dgl.

dgl.

dgl.

Privacy Policy

Privacy Policy

Digital Growth Labs Website: digitalgrowthlabs.ai Last Updated: 25 February 2026


1. Who We Are

Digital Growth Labs ("we", "us", "our") operates the website digitalgrowthlabs.ai and the DGL Audit platform, a digital advertising audit and optimisation tool. We are a UK-based digital marketing consultancy and technology company.

Contact: hello@digitalgrowthlabs.ai


2. What This Policy Covers

This privacy policy explains how we collect, use, store, and protect your personal data when you:

  • Visit our website (digitalgrowthlabs.ai)

  • Use the DGL Audit platform to audit and optimise advertising accounts

  • Connect your Google Ads or Meta (Facebook/Instagram) advertising accounts to our platform

  • Engage with us for consultancy services

  • Subscribe to our communications


3. Data We Collect

3.1 Information You Provide Directly

  • Account information: Name, email address, company name, job title

  • Business information: Industry, monthly advertising spend range

  • Payment information: Processed securely via third-party payment providers (we do not store card details)

  • Communications: Messages you send us via email or contact forms

3.2 Advertising Platform Data (Google Ads & Meta Ads)

When you connect your advertising accounts to DGL Audit, we access the following data through official APIs:

Google Ads data (via Google Ads API):

  • Campaign, ad group, keyword, and ad performance data (impressions, clicks, conversions, costs)

  • Search term reports

  • Quality Score and auction insights data

  • Budget and bid strategy settings

  • Geographic and device performance data

  • Ad extensions and asset data

  • Conversion tracking configuration

Meta Ads data (via Meta Marketing API):

  • Campaign, ad set, and ad performance data (impressions, clicks, conversions, costs, reach, frequency)

  • Audience targeting configuration and performance breakdowns

  • Creative performance data (images, video metrics, engagement)

  • Placement performance breakdowns

  • Conversion and pixel event data

  • Demographic and geographic breakdowns

We do NOT access:

  • Personal data of people who click your ads

  • Customer lists or email addresses from your advertising accounts

  • Payment or billing information from your advertising accounts

  • Any data unrelated to advertising performance

3.3 Data Collected Automatically

  • Usage data: Pages visited, features used, time spent on the platform

  • Technical data: IP address, browser type, device type, operating system

  • Cookies: Essential cookies for platform functionality and optional analytics cookies (see Section 8)


4. How We Use Your Data

We use your data for the following purposes:

4.1 Providing Our Services

  • Running automated audits on your connected advertising accounts

  • Generating account health scores, findings, and recommendations

  • Producing audit reports (PDF and on-screen)

  • Providing AI-powered insights and optimisation recommendations

4.2 Platform Operation

  • Authenticating your identity and managing your account

  • Processing payments for subscriptions

  • Communicating service updates, alerts, and audit results

  • Providing customer support

4.3 Improving Our Services

  • Analysing aggregate, anonymised usage patterns to improve audit rules and scoring

  • Developing new features and product improvements

  • Ensuring platform security and preventing abuse

4.4 Marketing (with your consent)

  • Sending newsletters, product updates, and educational content

  • You can opt out at any time via the unsubscribe link in any email


5. Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

Purpose

Legal Basis

Providing audit services

Performance of a contract

Account management

Performance of a contract

Platform security

Legitimate interest

Service improvement (anonymised)

Legitimate interest

Marketing communications

Consent

Legal compliance

Legal obligation


6. Google Ads API — Limited Use Disclosure

DGL Audit's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

  • We only access Google Ads data necessary to provide our audit and optimisation services

  • We do not sell Google Ads data to third parties

  • We do not use Google Ads data for advertising or marketing purposes unrelated to our services

  • We do not use Google Ads data to build user profiles for advertising

  • Access to Google Ads data is limited to the actions and individuals necessary to provide our services

  • We store Google Ads data securely and delete it upon account disconnection or user request


7. Meta Platform Data — Usage Disclosure

DGL Audit accesses Meta advertising data through the official Meta Marketing API in accordance with Meta Platform Terms and Developer Policies.

Specifically:

  • We only access Meta advertising performance data necessary to provide our audit and optimisation services

  • We do not sell Meta advertising data to third parties

  • We do not use Meta data for purposes unrelated to our stated services

  • We do not access personal information of users who interact with your ads

  • We store Meta data securely and delete it upon account disconnection or user request

  • Users can revoke our access at any time through Meta Business Settings


8. Cookies

We use the following types of cookies:

Essential cookies: Required for platform functionality, authentication, and security. These cannot be disabled.

Analytics cookies (optional): Help us understand how users interact with our platform. We use privacy-respecting analytics and do not share this data with third parties.

You can manage cookie preferences through your browser settings.


9. Data Sharing

We do not sell your personal data. We share data only with:

Recipient

Purpose

Cloud hosting providers (e.g., Vercel, Railway, Supabase)

Infrastructure and data storage

Payment processors (e.g., Stripe)

Processing subscription payments

AI service providers (e.g., Anthropic)

Generating audit insights (anonymised account data only)

Google (via Google Ads API)

Accessing your advertising data with your authorisation

Meta (via Marketing API)

Accessing your advertising data with your authorisation

All third-party processors are bound by data processing agreements and are required to protect your data in accordance with applicable laws.


10. Data Storage and Security

  • All data is stored on servers located in the EU/UK or US, hosted by reputable cloud providers

  • Data is encrypted in transit (TLS/SSL) and at rest

  • Access to personal data is restricted to authorised personnel only

  • We conduct regular security reviews of our infrastructure

  • Advertising account credentials (API tokens) are stored encrypted and are never exposed in logs or reports


11. Data Retention

Data Type

Retention Period

Account information

Duration of account + 12 months

Advertising performance data

90 days from last sync (or until account disconnection)

Audit reports

Duration of account + 12 months

Payment records

7 years (legal requirement)

Analytics data

26 months (anonymised)

You can request deletion of your data at any time (see Section 12).


12. Your Rights (GDPR / UK GDPR)

You have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you

  • Rectification: Request correction of inaccurate data

  • Erasure: Request deletion of your data ("right to be forgotten")

  • Restriction: Request we limit how we process your data

  • Portability: Request your data in a machine-readable format

  • Objection: Object to processing based on legitimate interest

  • Withdraw consent: Withdraw consent for marketing communications at any time

To exercise any of these rights, contact us at privacy@digitalgrowthlabs.ai. We will respond within 30 days.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe your data has been mishandled.


13. Revoking Access to Advertising Accounts

You can disconnect your advertising accounts at any time:

  • Google Ads: Remove DGL Audit access via your Google Account permissions at myaccount.google.com/permissions, or disconnect within the DGL Audit platform

  • Meta Ads: Remove DGL Audit access via Meta Business Settings → Integrations → Business Apps, or disconnect within the DGL Audit platform

Upon disconnection, we will delete all stored advertising data from the disconnected account within 30 days.


14. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal data from children.


15. Changes to This Policy

We may update this privacy policy from time to time. We will notify registered users of significant changes via email. The "Last Updated" date at the top of this page indicates when the policy was last revised.


16. Contact Us

For any questions about this privacy policy or how we handle your data:

Email: hello@digitalgrowthlabs.ai Website: digitalgrowthlabs.ai

Company: Digital Growth Labs Location: United Kingdom