Privacy Policy
Last updated: May 13, 2026
This Privacy Policy describes how AICEBERG LABS INC. a Delaware corporation (“AdFactory”, “we”, “us”, or “our”), collects, uses, discloses, and otherwise processes information in connection with the AdFactory platform, websites, applications, APIs, agents, and related services (collectively, the “Services”). It also describes the rights and choices available to individuals with respect to their information. This Privacy Policy applies to information that we collect on or through the Services, our marketing websites, and our communications with you. It does not apply to information we process on behalf of our business customers as a service provider or processor; that information is governed by the applicable customer agreement and the customer’s own privacy notices. By using the Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree, please do not use the Services.
1. INFORMATION WE COLLECT
1.1 Information You Provide a. Account information, such as name, email address, business name, role, password (in hashed form), and similar registration details. b. Billing information, such as billing address, tax identifiers, and payment-card data (collected and processed by our third-party payment processors). c. Content you submit to the Services, including briefs, prompts, brand assets, creative assets, copy, audience configurations, and other Customer Content. d. Communications, such as messages you send to our support team, sales inquiries, feedback, survey responses, and recruiting-related materials. e. Marketing preferences, including subscription choices and event registrations. 1.2 Information Collected Automatically a. Device and browser data, including IP address, device identifiers, operating system, browser type and language, screen resolution, and time-zone settings. b. Usage data, including pages and features viewed, actions taken, click paths, session duration, referring/exit pages, error logs, and performance metrics. c. Cookies, pixels, web beacons, software development kits (SDKs), and similar tracking technologies (see Section 3). d. Approximate location, derived from IP address. e. Advertising identifiers, where you have not enabled limit-ad-tracking on your device. 1.3 Information from Third Parties a. Authentication and identity providers (e.g., Google, Microsoft, single-sign-on (“SSO”) providers) when you choose to sign in using a third-party account. b. Advertising platforms and analytics vendors that you connect to the Services (e.g., Meta, Google, TikTok, LinkedIn, X/Twitter, Snap), which may share campaign, performance, and audience data. c. Payment processors, which share transaction-related data. d. Business contact data providers, marketing partners, and publicly available sources used for outreach and account enrichment. 1.4 Sensitive Information We do not request, and we ask that you do not submit through the Services, government-issued identifiers, financial-account numbers (other than as required for billing), precise geolocation, or other sensitive categories of personal information except where strictly necessary for the Services.
2. HOW WE USE INFORMATION
We use the information described above for the following purposes: a. Provide, operate, maintain, secure, and support the Services, including authentication, billing, hosting, model serving, content moderation, and customer support. b. Develop, improve, test, and benchmark the Services, including by analyzing usage patterns and aggregated performance metrics. c. Personalize and customize the Services, including default settings, recommendations, and in-product content. d. Detect, prevent, investigate, and respond to fraud, abuse, security incidents, and violations of our Terms of Use or applicable policies. e. Communicate with you about the Services, including service announcements, technical notices, updates, security alerts, billing messages, and support responses. f. Market and promote the Services, including by sending newsletters, event invitations, and other promotional communications (subject to your preferences and applicable law). g. Conduct research and analytics, including usage, performance, and product analytics, in aggregated or de-identified form h. Comply with applicable law, regulation, legal process, and lawful government requests, and enforce our terms, policies, and rights. i. Carry out corporate transactions, including evaluating and completing financings, mergers, acquisitions, reorganizations, or sales of assets. We do not use Customer Content to train foundation models for the benefit of any party other than you, except as may be expressly authorized by you or required by law.
3. COOKIES AND SIMILAR TECHNOLOGIES
We and our service providers use cookies and similar tracking technologies (collectively, “Cookies”) to operate the Services, remember preferences, analyze usage, and support marketing. The Cookies we use fall into the following categories: a. Strictly Necessary: required to deliver core functionality, such as authentication, security, and load balancing. b. Functional: remember your preferences and settings, such as language and layout. c. Analytics: help us understand how the Services are used so we can improve them, including via vendors such as Google Analytics or comparable tools. d. Advertising and Retargeting: support our marketing activities, including showing AdFactory advertisements on third-party platforms and measuring campaign effectiveness. You can manage Cookies through your browser settings, device settings, the in-product preference center (where available), and industry opt-out tools at https://optout.aboutads.info and https://optout.networkadvertising.org. Note that disabling certain Cookies may impair the functionality of the Services. We currently do not respond to “Do Not Track” signals because no common industry standard for such signals has been finalized. We do honor opt-out preference signals (such as Global Privacy Control) where required by applicable law.
4. HOW WE SHARE INFORMATION
We share information in the following circumstances: a. Service Providers and Sub-processors: with vendors that provide cloud hosting, model inference, storage, security, analytics, customer support, communications, payment processing, and similar services on our behalf, under contractual obligations consistent with this Privacy Policy. b. Advertising Platforms: with the third-party advertising platforms you authorize the Services to access, in order to launch, manage, optimize, and report on your campaigns. c. Analytics and Marketing Vendors: with vendors that help us analyze use of the Services, deliver our own advertising, and measure campaign performance. d. Within Your Organization: with other authorized users on your account, including administrators who may access usage data and content associated with your workspace. e. Legal Disclosures: when we believe disclosure is necessary or appropriate to comply with applicable law, legal process, or lawful government request; to enforce our Terms of Use; to protect the rights, property, or safety of AdFactory, our users, or others; or to investigate fraud or security incidents. f. Corporate Transactions: in connection with the evaluation, negotiation, or consummation of a financing, merger, acquisition, reorganization, bankruptcy, receivership, sale of all or a portion of our assets, or transition of service to another provider. g. With Your Consent: with any other party where you direct us to do so or otherwise consent. We may share aggregated, de-identified, or anonymized information that does not reasonably identify any individual for any business purpose.
5. DATA RETENTION
We retain personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law. Retention periods vary based on the type of information, the nature of the processing activity, and applicable legal, accounting, or reporting obligations. When personal information is no longer required, we will delete, aggregate, or de-identify it in accordance with our internal policies. You may request deletion of your personal information as described in Sections 6 and 10. Note that some information may be retained in backup systems, dispute records, or as required by law for a limited period before final deletion.
6. YOUR CHOICES AND RIGHTS
Subject to applicable law and verification of your identity, you may: a. Access the personal information we hold about you. b. Correct inaccurate or incomplete personal information. c. Delete personal information, subject to certain exceptions. d. Opt out of marketing communications by following the unsubscribe instructions in any marketing email or contacting us at support@adfactory.run. e. Opt out of certain cookies and similar technologies as described in Section 3. f. Withdraw consent where processing is based on consent, without affecting the lawfulness of prior processing. To exercise any of these rights, contact us at support@adfactory.run. We will respond within the time period required by applicable law. We may need to verify your identity before fulfilling your request. You may also have the right to lodge a complaint with a regulator or supervisory authority.
7. DATA SECURITY
AdFactory maintains administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. These safeguards include encryption in transit and at rest where appropriate, access controls, logging and monitoring, vulnerability management, and personnel training. No method of transmission or storage, however, is completely secure, and we cannot guarantee absolute security.
8. CHILDREN’S PRIVACY
The Services are not directed to children under the age of thirteen (13), and we do not knowingly collect personal information from children under thirteen (13). If we learn that we have collected personal information from a child under thirteen (13) without verified parental consent, we will promptly take steps to delete that information. Additionally, the Services are not intended for use by anyone under the age of eighteen (18); please refer to our Terms of Use. If you believe a child has provided personal information to us, please contact support@adfactory.run.
9. INTERNATIONAL DATA TRANSFER
AdFactory is headquartered in the United States, and we and our service providers may process and store information in the United States and other countries that may have different data-protection laws than your country of residence. Where required by applicable law, we implement appropriate safeguards for cross-border transfers. By using the Services, you understand and acknowledge that your information may be transferred to and processed in the United States and elsewhere.
10. CALIFORNIA PRIVACY ADDENDUM
This Section 10 supplements the rest of this Privacy Policy and applies to residents of California under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, the “CCPA”). Terms used in this Section have the meanings given in the CCPA. 10.1 Categories of Personal Information Collected In the twelve (12) months preceding the Last Updated date above, we have collected the following categories of personal information, as those categories are defined under the CCPA: a. Identifiers — such as name, email address, IP address, and account identifier. b. Customer records — such as billing address and tokenized payment-card identifiers. c. Commercial information — such as subscriptions, transaction history, and products or services considered or purchased. d. Internet or other electronic network activity information — such as browsing and usage information and interactions with the Services and our advertisements. e. Geolocation data — approximate location derived from IP address. f. Professional or employment-related information — such as company name, job title, and work email address. g. Inferences — drawn from the categories above to reflect preferences, characteristics, and behavior. h. Sensitive personal information — limited to account credentials in combination with passwords; we do not use sensitive personal information for any purpose other than those permitted under the CCPA without further notice or, where required, consent. 10.2 Sources, Purposes, and Disclosures We collect personal information from the sources described in Section 1, use it for the purposes described in Section 2, and disclose it to the categories of recipients described in Section 4. We do not use sensitive personal information for any purpose other than those permitted under the CCPA without further notice or, where required, consent. 10.3 Sale and Sharing of Personal Information AdFactory does not “sell” personal information for monetary consideration. However, our use of certain advertising and analytics Cookies may constitute “sharing” or “selling” of personal information for cross-context behavioral advertising under the CCPA. California residents may exercise their right to opt out of such sharing or selling by: a. Configuring your browser to broadcast a Global Privacy Control signal, which we honor as a valid opt-out for the browser and device from which it is sent; b. Emailing us at support@adfactory.run with the subject line “Do Not Sell or Share.” 10.4 California Rights Subject to verification and applicable exceptions, California residents have the right to: (a) know the categories and specific pieces of personal information we have collected; (b) request deletion of personal information; (c) request correction of inaccurate personal information; (d) opt out of the sale or sharing of personal information; (e) limit the use and disclosure of sensitive personal information (where applicable); and (f) not be subject to unlawful discrimination for exercising these rights. You may submit a request by emailing us at support@adfactory.run with the subject line “California Privacy Request.” We will verify your identity using information we already maintain or by requesting reasonable additional information. Authorized agents may submit requests on your behalf consistent with CCPA requirements. 10.5 Retention of California Personal Information We retain each category of personal information for the period described in Section 5, based on the criteria set forth therein.
11. OTHER U.S. STATE PRIVACY DISCLOSURES
Residents of certain other U.S. states (including, where applicable, Colorado, Connecticut, Delaware, Oregon, Texas, Utah, Virginia, and others) may have additional rights under their respective state privacy laws, including rights to access, delete, correct, port, opt out of targeted advertising, opt out of sale, and limit profiling. To exercise any such right, please contact support@adfactory.run. We will respond consistent with the requirements of the applicable state law and may request information to verify your identity or authority.
12. CHANGES TO THIS PRIVACY POLICY
We may update this Privacy Policy from time to time. When we do, we will revise the “Last Updated” date above and, where required, provide additional notice (such as by email or an in-product notification). Material changes will be effective upon posting unless otherwise stated. Your continued use of the Services after a change is effective constitutes acceptance of the updated Privacy Policy.
CONTACT US
If you have questions, comments, or requests regarding this Privacy Policy or our privacy practices, please contact us: AICEBERG LABS INC. 651 N Broad St, Suite 201, Middletown, DE 19709, USA Email: support@adfactory.run For privacy-specific matters, please use the subject line “Privacy Request.”