Privacy Policy

1) Who we are

AirPilot helps marketing and advertising agencies consolidate marketing data across platforms and build dashboards and reports for their teams and clients.

2) What data we collect

When you connect your Meta or Instagram account, we may collect and process the following categories of information only as needed to provide the Service:

A. Account and authorization data

• Basic information from the Meta login flow (for example, an account ID and display name).
• OAuth access tokens required to access Meta APIs for the permissions you grant.

B. Meta Ads / Business data (as permitted by your granted permissions)

• Ad account identifiers and related metadata (for example, account ID, currency, timezone).
• Campaign/ad set/ad identifiers and performance metrics you request in reports (for example, impressions, clicks, spend, conversions) and breakdowns you configure.
• Business/asset identifiers needed to list and select the accounts/assets you choose to connect (for example, Business Manager ID, ad accounts list).

C. Facebook Page insights (aggregated)

If you grant Page-related permissions, we may access:

• A list of Pages you manage and basic Page metadata (for example, Page ID and name) needed to allow you to select which Page(s) to connect.
• Aggregated Page insights and performance metrics (for example, reach, views, interactions/engagement totals) as available via Meta APIs.

D. Instagram insights (aggregated)

• Instagram professional account identifiers and basic metadata you authorize.
• Aggregated insights and analytics for Instagram content and account performance (for example, reach, impressions, engagement, follower metrics) where available via Meta APIs.

E. Service usage and diagnostics

• Logs and diagnostic data (for example, sync timestamps, API response codes, error logs) to maintain reliability and security.
• Basic device and browser information for security and troubleshooting (for example, IP address, user agent).

We do not sell your data.

3) How we use data

We use the information described above to:

• Provide the Service (connect accounts, fetch insights and reporting data from Meta/Instagram, and generate dashboards and reports).
• Maintain and improve reliability (monitor data syncs, debug failures, and improve performance).
• Secure the Service (prevent unauthorized access, detect abuse, and investigate suspicious activity).
• Provide support (respond to your requests and help resolve connection or reporting issues).
• Meet legal obligations (compliance, security, and recordkeeping where required by law).

We process data for these purposes based on your consent, performance of a contract (providing the Service), and legitimate interests (security and service improvement).

4) How we share data

We share data only in the following situations:

A. With service providers (processors)

We may share information with vendors that help us operate the Service (for example, cloud hosting, databases, monitoring/logging). These vendors may process data only to provide services to AirPilot and must protect it.

B. With your organization

If you use AirPilot through an agency or organization account, authorized users in your organization may access the connected reporting outputs inside AirPilot.

C. Legal and safety

We may disclose information if required to comply with law, regulation, legal process, or enforceable governmental request, or to protect the rights, property, and safety of AirPilot, our users, or others.

We do not share Meta/Instagram/Page data with third parties for advertising or marketing purposes.

5) Access control

AirPilot dashboards and reports are available only to authenticated users. We do not provide public dashboard links for Meta/Instagram reporting data.

6) Data retention

We retain Meta/Instagram/Page data and tokens only as long as needed to provide the Service and for legitimate business purposes such as security, dispute resolution, and compliance.

If you request deletion (see Section 8), we will delete or de-identify the relevant stored data associated with your AirPilot account, subject to limited retention required by law or for security/fraud prevention.

7) Security

We use reasonable administrative, technical, and organizational safeguards designed to protect information from unauthorized access, loss, misuse, alteration, or disclosure. No method of transmission or storage is 100% secure; however, we work to maintain appropriate security based on the sensitivity of data processed.

8) Data Deletion Instructions (Meta requirement)

AirPilot currently provides deletion requests via email support.

To request deletion of data associated with the AirPilot Meta App, email:

Please include:

• Your AirPilot account email (and workspace name, if applicable),
• The Meta ad account ID(s), Facebook Page ID(s), and/or Instagram account ID(s) connected (if known),
• Whether you want deletion of all Meta/Instagram/Page data associated with your AirPilot account.

What we delete

Upon verified request, we delete or de-identify:

• Stored OAuth tokens,
• Stored Meta/Instagram/Page identifiers linked to your AirPilot account,
• Stored/cached aggregated reporting data used for dashboards and reports associated with the connected assets.

Timeline

We aim to process verified deletion requests within a reasonable period. We may retain limited records where required by law or for security/fraud prevention.

9) Children's privacy

The Service is not directed to children under 13 (or the minimum age required in your jurisdiction), and we do not knowingly collect personal information from children.

10) Contact us

For privacy questions or requests, contact:

11) Changes to this policy

We may update this Privacy Policy from time to time. We will update the "Effective date" above and, where appropriate, provide additional notice within the Service.