Last updated: 25 May 2026
This Privacy Policy explains how Publishinghub LLC ("Publisher Ads", "we", "us", "our") collects, uses, stores and protects your personal data when you use publisherads.ai (the "Service"). It also describes your rights under the UK General Data Protection Regulation (UK GDPR), the EU GDPR, and the Privacy and Electronic Communications Regulations (PECR).
The data controller responsible for your personal data is Publishinghub LLC, a company registered in the United States. For privacy or data-protection enquiries:
Because we offer services to individuals in the United Kingdom and the European Economic Area, UK and EU data protection law applies to our processing of your personal data even though we are established in the United States.
Depending on how you use the Service, we may collect:
| Purpose | Lawful basis (UK/EU GDPR) |
|---|---|
| Creating and managing your account; authenticating you | Performance of a contract |
| Connecting to Amazon Advertising API and managing campaigns on your behalf | Performance of a contract |
| Generating performance narratives and keyword suggestions using AI | Performance of a contract |
| Sending alert emails (e.g. disconnected auth, snapshot errors) | Performance of a contract / legitimate interests |
| Security, fraud prevention, debugging and error monitoring | Legitimate interests |
Where you use the Service to manage Amazon Ads accounts belonging to your own clients (for example, as an advertising agency or managed-services provider), you are the controller of your clients' data and we act as your data processor. A separate data processing agreement (DPA) is available on request — please email support@breakthroughpub.com.
We keep your account and campaign data for as long as your account is active. After account closure we retain limited records where required for legal, accounting or security purposes (typically up to 6 years for billing records), then delete or anonymise the rest. Technical and error logs are kept for a shorter period (generally up to 90 days). You can ask us to delete your data sooner — see Section 9.
We use a single secure, HTTP-only session cookie to keep you logged in. This is strictly necessary for the Service to function and is exempt from consent under PECR. We do not use advertising or analytics tracking cookies.
The Service uses Google Gemini AI to generate performance narratives and keyword suggestions from your campaign data. When this runs, relevant ad data (including account names, book ASINs, titles, spend figures and search-term data) is sent to Google's Gemini API. We do not sell this data, and we ask Google not to use it to train their models where that option is available.
We share personal data with trusted service providers who process it on our behalf, only as needed to deliver the Service:
| Provider | Purpose | Location |
|---|---|---|
| Hetzner | Hosting & database (where your data is stored) | Germany (EU) |
| Amazon Advertising API | Reading and managing your Amazon Ads campaigns | USA |
| Google / Gemini AI | Generates performance narratives from ad data (account names, ASINs, spend) | USA |
| Keepa | Book metadata (BSR, price, category) used to build campaign plans | Germany (EU) |
| Resend | Transactional email alerts | USA |
We require these providers to protect your data and to process it only on our instructions. We do not sell your personal data to anyone.
Your core account data is stored within the European Union (Germany, via Hetzner). Some providers listed above are in the United States, so using the Service involves transferring some personal data internationally. Where we make such transfers, we rely on appropriate safeguards such as Standard Contractual Clauses and the EU-US / UK-US Data Privacy Framework where available.
Under UK and EU data protection law you have the right to:
To exercise any of these rights, email support@breakthroughpub.com. We will respond within one month. You will not have to pay a fee unless your request is clearly unfounded or excessive.
If you are in the UK and are unhappy with how we handle your data, you can complain to the Information Commissioner's Office (ICO) at ico.org.uk. If you are in the EEA, you may complain to your local data protection authority. We would, however, appreciate the chance to address your concerns first.
We protect your data with encrypted connections (HTTPS/TLS), Argon2-hashed passwords, AES-256 encrypted OAuth tokens, server-side access controls, a firewalled VPS, and daily database backups. No system is completely secure, but we work to protect your information and to notify you and the relevant authority if a breach affecting your rights occurs.
The Service is intended for adults and is not directed at children under 16. We do not knowingly collect data from children.
We may update this policy from time to time. The "last updated" date above shows the latest version. Material changes will be notified via the Service or by email.
Questions about this policy or your data? Email support@breakthroughpub.com.