Ad Lifter and the AdLift product are operated by Web Lifter.
This policy explains how we handle personal information under the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). It covers the Cloud console and the AdLift Account Advisor; the general Web Lifter website privacy policy continues to apply to our marketing site.
(APP 3, 5)
Account & identity: your name, email, and organisation details.
Business profile you provide: business overview, offerings, customer segments, competitors, marketing channels, goals and KPI targets.
Documents you upload: business documents you choose to add as context. These may contain personal information about third parties — see our Terms for your obligations.
Connected Google Ads data: when you connect a Google Ads account read-only, we sync campaign, ad group, keyword, search-term, conversion and performance data. Search-term data can occasionally contain personal information entered by searchers.
Billing: handled by Stripe. We do not collect or store your card details.
Directly from you through your account, profile and documents, and, with your authorisation, via a read-only connection to your Google Ads account.
We never collect more than we need for the audit.
(APP 6)
We use your information to provide the AdLift audit and ongoing advisory — analysing your connected ad account against your own goals and KPIs and recommending what to fix — to operate and secure the service, and to bill you.
We do not sell your personal information.
(APP 8)
AdLift generates its audits using Anthropic’s Claude.
To produce an audit, your business profile, goals/KPIs, uploaded document text and synced ad data are sent to Anthropic for processing.
Anthropic may process this data outside Australia, including in the United States.
We have disabled training on your data. Anthropic does not use it to train models. We retain it only as needed to provide the service.
By using AdLift, you consent to this overseas disclosure for this purpose.
AdLift is read-only — we never change, pause, or spend on your ad account.
Anthropic — AI processing of audits, as described above.
Stripe — billing. Card data is handled by Stripe, not us.
Supabase — hosting and database, in Sydney, Australia.
Google — only to authenticate your read-only ad-account connection.
(APP 11)
Your data is stored in Supabase in Sydney, Australia.
We use encryption in transit and at rest, store third-party OAuth tokens in an encrypted vault, and enforce strict per-organisation isolation so one customer can never access another customer’s data.
(APP 11.2)
We keep your data while your account is active.
If you cancel, we delete or anonymise your business data within 30 days.
You can delete uploaded documents at any time.
We revoke and delete a connected account’s access token immediately on disconnect.
Some billing records may be retained where law requires.
(APP 12, 13)
You can access and correct your information from the console or by contacting us.
To make a privacy complaint, email info@weblifter.com.au.
If unresolved, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
We may update this policy. Material changes will be notified in the console.
Contact: info@weblifter.com.au