Last updated: July 2026
chiliad (“we”, “us”, “our”) operates the chiliad platform at chiliad.io and app.chiliad.io. We provide a SaaS platform for managing and automating Google Ads scripts.
For GDPR purposes, chiliad is the data controller for all personal data described in this policy. For any privacy inquiries, data subject requests, or complaints, contact us at hello@chiliad.io.
We collect the following types of information:
We process your personal data under the following legal bases:
Your data is stored securely using Supabase, hosted on AWS infrastructure. We use industry-standard encryption for data in transit (TLS) and at rest. Google Ads credentials are stored as OAuth refresh tokens — we never store your Google password.
chiliad connects to your Google Ads accounts via OAuth 2.0. This section describes how we handle data obtained through the Google Ads API.
When you connect your Google Ads account, we request the following API scopes:
Specifically, we access: Google Ads account IDs and names, campaign and ad group data, performance metrics (impressions, clicks, cost, conversions), and script execution logs generated by scripts you deploy through our platform.
Google Ads data is used solely to provide and improve the chiliad platform — including displaying your account performance, executing scripts you configure, and generating reports you request. We do not use Google Ads data for any other purpose.
These restrictions describe chiliad's own handling of Google Ads data. They do not apply to a third-party AI assistant you choose to connect yourself: if you enable the AI assistant connector (see Section 7) and direct the assistant to retrieve Google Ads data, that data is transmitted to and processed by the provider you connected, under its own terms and privacy policy — which may include practices, such as model training, that differ from ours. Review those terms before connecting.
You can revoke chiliad's access to your Google Ads account at any time by visiting your Google Account permissions page and removing chiliad, or by disconnecting your account within the chiliad platform settings. You may also contact us at hello@chiliad.io to request revocation.
chiliad's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
chiliad offers an optional connector (a Model Context Protocol server) that lets you link a third-party AI assistant — such as Anthropic's Claude — to your chiliad workspace. This integration is off by default and takes effect only if you deliberately connect an assistant and sign in through OAuth. The platform works fully without it.
When connected, and only when you ask it to, the assistant can access data in your workspace on your behalf — including your script code and metadata, execution logs and error messages, connected Google Ads account identifiers, and the results of read-only queries you ask it to run against your Google Ads accounts. That data, together with the prompts you write, is transmitted to the AI provider you connected so it can respond to your requests. The connector cannot access billing details or team-management functions.
These transfers happen at your direction, to a provider you choose and authenticate with. That provider acts as an independent controller of the data you send it and processes it under its own terms of service and privacy policy, not this one. Their practices — including any data retention or use of your inputs to train AI models — are outside chiliad's control. If you connect Anthropic's Claude, review the Anthropic Privacy Policy before use. Because the assistant is a client you control rather than a processor acting on chiliad's behalf, we do not list it among our subprocessors in Section 8.
You can disconnect an AI assistant at any time from within that assistant's connector settings, which revokes its access to your chiliad workspace, or contact us at hello@chiliad.io for help. Disconnecting stops future access but does not affect data already processed by the provider — direct any such requests to the provider.
We use the following third-party services to operate the platform:
These providers process data on our behalf under appropriate data protection agreements. We do not share your Google Ads data with any of these providers except as necessary to deliver the service (e.g., storing account metadata in our database).
We use Google Analytics 4 to understand how visitors use our website. This service collects anonymized usage data such as pages visited, time on site, and referral source.
We implement Google Consent Mode v2. By default, all analytics and advertising cookies are denied until you explicitly accept them via the cookie consent banner. If you decline or dismiss the banner, no tracking cookies are set and no usage data is collected by Google Analytics.
You can change your cookie preference at any time by clearing your browser's local storage for this site, which will cause the consent banner to reappear on your next visit.
We also use the following essential cookies that do not require consent:
We retain your data for as long as your account is active. Script execution analytics are retained based on your subscription tier (14 days for Free, 180 days for Solo, 365 days for Studio, Agency, and Scale). Older analytics data is automatically purged.
You can delete your account at any time from the Settings page. When your account is deleted:
You may also request deletion by contacting us at hello@chiliad.io.
Under the GDPR and other applicable data protection laws, you have the following rights regarding your personal data:
To exercise any of these rights, email us at hello@chiliad.io. We will respond within 30 days as required by the GDPR.
If you believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection supervisory authority.
Our infrastructure providers (Supabase, Vercel, Stripe, Resend) may process data in the United States and other countries outside the EEA. We ensure adequate protection through the providers' Standard Contractual Clauses (SCCs) and equivalent safeguards as required by GDPR Article 46.
We may update this policy from time to time. We will notify you of significant changes by email or by posting a notice on our website. Continued use of the platform after changes constitutes acceptance of the updated policy.
For general inquiries: hello@chiliad.io
For privacy and data protection requests: hello@chiliad.io