Security

Last updated: 19 May 2026

AdsIQ connects to the accounts you use to run your business — ad platforms, ecommerce platforms, and analytics tools. The data you trust us with is sensitive, and we treat it that way. This page describes how we protect it.

Infrastructure

Cloud provider
Google Cloud Platform — US regions. Cloud Run for application servers, Cloud SQL for transactional data, managed analytics for reporting workloads.
Network isolation
Database access restricted to authenticated service accounts inside a private VPC. No direct database access from the public internet.
Secret management
Access tokens, API keys, and signing secrets stored in Google Secret Manager with versioning, IAM-controlled access, and audit logging.
Backups
Daily automated backups with point-in-time recovery enabled.

Encryption

Access controls

Vulnerability management

Data retention and deletion

Amazon Selling Partner data

AdsIQ is a registered Amazon Selling Partner API (SP-API) public developer application operated by Excite Foundry Ltd, and we handle all connected Amazon Selling Partner data in accordance with Amazon's Data Protection Policy (DPP) for developers. The Amazon data we ingest — limited to the Brand Analytics, Inventory and Order Tracking, Selling Partner Insights, and Finance and Accounting roles — is used solely for the stated purpose of the application: advertising performance attribution, true-ROAS calculation, and search-query insights for the seller who authorised the connection. AdsIQ does not request PII-restricted roles and does not store buyer-identifying information (buyer name, address, email, or phone). All Amazon data is encrypted in transit using TLS 1.2 or higher, and encrypted at rest in Cloud SQL (PostgreSQL) using Google-managed KMS keys. Aggregated reporting data is retained for a rolling 90-day window to power historical comparisons; when a seller revokes authorisation, all associated raw and aggregate records are purged within 7 days.

AdsIQ's controls are designed to meet the requirements of the Amazon Selling Partner API Data Protection Policy.

Asset inventory & sub-processor governance

Vulnerability disclosure

If you believe you've discovered a security vulnerability in AdsIQ, please email security@ads-iq.com with a description, steps to reproduce, and any proof-of-concept. We will acknowledge receipt within two business days and provide a status update within seven business days. We ask that you give us a reasonable opportunity to remediate before any public disclosure.

Incident response

We maintain a documented Security Incident Response Plan reviewed at least every six (6) months. In the event of a confirmed or reasonably suspected security incident affecting customer data or Amazon Information, we will:

An Incident Management Point of Contact (IMPOC) is designated and maintained per DPP §1.6.

Contact

Security questions: security@ads-iq.com
Privacy questions: privacy@ads-iq.com
General contact: hello@ads-iq.com

AdsIQ is operated by Excite Foundry Ltd, a company registered in England and Wales. Registered office: 85 Great Portland Street, London, W1W 7LT, United Kingdom.