Last updated: 25.04.2026
We are Admetra GmbH, Kameruner Str. 16, 13351 Berlin, Germany.
This Privacy Policy explains what personal data we collect, why we collect it, how long we keep it, and what rights you have under the GDPR.
If you have questions, email us at info@admetra.ai.
1. Who We Are
Admetra GmbH is the Data Controller for the processing of your personal data.
We operate an AI-powered platform that analyzes video advertisements against Meta delivery requirements and advertising trends, providing campaign readiness reports and creative optimization recommendations.
2. What Data We Collect
2.1 Data you give us
- Name and work email address (for account creation)
- Password (stored in hashed form) or Google account identifier if you sign in with Google
- Brand name, brand URL, and industry niche (provided during onboarding)
- Videos or advertisement files you upload ("User Content")
- Payment information (processed by Stripe; we do not store full card details)
2.2 Data collected automatically — cookie categories
We use cookies and similar technologies and group them into three categories. You decide which categories we may use; the choice is recorded in your browser and can be changed at any time from Settings → Privacy or by clearing site data in your browser.
- Essential — required for the site to function. Keeps you logged in (session cookies and JWT), remembers your language preference, and protects against fraud and abuse. Cannot be disabled. Examples:
access_token,refresh_token,admetra_language. - Analytics — help us understand how the product is used so we can improve it. We use PostHog (hosted in the EU). Data collected: pages visited, clicks, scroll depth, error reports, and a device-stable identifier (
admetra_lead_id) used to measure retention. No advertising is performed with this data. - Marketing — used to measure the performance of our advertising campaigns. We use Meta Pixel. Data collected: page views and signup conversions on our site. This data is shared with Meta to attribute ad spend.
Withdrawing consent does not affect the lawfulness of processing performed before withdrawal. We do not intentionally collect sensitive personal data (e.g., health, political opinion, biometric).
3. Why We Process Your Data (Purposes & Legal Bases)
We process your data for the following purposes:
| Purpose | Legal Basis |
|---|---|
| To create and manage your account | Contract (Art. 6(1)(b) GDPR) |
| To process and analyze your uploaded content | Contract (Art. 6(1)(b) GDPR) |
| To process payments and manage your subscription | Contract (Art. 6(1)(b) GDPR) |
| To authenticate you via Google OAuth (if chosen) | Contract (Art. 6(1)(b) GDPR) |
| To communicate with you | Contract or Legitimate Interests |
| To maintain security and prevent abuse | Legitimate Interests (Art. 6(1)(f) GDPR) |
| Optional analytics cookies | Consent (Art. 6(1)(a) GDPR) |
We do not sell personal data.
We do not use your uploaded videos to train AI models.
4. How Long We Keep Your Data
- Uploaded videos: deleted automatically after 7 days
- Account data: kept until you delete your account
- Payment and invoice records: retained for the duration required by tax and accounting laws (typically 10 years under German law)
- Contact messages: kept until your request is completed
- Technical logs: 30–90 days
- Backups: hosting provider backups may retain data for a limited time according to their retention cycles
5. Who We Share Data With
We only share your data with:
5.1 Service Providers (Processors)
Trusted vendors that support our operations, for example:
- Cloud hosting provider (e.g., major global cloud provider)
- Stripe, Inc. (payment processing and subscription management)
- Google (authentication via Google OAuth, if you choose to sign in with Google)
- Email delivery provider
- Error logging tools
- Content delivery networks (CDNs)
- Analytics provider (if consent is given)
They process data only according to our instructions.
5.2 Legal Requirements
We may share data with authorities if legally required to do so.
5.3 Business Transfers
If our company is merged or acquired, data may be transferred to the new owner under GDPR protections.
We never sell your data.
6. International Data Transfers
Some of our service providers (including Stripe and Google) are based in the United States or operate globally. When personal data is transferred outside the EU/EEA, we ensure appropriate safeguards are in place, including:
- EU-U.S. Data Privacy Framework (where applicable)
- Standard Contractual Clauses (SCCs) approved by the European Commission
These safeguards ensure your data receives a level of protection equivalent to that within the EU.
7. Security
We use modern security measures to protect your data, including:
- Encryption
- Access controls
- Secure hosting
- Data minimization
No system is perfect, but we take reasonable steps to protect your information.
8. Your Rights under GDPR
You can request the following at any time:
- Access to your data
- Correction of inaccurate data
- Deletion of your data
- Download (portability) of your data
- Restriction of processing
- Objection to certain processing
- Withdrawal of consent (for consent-based processing)
To exercise your rights, email info@admetra.ai.
You also have the right to file a complaint with any EU supervisory authority of your choice.
9. Cookies
We use:
- Necessary cookies (for basic site functions)
- Optional analytics cookies (only if you accept them)
Details are provided in our Cookie Policy.
10. Children
Our service is not intended for individuals under 16.
We do not knowingly collect data from children.
If you believe a child has used our service, please contact us so we can delete the data.
11. Changes to This Policy
If we update this Privacy Policy, we will post the new version here.
If changes are significant, we will notify you.
12. Contact
Admetra GmbH
Kameruner Str. 16
13351 Berlin, Germany
Email: info@admetra.ai