AdKinex is launching soon. Be the first to get access →

Privacy Policy

Last updated: May 9, 2026

1. Introduction

AdKinex ("AdKinex", "we", "us", or "our") is a search-term analysis and decision-support tool for Google Ads teams, available at adkinex.com and the AdKinex web application. AdKinex is operated by Aiyin (Beijing) Network Technology Co., Ltd., with registered address at Beijing, China. This Privacy Policy explains what information we collect, how we use it, who we share it with, and the choices you have.

2. Information We Collect

We collect only the information needed to deliver and operate AdKinex:

  • Account information: email address, name, profile picture (if you sign in with Google), and the industry you select during onboarding.
  • Uploaded reports: the Google Ads search-term and keyword reports (CSV/TSV) you upload, stored in our object storage so the platform can analyze and display them.
  • Analysis results: the structured outputs we generate from your reports, such as AUPF scores, asset classifications, intent labels, and n-gram patterns.
  • Custom rules: the negative-keyword rules and rule lists you create inside the platform.
  • Connected Google Ads metadata (only if you connect): account IDs, account names, currency, time zone, and OAuth refresh/access tokens, which are stored encrypted at the application layer.
  • Usage logs: a limited record of business actions you take inside the product (analysis runs, exports, rule creations) for product reliability and abuse prevention.
  • Server-side technical data: IP address, browser/user-agent, and request timestamps that our infrastructure providers (Vercel, Supabase) record automatically for security and platform operation.

3. How We Use Your Information

We use your information solely for the following purposes:

  • Provide, maintain, and improve the AdKinex platform.
  • Process and analyze your uploaded reports and (if connected) data retrieved from Google Ads to deliver insights you have requested.
  • Authenticate your identity, manage your account, and protect your account from unauthorized access.
  • Communicate with you about service updates, security alerts, billing (when applicable), and support inquiries.
  • Detect, prevent, and respond to fraud, abuse, security incidents, and violations of our Terms of Service.
  • Comply with applicable law and respond to lawful requests from public authorities.

4. Use of AI / Machine Learning

AdKinex uses a single AI/ML component: a third-party text-embedding service (DeepInfra, hosting the BAAI/bge-m3 open-source model) that converts the search-term text itself into numerical vectors. These vectors are then compared against pre-defined intent reference vectors entirely on our infrastructure to suggest an intent label such as COMMERCIAL, INFO, BRAND, or JOBS.

  • Only the search-term text is sent to DeepInfra. Account IDs, monetary amounts, your email address, and the rest of your report content are never sent.
  • DeepInfra is used as a stateless inference provider. Per their terms, they do not use API call data to train their models.
  • AdKinex does not train any AI/ML models on your data, and does not use customer data to develop, evaluate, or train any general-purpose AI model.
  • AI-suggested intent labels are advisory. They never automatically modify your Google Ads account, and they are not the only input used to score or classify search terms.

5. Google API Services User Data — Limited Use Disclosure

AdKinex’s use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We do not sell user data, including data obtained through Google APIs.
  • We do not use, or transfer, Google API data to serve advertisements (including retargeting, personalized, or interest-based advertising).
  • We do not use Google API data to train any AI/ML model, including general-purpose generative AI models.
  • We do not transfer or share Google API data with third parties, except as necessary to provide and improve the user-facing features of AdKinex (for example, our infrastructure providers listed under Sub-processors), to comply with applicable law, or as part of a merger, acquisition, or sale of assets with notice to the user.
  • We do not allow humans to read Google API data, except (a) with the affirmative agreement of the user; (b) when necessary for security purposes (such as investigating abuse); (c) to comply with applicable law; or (d) where the data is aggregated and used for internal operations and is anonymized.

When you connect a Google Ads account to AdKinex, you grant us a limited license to read your Google Ads search-term and account-structure data so we can analyze it on your behalf. The only write actions AdKinex can perform on your Google Ads account are described in our Terms of Service under "Service Boundaries", and are strictly limited to ad-group-level negative keywords with EXACT match type after explicit user review.

6. Data Storage and Security

We treat your data with care and apply security measures appropriate to its sensitivity:

  • Data at rest is encrypted using AES-256 (provided by our database and storage infrastructure).
  • Google OAuth refresh and access tokens are additionally encrypted at the application layer using AES-256-GCM before being stored.
  • All network traffic between you, our application, and our infrastructure providers is encrypted using TLS 1.2 or higher, with HSTS enforced.
  • All business tables in our database are protected by row-level security (RLS) policies that enforce strict isolation between accounts.
  • Sensitive tables (OAuth tokens, payment identifiers, audit logs) are accessible only via privileged service-role credentials, never directly from the browser.
  • Write actions to your connected Google Ads account are recorded in append-only audit logs that cannot be deleted (enforced at the database level).

No method of transmission or storage is 100% secure. While we work hard to protect your information, we cannot guarantee absolute security.

7. Sub-processors

AdKinex relies on the following third-party service providers ("sub-processors") to operate the service. We share with each only the minimum data necessary for them to perform their function:

  • Supabase (United States) — managed Postgres database, authentication, and object storage; receives all user data stored by AdKinex.
  • Vercel (United States) — application hosting and edge network; receives HTTP request metadata such as IPs and user-agents.
  • Google (United States, global) — OAuth login provider and Google Ads API provider; receives email, profile information, and (when connecting) Google Ads scopes you authorize.
  • DeepInfra (United States) — text-embedding inference; receives only the search-term text strings, with no account, financial, or personal context.
  • Inngest (United States) — background job and cron orchestration; receives task metadata such as user and source identifiers, but not report contents.
  • Stripe (United States) — payment processing (planned). When activated, Stripe will receive your email and payment-method tokens; AdKinex itself does not store full payment card numbers.

We will update this list before adding a new sub-processor that materially changes how your data is handled.

8. International Data Transfers

AdKinex is operated by Aiyin (Beijing) Network Technology Co., Ltd., a company based in Beijing, China. Most of our infrastructure providers (Supabase, Vercel, DeepInfra, Inngest, Stripe) are based in the United States. As a result, when you use AdKinex your information will be transferred across borders, including from your country of residence to the United States and to China. We rely on appropriate safeguards (such as Standard Contractual Clauses or equivalent mechanisms) where required by law. By using AdKinex you consent to these transfers.

9. Data Retention

Different categories of data are retained for different periods:

  • Account information: retained while your account is active and deleted when you close your account.
  • Uploaded reports and analysis results: retained until you delete the report, or until your account is closed.
  • Custom rules: retained until you delete them, or your account is closed.
  • Encrypted Google OAuth tokens: retained as long as your Google Ads connection is active; deleted when you disconnect.
  • Disconnected Google Ads sources: retained for up to 30 days for compliance and recovery, then permanently removed.
  • Pending recommendation actions: retained for up to 14 days while pending; expired actions retained for an additional 90 days; applied/dismissed actions retained for compliance audit purposes.
  • Write-back audit logs (negative-keyword push records): retained permanently and cannot be deleted, in line with audit and compliance requirements.
  • Server-side technical logs: retained by our infrastructure providers under their standard policies (typically 30–90 days).

10. Your Rights

Depending on where you live, you may have the following rights with respect to your personal data, including under the EU/UK GDPR and the California Consumer Privacy Act (CCPA/CPRA):

  • Right of access: ask us what personal data we hold about you and obtain a copy.
  • Right to rectification: ask us to correct inaccurate or incomplete data.
  • Right to erasure ("right to be forgotten"): ask us to delete your personal data, subject to exceptions allowed by law.
  • Right to data portability: receive your data in a structured, machine-readable format.
  • Right to restrict or object to processing in certain circumstances.
  • Right to opt out of "sale" or "sharing" of personal information (we do not sell or share personal information for cross-context behavioral advertising).
  • Right to lodge a complaint with your local data protection authority.

Self-serve controls for these rights inside the AdKinex application are under development. In the meantime, you can exercise any of these rights at any time by contacting us at support@adkinex.com. We will verify your request and respond within 30 days at no charge.

11. Cookies

AdKinex currently uses only essential cookies, primarily for authentication and session security. We do not use advertising cookies, cross-site tracking cookies, or third-party analytics cookies. If we introduce analytics or marketing tools in the future (for example, Google Analytics or a similar product), this Privacy Policy and our Cookie Policy will be updated and, where required by law, we will request your consent before any non-essential cookie is set.

12. Children’s Privacy

AdKinex is a B2B tool intended for advertising professionals. The service is not directed to children. You must be at least 18 years old to create an account, and in any event AdKinex is not knowingly used by anyone under 16. If we become aware that we have collected personal data from a child, we will delete it.

13. Changes to This Policy & Contact

We may update this Privacy Policy from time to time. When we make material changes, we will revise the "Last updated" date and, where appropriate, notify you by email or through an in-app message before the changes take effect. For any privacy, security, or legal inquiry, contact us at support@adkinex.com, or write to us at Aiyin (Beijing) Network Technology Co., Ltd., Beijing, China.