Privacy Policy

1. Introduction

The JSR Engine ("we," "our," or "us") operates the website thejsrengine.com and provides Google Ads campaign management and optimization services. This Privacy Policy explains how we collect, use, store, and protect your information when you use our services.

2. Information We Collect

We collect the following types of information:

• Account Information: Email address and password when you create a dashboard account.
• Google Ads Data: When you connect your Google Ads account, we access campaign data, keyword performance metrics, search term reports, bid information, and conversion data through the Google Ads API. This data is used solely to provide optimization recommendations.
• Usage Data: Actions taken within the dashboard such as approving or rejecting recommendations, and activity logs for audit purposes.
• Security Data: IP addresses, browser information, and geolocation data associated with login events. This data is used for security monitoring, fraud prevention, and audit purposes.
• Affiliate Data: If you participate in the Affiliate Program, we collect your name, email address, referral activity (referral link clicks, signups, and conversions), payout history, and milestone progress. Payout processing is handled by Stripe Connect, and the information you provide to Stripe during Connect onboarding (bank account details, identity verification) is governed by Stripe's Privacy Policy.
• Billing Data: If you are a paying customer, subscription and payment information is processed by Stripe. We store your Stripe customer ID and billing status but do not store credit card numbers or bank details directly.

3. How We Use Your Information

We use the information we collect to:

• Provide and operate our Google Ads optimization services
• Generate bid recommendations (for Manual CPC campaigns), keyword suggestions, and negative keyword analysis
• Display performance reports and metrics in your dashboard
• Send email summaries of optimization cycles (when configured)
• Maintain audit logs of all actions taken on your account
• Detect and prevent fraud, including self-referral and abuse of the Affiliate Program, using IP address matching and behavioral analysis
• Process affiliate commissions and milestone bonus payouts via Stripe Connect
• Display affiliate performance on leaderboards (first name and last initial only)

4. Google API Services User Data Policy

The JSR Engine's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

• We only access Google Ads data necessary to provide our optimization services.
• We do not sell your Google Ads data to third parties.
• We do not use your Google Ads data for advertising or marketing purposes unrelated to our services.
• We do not allow humans to read your data except as necessary to provide or improve our services, for security purposes, or to comply with applicable law.

5. Data Storage and Security

Your data is stored on a private, access-controlled server. We use industry-standard security measures including:

• Encrypted connections (HTTPS/TLS) for all data in transit
• Secure, httpOnly cookies for authentication tokens
• Bcrypt password hashing
• Database access restricted to the application server only

6. Data Retention

We retain your Google Ads performance data for the duration of your active account. Expired or rejected optimization recommendations are automatically deleted after 7 days. Applied recommendations and action logs are retained for 30 days for audit purposes.

Security event logs (login attempts, IP addresses, geolocation) are retained for 90 days and then automatically deleted. Affiliate referral records and payout history are retained for the duration of your affiliate account and for a reasonable period after termination for tax and legal compliance purposes.

Inactive affiliate accounts with zero referrals may be automatically purged after 45 days (see Terms of Service, Section 13.8). You may request deletion of your data at any time by contacting us.

7. Third-Party Services

We do not sell, trade, or rent your personal information to third parties. We share data with the following third-party services only as necessary to operate the Service:

• Google Ads API: To read campaign data and apply approved optimizations to your Google Ads account.
• Stripe: To process subscription payments (for customers) and affiliate commission payouts (for affiliates). Stripe receives the minimum information necessary for payment processing. Stripe's handling of your data is governed by Stripe's Privacy Policy.
• Resend: To send transactional emails (cycle reports, billing notifications, health alerts). Only your email address is shared with this service.

No other third-party services receive your data.

8. Your Rights

You have the right to:

• Access the data we hold about your account
• Request correction of inaccurate data
• Request deletion of your account and associated data
• Revoke Google Ads API access at any time through your Google Account settings

9. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Continued use of our services after changes constitutes acceptance of the revised policy.

10. Cookies

The JSR Engine uses the following cookies, which are strictly necessary for the operation of our Service:

We do not use any tracking, analytics, or advertising cookies. Because our cookies are strictly necessary for the functioning of the Service, no cookie consent banner is required under GDPR or ePrivacy regulations.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at: support@thejsrengine.com