Privacy Policy

We collect information you provide directly, including your name, email address, company or agency name, client details, account setup information, and messages you send to us.

When you connect third-party services, we collect the account identifiers, access tokens, refresh tokens, permissions, and service data needed to provide the product features you authorize.

We may collect technical information such as device data, browser data, usage logs, IP address, diagnostic events, and performance information so we can operate, secure, and improve the service.

If you connect Google services, TheCMO may access Google Ads, Google Analytics, Google Search Console, Google Business Profile, YouTube, or other Google account data only after you authorize the requested scopes.

We use Google user data to provide agency workflow features such as campaign analysis, reporting, search visibility analysis, business profile management, content workflows, recommendations, and operational automation you request.

We do not sell Google user data. We do not use Google user data for advertising unrelated to the service. We do not transfer Google user data except as needed to provide or improve user-facing features, comply with law, prevent abuse, or with your direction.

Our use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

We use information to operate TheCMO, authenticate users, connect agency and client accounts, provide reporting and automation, troubleshoot issues, secure the platform, communicate with users, and improve our products.

We may use aggregated or de-identified information to understand product performance and improve features, but we do not use that information to identify you.

We share information with service providers that help us host, secure, monitor, and operate the service, including cloud infrastructure, database, analytics, logging, and communication providers.

We may share information when required by law, to protect rights and safety, to investigate abuse, or in connection with a business transfer such as a merger, acquisition, financing, or sale of assets.

We may share information with your agency, team members, or connected client accounts according to the permissions and workflows you configure.

We keep information for as long as needed to provide the service, comply with legal obligations, resolve disputes, maintain security, and enforce agreements.

We use reasonable administrative, technical, and organizational safeguards designed to protect information. No internet service can guarantee absolute security.

You can disconnect third-party accounts, revoke Google OAuth access from your Google Account permissions page, request deletion of account data, or ask us to update inaccurate information.

Some information may remain in backups, audit logs, or records we are required to keep, subject to our retention practices and legal obligations.

For privacy questions or data requests, contact TheCMO through the contact and scheduling options available at https://thecmo.ai.