隐私政策

最后更新:2026 年 5 月 19 日

1. Overview

30 Sec Ads ("we", "us", or "our") operates the website 30secads.com (the "Service"). This Privacy Policy explains how we collect, use, and protect information when you use our Service. By using the Service, you agree to the collection and use of information in accordance with this policy.

2. 我们收集的信息

我们收集以下类型的信息:

Google 帐户信息 — 您的电子邮件地址,通过 Google OAuth 获取,仅用于识别您的帐户并维持您的会话。
Google Ads 帐户数据 — 当您连接 Google Ads 帐户时,我们访问您的 Google Ads 客户帐户(帐户名称和 ID),以便代表您发布广告系列。除了创建和提交广告系列所需的内容外,我们不存储广告系列效果数据、结算信息或任何其他 Ads 帐户数据。
广告系列简报数据 — 业务描述、网站 URL、目标地理位置、语言以及您在创建广告系列时提供的其他输入。这些数据在您请求 AI 生成广告内容时传输到我们的服务器,并可能存储在服务器端以用于服务改进、质量保证和分析。
使用数据 — 基本服务器日志(IP 地址、浏览器类型、访问的页面),用于安全和服务改进。

3. How We Use Google User Data

Google API Services User Data Policy Compliance

30 Sec Ads' use and transfer to any other app of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, data obtained from Google APIs is used only to:

Authenticate you and maintain your session on our platform.
List your Google Ads customer accounts so you can select where to publish a campaign.
Create and submit Google Ads search campaigns to the account you explicitly select.

We do not use Google user data for advertising purposes, to train machine learning models, to build user profiles, or to share with any third parties beyond what is strictly necessary to provide the Service described above. We do not sell Google user data. We do not allow humans to read your Google user data unless you give us explicit permission or it is necessary for security purposes.

3a. Specific Google User Data Accessed

The following is a complete list of Google user data our application accesses:

Google Account Identity (via openid, userinfo.email, userinfo.profile)

Email address — used as a unique identifier for your account
Display name — shown in the application UI
Profile picture URL — shown in the application UI

Storage: Email stored server-side in encrypted session (Redis). Profile name and picture used only in-session, not persisted.

Google Ads Account Data (via https://www.googleapis.com/auth/adwords)

Google Ads Manager Account (MCC) structure — account IDs and names, used to display the list of accounts you can publish to
Sub-account (client account) IDs, names, and currency codes — used to correctly configure campaign budget in the account's native currency
Campaign creation — we write new Search campaigns, ad groups, keywords, and responsive search ads to the Google Ads account you select

Storage: Account IDs and names are not stored permanently. OAuth access tokens are stored in encrypted server-side sessions and expire after 30 days of inactivity. We do not store campaign performance data, billing information, payment methods, or any historical data from your Google Ads account.

4. OAuth Scopes We Request

We request the following Google OAuth scopes:

openid and userinfo.email — to identify you by your Google email address.
https://www.googleapis.com/auth/adwords — to create campaigns in your Google Ads account. This scope is only requested when you explicitly choose to connect your Google Ads account to publish a campaign.

5. Data Storage and Security

Your Google OAuth tokens are stored securely in an encrypted server-side session (Redis). We do not store OAuth tokens in your browser or in plain text. Campaign brief data (business inputs and AI-generated ad copy) is transmitted to our servers when you initiate AI generation and may be retained in our database for service improvement and analytics purposes. A copy is also maintained in your browser's local storage for the duration of your session.

All data in transit is encrypted using TLS (HTTPS). We take reasonable technical and organizational measures to protect your data against unauthorized access, alteration, or disclosure.

6. Data Retention

We retain your session data (email address and OAuth tokens) for the duration of your active session. Sessions expire after 30 days of inactivity, after which all associated data is deleted. You can request immediate deletion of your account and all associated data at any time by contacting us at privacy@30secads.com.

7. Revoking Access

You can revoke 30 Sec Ads' access to your Google account at any time by visiting myaccount.google.com/permissions and removing "30 Sec Ads" from the list of authorized applications. Revoking access will immediately invalidate our ability to access your Google Ads account.

8. Cookies and Analytics

We use cookies and similar tracking technologies. Cookies fall into two categories:

Strictly necessary cookies — required for the Service to function. These store your session identifier (so you stay logged in) and your cookie consent choice. These are always active and cannot be disabled.
Analytics cookies — used to understand how visitors use the Service (pages visited, actions taken). We use Google Analytics 4 via Google Tag Manager for this purpose. Analytics cookies are only set after you give your consent. If you decline, no analytics data is collected.

We implement Google Consent Mode v2: all analytics and advertising storage is set to denied by default. Storage is only granted when you click "Accept all" in the cookie banner. Your choice is saved in your browser and respected on future visits.

You can change your consent choice at any time by clearing your browser's local storage for this site, which will reset the banner on your next visit. You can also opt out of Google Analytics across all sites by installing the Google Analytics Opt-out Browser Add-on.

We do not use cookies for advertising, retargeting, or profiling purposes.

9. Third-Party Services

We use the following third-party services to operate the platform:

Google OAuth 2.0 — for user authentication.
Google Ads API — for creating and submitting campaigns.
AI content generation providers — your campaign brief (business description, website URL, target geography, language, and ad preferences) is sent to one or more of the following AI providers solely to generate ad copy. We do not include any personally identifiable information (name, email, payment data) in these requests:
- Google Gemini (Google LLC)
- OpenAI (OpenAI, Inc.)
- Anthropic Claude (Anthropic, PBC)
- Mistral AI (Mistral AI SAS)
- Groq (Groq, Inc.)

10. 您的权利

根据您所居住的地方,您可能在数据保护法下拥有权利,包括欧盟 GDPR、英国 GDPR、加州 CCPA 以及其他司法管辖区的类似法律。这些权利通常包括:

访问权 — 请求我们持有的关于您的个人数据副本。
更正权 — 请求更正不准确或不完整的数据。
删除权 („被遗忘权”) — 请求删除您的个人数据和帐户。在经过验证的请求后,我们将删除与您的帐户相关的所有会话数据、OAuth 令牌和存储的广告系列简报记录。
数据可携带权 — 以结构化、常用、机器可读的格式接收您的数据。
反对权 — 反对基于合法利益对您的个人数据进行的任何处理。
撤回同意权 — 随时撤回对分析或任何其他基于同意处理的同意。
提出投诉权 — 如果您认为我们未合法处理您的数据,可向当地数据保护机构提出投诉。

对于 CCPA 下的加州居民,此外:

知情权 我们收集了您的哪些类别的个人信息以及如何使用。
删除权 我们从您处收集的个人信息,受某些法律例外的约束。
选择不出售权 — 我们不出售个人信息,因此默认满足此权利。
非歧视权 — 行使您的隐私权不会导致拒绝服务、不同的定价或降低的服务质量。

如何行使您的权利: 发送邮件至 privacy@30secads.com 使用与您的帐户相关联的电子邮件地址。如果请求来自不同的地址,我们可能会要求额外的信息来验证您的身份。我们在 30 天 内对所有经过验证的请求作出回应。行使这些权利无需付费。

您也可以立即撤销我们对您的 Google 帐户的访问权限,无需联系我们,只需访问 myaccount.google.com/permissions 并从授权应用程序列表中删除 „30 Sec Ads”,或点击 断开 Google Ads 在应用程序内。

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of significant changes by posting the new policy on this page with an updated date. Continued use of the Service after changes are posted constitutes your acceptance of the updated policy.

12. 联系方式

如果您对本隐私政策有任何疑问,请联系我们: privacy@30secads.com

🍪

帮助我们改进 30 Sec Ads

我们使用 Google Analytics 来了解如何使用该工具并使其更好。您的会话始终保留 — 分析是可选的。

隐私政策