Adinsightia

Last Updated: April 14, 2026
Effective Date: April 14, 2026

1. Introduction

This Privacy Policy describes how Estait Group LLC (“Estait,” “we,” “us,” or “our”), operating the AdInsightia platform (the “Service”) accessible at adinsightia.com, collects, uses, discloses, and protects information when you or your authorized users (“you,” “User”) interact with the Service.

AdInsightia is a multi-agent digital marketing automation platform. Our software agents perform tasks on your behalf across connected third-party services that you explicitly authorize, including Google Workspace, Meta (Facebook and Instagram), QuickBooks Online, HubSpot, Houzz Pro, and Stripe.

By using the Service, you agree to the collection and use of information in accordance with this Policy. If you do not agree, please do not use the Service.

2. Our Data Minimization Commitment

AdInsightia is designed around a core principle: we do not persistently store the content of data held in your connected third-party accounts. Our agents read from and write to your own storage systems — your Gmail mailbox, your Google Drive, your HubSpot CRM, your QuickBooks ledger — in real time, as needed to perform the tasks you direct them to perform. Once an agent completes a task, the content it processed is discarded from our memory.

We store only the minimum information required to operate the Service:

  • OAuth and JWT tokens — so our agents can authenticate to your connected accounts on your behalf
  • Account identifiers — usernames, email addresses, and organization IDs used for authentication, permissioning, and role-based access control
  • Operational logs — metadata about agent activity, workflow execution, and errors, used for security monitoring, debugging, and service improvement. Logs may incidentally contain references to identifiers or actions but are not intended as a content store.
  • Account and billing information — information you provide directly when registering, subscribing, or communicating with us

3. Information We Collect

3.1 Information You Provide Directly

  • Name, email address, company name, and contact information
  • Account credentials for the AdInsightia platform
  • Payment information (processed by Stripe; see Section 5.6)
  • Support communications and feedback

3.2 Information Collected Automatically

  • Log data (IP address, browser type, device identifiers, timestamps, pages accessed)
  • Usage analytics related to how you interact with the Service
  • Cookies and similar technologies (see our Cookie notice below)

3.3 Information From Connected Third-Party Services

When you connect a third-party service via OAuth, our agents access data in that service on your behalf. Specific details for each integration are in Section 5.

4. How We Use Information

We use information to:

  • Authenticate you and your connected accounts
  • Execute the automated tasks and workflows you configure
  • Enforce permissions and access control across your organization
  • Monitor the security, reliability, and performance of the Service
  • Troubleshoot issues and improve the Service
  • Communicate with you about your account, security, and product updates
  • Comply with legal obligations

We do not sell your personal information or the data of your connected accounts. We do not use your data, or data from your connected third-party accounts, to train foundation models or any other machine learning models.

5. Third-Party Service Integrations

This section describes how AdInsightia interacts with each supported integration. You control which integrations are active through the AdInsightia connection portal and can disconnect any integration at any time.

5.1 Google Services

Scopes requested: AdInsightia may request access to Google scopes including Gmail, Google Calendar, Google Drive, Google Chat, and related Workspace APIs, depending on the features you enable. The exact scopes are presented to you on Google’s OAuth consent screen before you authorize access. You must explicitly grant each scope.

How agents use Google data: Our agents read messages, calendar events, files, and chat content from your authorized Google account solely to perform the tasks you direct — for example, summarizing email threads, scheduling meetings, drafting replies, or retrieving documents referenced in a workflow. Our agents may also write to your Google account (sending email, creating calendar events, saving files) when your workflow instructs them to.

Data handling: Google user data processed by AdInsightia is handled in transient fashion. Content is loaded into memory during agent execution, processed, and then discarded. We do not maintain a persistent copy of your Gmail, Drive, Calendar, or Chat content on our servers.

Limited Use compliance: AdInsightia’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We use Google user data only to provide or improve user-facing features that are prominent in the AdInsightia application
  • We do not transfer Google user data to others except as necessary to provide these features, to comply with applicable law, or as part of a merger, acquisition, or sale of assets with user notice
  • We do not use Google user data for serving advertisements
  • We do not allow humans to read Google user data unless we have your affirmative consent, it is necessary for security purposes (such as investigating abuse), to comply with applicable law, or for internal operations where the data has been aggregated and de-identified

AI processing of Google data: When your workflow requires it, Google user data may be processed by foundation models hosted on AWS Bedrock (see Section 6). This processing occurs solely to generate the output you have requested. No Google user data is used to train any foundation model.

5.2 Meta Platforms (Facebook and Instagram)

Permissions requested: AdInsightia uses the Meta Graph API and Marketing API with permissions you authorize, which may include access to Facebook Pages you manage, Instagram Business accounts, advertising accounts, Messenger conversations on Pages you own, and related assets.

How agents use Meta data: Agents may read Page posts and insights, manage advertising campaigns, draft and publish content, and respond to messages — in each case, only for assets you manage and only to execute workflows you configure.

Data handling: Content retrieved from Meta APIs is processed transiently and discarded after the task completes. We store only tokens, identifiers, and operational logs.

Compliance: We comply with Meta’s Platform Terms and Developer Policies. We do not use Meta data to train AI models and do not share Meta data with third parties except as described in this Policy.

5.3 QuickBooks Online (Intuit)

Scopes requested: AdInsightia uses Intuit OAuth 2.0 with the com.intuit.quickbooks.accounting scope (and, where applicable, com.intuit.quickbooks.payment) to access your QuickBooks Online company file.

How agents use QuickBooks data: Agents read invoices, customers, vendors, transactions, and chart of accounts data to support accounting workflows, reporting, and reconciliation tasks you configure. Agents may create and update transactions, customers, and invoices when your workflow directs.

Data handling: QuickBooks data is processed transiently. We do not store copies of your general ledger, transactions, or customer records on AdInsightia servers beyond operational logs.

Compliance: We comply with Intuit’s Developer Terms and Acceptable Use Policy.

5.4 HubSpot

Scopes requested: AdInsightia uses HubSpot OAuth with CRM scopes you authorize, which may include contacts, companies, deals, tickets, engagements, and marketing assets.

How agents use HubSpot data: Agents read CRM records to generate outreach, enrich contacts, log activities, and orchestrate marketing workflows. Agents may create and update records when your workflow directs.

Data handling: HubSpot data is processed transiently. Agent memory for longer-running workflows stores only the references (record IDs, object types) needed to resume work, not the record contents.

5.5 Houzz Pro

Access requested: Where applicable to your account, AdInsightia integrates with Houzz Pro to read leads, project information, and communications you manage, and to perform workflows you configure.

Data handling: Houzz data is processed transiently and not persistently stored by AdInsightia beyond operational logs.

5.6 Stripe

We use Stripe to process payments for the Service and, for applicable clients, to enable Stripe Connect payouts. When you provide payment information, it is transmitted directly to Stripe; AdInsightia does not store full payment card numbers or bank account numbers on our servers. Stripe’s handling of your payment information is governed by the Stripe Privacy Policy.

6. Artificial Intelligence and Model Processing

AdInsightia uses large language models (“foundation models”) hosted on AWS Bedrock to power agent reasoning and content generation. Foundation models available on Bedrock include, among others, models from Anthropic, Meta, Mistral, Cohere, AI21 Labs, and Amazon. The specific model used for a given task depends on your configuration and the workflow in question.

All foundation model inference occurs within the AWS Bedrock service, under AWS’s data processing terms. Per AWS’s published terms for Bedrock:

  • No model training on your data. Data you submit for inference is not used to train, retrain, or fine-tune any foundation model, including models owned by the model providers.
  • No sharing with model providers. AWS does not share your inputs or outputs with the third-party model providers whose models are hosted on Bedrock.
  • Data in transit and at rest is encrypted within AWS infrastructure.

Your data is processed by Bedrock only in real time, only to generate the output your workflow requires, and is not retained by AdInsightia after the inference completes (other than operational logs as described in Section 2).

7. Multi-Tenant Data Isolation

AdInsightia is a multi-tenant platform. We maintain strict logical isolation between tenant accounts. Credentials, tokens, and identifiers belonging to one client are not accessible to another client’s agents or users. We enforce this through row-level filters and per-tenant scopes in our data stores, and through identity-based access controls in our agent infrastructure.

8. Data Storage and Security

  • Infrastructure: The Service runs on Amazon Web Services (AWS) in the United States.
  • Encryption: Data is encrypted in transit (TLS 1.2 or higher) and at rest (AWS-managed encryption).
  • Access controls: Access to production systems is restricted to authorized personnel using multi-factor authentication. Access is logged and reviewed.
  • Tokens: OAuth and JWT tokens are stored in encrypted form and scoped to the minimum permissions required.
  • Logs: Operational logs are retained for a limited period sufficient for security monitoring, debugging, and compliance, and are then deleted or aggregated.

No security system is perfectly secure. While we work to protect your information, we cannot guarantee absolute security.

9. Data Sharing and Sub-Processors

We share information only as follows:

  • With service providers (sub-processors) who help us operate the Service. Our primary sub-processors are:
  • Amazon Web Services (AWS) — cloud infrastructure, including AWS Bedrock for AI inference
  • Stripe — payment processing
  • Additional sub-processors used for email delivery, analytics, error monitoring, and customer support, subject to confidentiality and data protection obligations
  • With your connected third-party services — when you authorize an integration, we exchange data with that service as needed to perform your workflow
  • For legal reasons — to comply with applicable law, legal process, or government requests; to protect the rights, property, or safety of Estait, our users, or others
  • In a business transaction — as part of a merger, acquisition, financing, or sale of assets, with notice to you

We do not sell personal information. We do not share your data with advertisers for targeted advertising.

10. Your Rights and Choices

You may:

  • Access, correct, or delete information we hold about you by contacting us at the email address in Section 15
  • Disconnect any third-party integration at any time through the AdInsightia portal, which revokes our access tokens. You should also revoke AdInsightia’s access in the third party’s own security settings (e.g., Google’s Security > Third-party access, Meta’s Business Integrations page, Intuit’s connected apps page).
  • Export your data in a portable format upon request
  • Close your account, after which we will delete or anonymize your information subject to legal retention requirements

If you are located in the European Economic Area, the United Kingdom, or Switzerland, you have rights under the GDPR including rights to access, rectification, erasure, restriction, portability, and objection. You also have the right to lodge a complaint with a supervisory authority.

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) including rights to know, delete, correct, and opt out of the sale or sharing of personal information. We do not sell or share personal information as defined by the CCPA.

11. Children’s Privacy

The Service is not directed to children under 16, and we do not knowingly collect personal information from children. If we learn we have collected information from a child under 16, we will delete it.

12. International Data Transfers

The Service is operated from the United States. If you access the Service from outside the United States, your information will be transferred to, stored, and processed in the United States. By using the Service, you consent to this transfer.

13. Cookies and Similar Technologies

We use cookies and similar technologies for authentication, preferences, and analytics. You can control cookies through your browser settings. Blocking essential cookies may affect your ability to use the Service.

14. Changes to This Policy

We may update this Policy from time to time. We will post the updated version at adinsightia.com/privacy with a new “Last Updated” date. For material changes, we will provide additional notice (such as email or an in-product notification).

15. Contact Us

For privacy questions, requests, or concerns, contact:

Estait Group LLC
Attn: Privacy
Huntington Bay, New York, USA
Email: privacy@estaitgroup.com

16. Governing Law

This Policy is governed by the laws of the State of New York, without regard to conflict of law principles. Any disputes arising out of or relating to this Policy or the Service will be resolved in the state or federal courts located in Suffolk County, New York.