← Back to Ads Peak

Privacy Policy

Last updated: June 29, 2026

This Privacy Policy explains how Ads Peak("Ads Peak", "the Service", "we", "us", or "our") collects, uses, shares, retains, and deletes information. Ads Peak is a product of ASAP Hub Pte. Ltd., a company incorporated in Singapore (UEN: 202215416M), with its registered office at 10 Anson Road, #10-11, International Plaza, Singapore 079903 ("ASAP Hub"). ASAP Hub is the data controller for the personal data described here.

By creating an account, connecting an advertising account, or otherwise using the Service, you acknowledge that you have read and understood this Policy. If you do not agree, please do not use the Service.

1. Who this Policy applies to

Ads Peak is a business-to-business tool used by marketing agencies, brands, and their authorised team members ("you", "your") to analyse and optimise advertising performance for ad accounts you own or are authorised to manage. The Service is not directed at consumers or to children, and we do not knowingly collect personal data from anyone under 18. If you believe a minor has provided us data, contact us and we will delete it.

2. Information we collect

  • Account and identity data: your name, email address, password (stored only as a salted hash via our authentication provider), and the agency/workspace you belong to.
  • Meta Platform Data: when you connect a Meta (Facebook/Instagram) ad account through Meta's official OAuth flow, we access, via the Meta Marketing API and using only the permissions you grant, your ad account, campaign, ad set, ad, and creative metadata; performance metrics (spend, impressions, clicks, reach, frequency, leads, conversions, conversion values, video view metrics, and auction/delivery rankings); connected Page and product-catalog information needed to render and transcribe creatives; and Meta access tokens, which we store encrypted to maintain your connection.
  • Creative content: ad copy and, where you use the transcription feature, the audio/video of your ads, which we process to extract opening "hooks".
  • Payment data: if you subscribe to a paid plan, payments are processed by Stripe. We do not collect or store full card numbers; we receive limited billing metadata (e.g., plan, status, last four digits) from Stripe.
  • Usage and technical data: log data, device/browser information, IP address, and product interactions, used to operate, secure, and improve the Service.
  • Communications: messages you send us (e.g., support requests).

3. How we use information

We use the information above to:

  • provide, operate, secure, and maintain the Service and your account;
  • generate performance dashboards, AI recommendations, benchmarks, hooks, and reports;
  • where you explicitly choose to, apply changes (e.g., pause, budget edits, new campaigns) back to a connected ad account;
  • process payments, prevent fraud and abuse, and provide customer support;
  • comply with legal obligations and enforce our Terms.

4. How we use Meta Platform Data (limited use)

Our use of data obtained from Meta complies with the Meta Platform Terms and Developer Policies. Specifically:

  • Meta Platform Data is used solely to provide and improve the features of Ads Peak for the account that connected it — analytics, recommendations, reporting, and approved write-backs to that same ad account.
  • We do not sell, rent, or license Meta Platform Data, and we do not use it for our own advertising or to build advertising profiles.
  • We do not share an individual account's identifiable Meta Platform Data with other customers or with any third party, except sub-processors acting on our behalf (Section 6) or where required by law.
  • We may compute aggregated, de-identified benchmark statistics across accounts (for example, anonymised hook libraries and category benchmarks). These never identify a specific advertiser, account, or individual, and cannot be reverse-engineered to do so.
  • We retain Meta Platform Data only as long as needed to provide the Service, and delete it on request or on disconnection/account deletion (Section 8).

5. Legal bases for processing (EEA/UK)

Where the GDPR applies, we process personal data on the bases of: performance of a contract (to provide the Service you request); our legitimate interests (to secure, operate, and improve the Service) balanced against your rights; your consent (where required, e.g., for certain integrations); and compliance with legal obligations.

6. Service providers and sub-processors

We share data only with vetted providers that process it on our behalf under appropriate data-protection terms:

  • Supabase — database, authentication, and hosting of your data
  • Vercel — application hosting and delivery
  • Anthropic — AI analysis (does not train on your data)
  • AssemblyAI — video/audio transcription (does not train on your data)
  • Stripe — subscription billing and payments
  • Resend — transactional and digest emails
  • Meta Platforms — the source of the advertising data you connect

We do not sell personal data. We may disclose data if required by law, to enforce our Terms, or to protect the rights, safety, and security of our users, the public, or ASAP Hub. If ASAP Hub is involved in a merger or acquisition, data may transfer as part of that transaction, subject to this Policy.

7. International transfers

ASAP Hub operates from Singapore and uses providers that may process data in other countries. Where personal data is transferred internationally, we rely on appropriate safeguards (such as Standard Contractual Clauses or equivalent mechanisms) as required by applicable law.

8. Data retention, deletion, and revoking access

We retain personal data and Meta Platform Data for as long as your account is active or as needed to provide the Service, then delete or de-identify it within a reasonable period, unless a longer retention is required by law.

You can remove your data at any time:

  • Disconnect a Meta ad account in Ads Peak (Settings / Meta accounts). This revokes our access token and stops further syncing; the previously synced data for that account is queued for deletion.
  • Delete a client or your workspace/account in Ads Peak, which removes the associated synced data from our active systems.
  • Revoke access from Meta's side at any time via your Facebook/Meta Business settings → Business Integrations → remove Ads Peak.
  • Request deletion by email. Send a request to legal@asaphub.io or patrick@asaphub.io with the account/email to delete. We will verify and action the request without undue delay, and confirm once complete. Backups are purged on our routine backup-rotation cycle.

9. Security

We protect data with access controls and database row-level security so each workspace can reach only its own data, encryption of access tokens at rest, and encryption in transit (TLS). No system is perfectly secure, but we take commercially reasonable technical and organisational measures to protect your information and review them regularly.

10. Your rights

Depending on your location (including under Singapore's PDPA, the EU/UK GDPR, and similar laws), you may have the right to access, correct, delete, port, or restrict processing of your personal data, to object to certain processing, and to withdraw consent. To exercise any right, contact us using the details below; we may need to verify your identity first. You also have the right to lodge a complaint with your local data-protection authority (in Singapore, the Personal Data Protection Commission).

11. Cookies

We use strictly necessary cookies to authenticate sessions and keep the Service secure. We do not use cookies to serve our own advertising. Where required, any non-essential cookies are used only with consent.

12. Changes to this Policy

We may update this Policy from time to time. Material changes will be reflected by the "Last updated" date above and, where appropriate, communicated to you. Continued use of the Service after an update constitutes acceptance of the revised Policy.

13. Contact us

ASAP Hub Pte. Ltd. (operator of Ads Peak) — UEN 202215416M
10 Anson Road, #10-11, International Plaza, Singapore 079903
Privacy and data requests: legal@asaphub.io or patrick@asaphub.io
General: hi@asaphub.io