Privacy Policy

OptiLens ("we," "our," or "us") operates optilens.io (the "Service"). This page explains what information we collect, how we use it, and your rights regarding your data. By using OptiLens, you agree to the collection and use of information in accordance with this policy.

When you use OptiLens, we collect:

• Basic account information (name, email) provided by Meta during OAuth authentication
• Read-only access to your Meta Ads data including campaigns, ad sets, ads, and performance metrics
• If connected: read-only access to your Shopify orders for attribution analysis
• Usage information about how you interact with the Service

We do NOT collect payment information, store passwords, or access any data beyond what is needed to detect ad waste.

Your data is used exclusively to:

• Detect waste and inefficiencies in your ad campaigns
• Display your performance dashboards and analytics
• Provide actionable recommendations
• Improve the Service (in aggregated, anonymized form only)

We never sell your data. We never use your campaign data to train AI models. We never share your data with third parties for marketing purposes.

OAuth access tokens are stored encrypted in our database. All data transmission uses HTTPS/TLS. Our infrastructure is hosted on Vercel and Supabase, which maintain SOC 2 compliance and industry-standard security practices. We follow the principle of least privilege — OptiLens never requests write access to your Meta or Shopify accounts.

Your data is retained for as long as your account is active. If you disconnect your Meta or Shopify account, the access token is deleted immediately. Historical campaign data may be retained in anonymized form for product improvement purposes. You can request full data deletion at any time by emailing support@optilens.io.

OptiLens uses Meta's official Marketing API in accordance with Meta's Platform Terms and Developer Policies. We request only the minimum permissions needed: ads_read, ads_management (for read operations), and business_management. We do not store, share, or display Meta user data beyond what is necessary to provide the Service.

You have the right to:

• Access the data we hold about you
• Request correction or deletion of your data
• Disconnect your accounts at any time
• Export your data in a machine-readable format
• Withdraw consent for data processing

To exercise any of these rights, contact us at support@optilens.io.

We use a single essential cookie (optilens_uid) to maintain your session. This cookie is httpOnly, secure, and expires after 60 days. We do not use any third-party tracking cookies, analytics scripts, or advertising pixels.

We may update this Privacy Policy from time to time. Material changes will be communicated via email to all active users at least 30 days before the change takes effect.

Questions about this Privacy Policy or your data can be sent to: support@optilens.io