Privacy Policy

tadan (“we”, “our”, “us”) provides an AI-powered ad compliance scanner that checks your ad copy and landing pages against the policies of major ad platforms. This Privacy Policy explains what data we collect, how we use it, and the choices you have.

By using tadan, you agree to the practices described below. If you do not agree, please do not use the service.

Account data. When you create an account, we collect your name, email, and a hashed password. We never see or store your plaintext password.

Scan data. When you run a compliance scan, we store the ad copy or landing page URL you submit, the platforms you targeted, the violations we flagged, and the risk score we returned. This powers your scan history.

Usage data. We log basic request metadata (IP address, user agent, timestamps) to operate the service, prevent abuse, and debug issues.

• To run compliance scans and return verdicts to you
• To save and display your scan history (only you can access it)
• To authenticate you and protect your account
• To send essential service emails (sign-in links, security alerts) — we do not send marketing email
• To respond to support requests you initiate

Session cookies. tadan uses better-auth to manage your login session. better-auth sets a single HTTP-only cookie containing a signed session token. We do not set any tracking or advertising cookies.

Local storage.We store one flag in your browser's localStorage to remember whether you have signed in on this device before. This is used only to route the “Get started” button to the correct page. You can clear it at any time from your browser settings.

To run scans, we forward your ad copy to third-party AI model providers (via OpenRouter) and to vector search systems. These providers receive only the text you submit — never your account data, password, or payment info.

We also use a managed Postgres database (with the pgvector extension) to store your scans and the policy document embeddings our scanner compares against.

We do not sell your data. We do not share your scan content with other customers. Aggregated, anonymized usage statistics may be used to improve the product.

We use industry-standard encryption in transit (HTTPS) and at rest (provider-managed disk encryption). Passwords are hashed with bcrypt. Access to production data is restricted to a small number of team members. That said, no system is 100% secure — if you suspect your account has been compromised, contact us immediately.

• Access. You can view all your scans from the History page at any time.
• Deletion. You can delete individual scans, or contact us to delete your entire account and all associated data.
• Export. On request, we will export your scan history as JSON or CSV.
• Correction. You can update your name and email from your account settings.

tadan is not directed to children under 16. We do not knowingly collect data from children. If you believe a child has created an account, contact us and we will delete it.

We may update this policy as the product evolves. We will post the revised version here and update the “Last updated” date below. For material changes, we will notify you by email.

Questions about this policy or your data? Email us at privacy@tadan.app.