security events needed to run and protect the Service.
- Connected platform data: when you connect Google Ads, Google Analytics (GA4), Search Console, Meta, Microsoft Advertising, Shopify, or Apple Search Ads via OAuth, we access the data those connections authorise — typically account structure, campaign and performance metrics, and related metadata — to provide reporting, analysis, and the optimisation actions you initiate.
- Content and AI inputs: prompts, messages, files, and context you submit. These may be processed by the AI model providers we use to generate responses, subject to your consent settings where applicable.
- Communications: messages you send us (e.g. support requests) and their contents.
3. How and why we use personal information (legal bases)
| Purpose | Legal basis |
|---|---|
| Provide, operate, and maintain the Service for you and your organisation | Performance of a contract |
| Authenticate users, secure the Service, prevent fraud and abuse | Legitimate interests / legal obligation |
| Improve and develop features and conduct internal analysis | Legitimate interests (or consent where required) |
| Process AI inputs to generate responses | Performance of a contract / consent |
| Send service, security, and billing notices | Performance of a contract / legitimate interests |
| Optional analytics and product-improvement cookies | Consent |
| Meet legal, tax, accounting, and regulatory obligations | Legal obligation |
Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal. We do not use your Customer Data to train our own foundational models, and we do not sell personal information.
4. Sharing and subprocessors
We share personal information with trusted service providers (subprocessors) who process it on our instructions — for hosting, databases, email, analytics, AI inference, and payments. A current list, with purpose and location, is in our Data Processing Agreement and visible to signed-in users under Privacy & Data. We may also disclose information to comply with law or lawful requests, to protect our rights, users, and the public, and in connection with a merger, acquisition, or other business transfer. Team administrators can access content within their organisation’s account.
5. International transfers
Your information may be processed in South Africa and in other countries where our providers operate (including the United States and the EU). Where personal information is transferred across borders, we rely on lawful transfer mechanisms (such as standard contractual clauses or an adequate-protection basis) consistent with POPIA and GDPR.
6. Retention
We keep personal information only as long as necessary for the purposes above and for legal, accounting, or reporting requirements. As a guide: account information is kept for the life of your account; chat and activity data are kept according to your organisation’s configurable retention period (default 730 days) and then purged; consent and audit records are retained as long as needed to demonstrate compliance. When you delete data or your account, we remove it from active systems within 30 days, except where we must retain limited records for legal, security, or fraud-prevention reasons.
7. Your rights
Depending on where you live, you may have the right to access, correct, update, or delete your personal information; to object to or restrict certain processing; to data portability; and to withdraw consent. You may also lodge a complaint with a supervisory authority (see section 11).
Self-service: when signed in, you can manage consents, download a JSON export of your data, and request permanent deletion from the in-app Privacy & Data page (/privacy). These use your authenticated session and are not available on this public page. If you cannot access your account, contact info@prebodigital.co.za; we will verify your identity before acting on a request.
A note on accuracy: AI features generate predicted responses that may contain inaccurate information about people. You can request correction or removal of inaccurate personal information; we will consider the request in light of applicable law and our technical capabilities.
8. Cookies and similar technologies
We use essential cookies for authentication and security, and — only with your consent — optional analytics or preference cookies. See our Cookie Policy for detail and how to change your choices.
9. Children
The Service is intended for business use and is not directed to children under 18. We do not knowingly collect personal information from children. If you believe a child has provided us personal information, contact info@prebodigital.co.za and we will delete it.
10. Security
We implement commercially reasonable technical and organisational measures designed to protect personal information, including encryption in transit (TLS), encryption of stored credentials at rest, role-based access control, and rate limiting. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.
11. Complaints and supervisory authority
We would like the chance to resolve your concerns first — please contact info@prebodigital.co.za. You also have the right to complain to the Information Regulator (South Africa) (inforegulator.org.za, POPIAComplaints@inforegulator.org.za) or, if you are in the EEA/UK, to your local data protection authority.
12. Google API services and third-party platforms
Our use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We access Google Ads, GA4, and Search Console data only for the accounts and scopes you authorise, and only to provide features you use. Google’s own processing is governed by Google’s privacy policy.
13. Changes to this policy
We may update this policy from time to time. We will post the revised version and effective date here and, where appropriate or required, notify you in the product or by email. Material changes affecting how we use your personal information may require you to re-accept before continuing to use the Service.