Last updated: March 8, 2026

Privacy Policy

This Privacy Policy explains how VoltraAI, operated by NextGen Business Solutions ("we," "us," or "our"), collects, uses, and protects your personal information when you use our AI-powered advertising management platform.

1. Company Information

VoltraAI is operated by NextGen Business Solutions. If you have questions about this Privacy Policy or your data, you can contact us at mario@voltraai.com.

2. Information We Collect

Information You Provide

  • Waitlist: Email address when you sign up for our waitlist.
  • Account Registration: Name, email address, business name, and billing information when you create an account.
  • Communications: Any information you provide when contacting our support team.

Ad Account Data (OAuth)

When you connect your advertising accounts (Meta, Google Ads, TikTok, X), we access your ad platform data only with your explicit authorization via OAuth. This includes campaign data, performance metrics, audience information, and ad creative content — solely for the purpose of managing and optimizing your campaigns.

Automatically Collected Information

  • Browser type and version
  • IP address (for security and fraud prevention)
  • Pages visited and features used within the platform

3. How We Use Your Data

  • To provide and operate our advertising management services
  • To create, optimize, and manage advertising campaigns on your behalf
  • To generate analytics, reports, and performance insights
  • To process billing and payments
  • To communicate with you about your account, service updates, and support
  • To improve our platform and develop new features

4. Data Storage and Security

Your data is stored securely on Supabase (PostgreSQL) infrastructure hosted in the United States. OAuth tokens are encrypted at rest using AES-256-GCM encryption. We implement industry-standard security measures including HTTPS encryption for all data in transit, regular security audits, and access controls.

5. Platform-Specific Compliance

Meta Platform Terms

Our use of data received from Meta (Facebook/Instagram) APIs complies with the Meta Platform Terms and Marketing API Terms of Service. If you deauthorize VoltraAI from your Meta account, we will immediately cease accessing your Meta data and delete stored Meta-specific data within 30 days. We provide a Data Deletion Request callback — when Meta notifies us that a user has requested data deletion, we process the request automatically and confirm deletion per Meta's requirements.

Google API Services User Data Policy

Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We only use Google Ads data for the purposes described in this policy (campaign management and optimization), and we do not transfer this data to third parties except as necessary to provide our services.

6. Data Sharing

We do not sell your personal data. We share data only as necessary to provide our services:

  • Ad Platforms: We transmit campaign data to Meta, Google Ads, TikTok, and X as necessary to manage your advertising campaigns.
  • Stripe: Payment and billing information is processed by Stripe.
  • Supabase: Database hosting and authentication services.

We may also disclose information if required by law or to protect our rights and safety.

7. Cookies

We use minimal cookies, limited to essential session cookies for authentication and security. We do not use third-party advertising or tracking cookies. For more details, see our Cookie Policy.

8. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate or incomplete data
  • Delete your account and personal data
  • Export your data in a portable format
  • Disconnect your ad accounts at any time, revoking our access
  • Opt out of non-essential communications

To exercise any of these rights, contact us at mario@voltraai.com.

9. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law or for legitimate business purposes (such as fraud prevention).

10. Children's Privacy

VoltraAI is not directed at children under 13 years of age. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 13, we will delete it promptly.

11. California / CCPA Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to request deletion, and the right to opt out of the sale of personal information. We do not sell personal information.

12. GDPR Compliance

If you are located in the European Economic Area (EEA), we process your data under lawful bases including consent, contractual necessity, and legitimate interest. You have additional rights under the General Data Protection Regulation (GDPR), including the right to data portability, the right to restrict processing, and the right to lodge a complaint with a supervisory authority.

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you via email at the address associated with your account. Continued use of the platform after changes constitutes acceptance of the updated policy.

14. Contact

For any privacy-related questions or requests, contact us at:
Email: mario@voltraai.com
Company: NextGen Business Solutions (operating as VoltraAI)