← Back to HomePrivacy Policy
Last updated: May 25, 2026
1. Introduction
Ampl ("we," "our," or "us") is committed to protecting the privacy and security of our users. This Privacy Policy explains how we collect, use, disclose, safeguard, and delete your information when you use our website at tryampl.com and our web application at app.tryampl.com (collectively, the "Service"). By accessing or using the Service, you agree to the terms of this Privacy Policy.
2. Information We Collect
2.1 Information You Provide
- Account Information: Your name, email address, password, and profile preferences when you register.
- Billing and Payment Data: Credit card or payment details processed securely by third-party processors (such as Stripe). We do not store raw card numbers on our servers.
- User Creative Materials: Uploaded images, music artwork, tracks, descriptions, logos, and advertising content.
- Campaign Preferences: Targeting selections, marketing objectives, schedules, and campaign budgets.
- Communications: Support requests, feedback emails, and direct correspondence with our team.
2.2 Information Collected Automatically
- Device & Log Data: IP address, operating system, browser type, device identifiers, and system configurations.
- Usage Information: Specific pages visited, duration of visits, navigation flows, and interactive elements engaged with on the Service.
- Cookies & Tracking: Session state management, performance tracking, and preference caching via cookies and web beacons.
2.3 Information from Third Parties & Meta Platform API
To enable the Service's campaign management tools, you may explicitly authorize connection to your Meta Platforms (Facebook & Instagram) accounts. In doing so, we access:
- Meta Graph API Scopes: Access to your Meta ad accounts (`ads_management`, `ads_read`) and pages (`pages_read_engagement`) to list campaign statistics, create new ad sets, upload creative assets, and configure targeting.
- Ad Performance Data: Conversions, clicks, impressions, ad spend, and delivery statuses directly via Meta APIs to populate your dashboard.
- Third-Party Logins: Standard authentication credentials if you log in via Google.
3. GDPR Legal Bases for Processing (EU Users)
For individuals residing in the European Economic Area (EEA) or United Kingdom (UK), we process your personal data in accordance with the General Data Protection Regulation (GDPR) based on the following legal foundations:
- Performance of a Contract: Processing is required to create your account, handle billing, deliver primary services, and execute campaigns on your behalf (GDPR Article 6(1)(b)).
- Consent: Specifically for third-party integrations like linking your Meta Ad Account, where you grant explicit permission (GDPR Article 6(1)(a)). You can withdraw this consent at any time.
- Legitimate Interests: To secure our systems, prevent fraud, optimize app performance, and analyze generalized product usage statistics (GDPR Article 6(1)(f)).
- Legal Obligations: Compliance with statutory tax codes, bookkeeping rules, or legitimate governmental disclosures (GDPR Article 6(1)(c)).
4. CCPA / CPRA Disclosures (California Residents)
Pursuant to the California Consumer Privacy Act, as amended by the CPRA, we disclose the following details for California residents:
- Categories Collected: Identifiers (e.g., email, name, IP), Commercial Information (e.g., purchase history), Internet activity (e.g., site interactions), and Professional/Employment-related data.
- No Sale of Data: We do not sell your personal information.
- Sharing for Cross-Context Behavioral Advertising: We do not share your personal information with third parties for cross-context behavioral advertising. Any analytics or integrations are configured strictly for service delivery.
5. How We Use Your Information
We use the information we collect to:
- Deliver and optimize our marketing and advertising campaign creation Service.
- Manage billing, billing verification, subscription plans, and token systems.
- Process, compile, and format user artwork and audio metadata into ad layouts.
- Communicate support updates, platform alerts, invoices, and product newsletters.
- Analyze aggregated traffic patterns to improve platform speed and usability.
- Ensure security, identify unauthorized usage, and block fraudulent payment profiles.
6. Data Sharing & Third-Party Services
We share data with trusted partners strictly to facilitate operations:
- Meta Platforms (Facebook & Instagram): Transfer of ad parameters, creative assets, and targets to create ads under your explicit instruction.
- Payment Processors (Stripe): Data needed to securely verify and bill your transactions.
- Hosting & Analytics Providers: Highly secure server environments (e.g., Google Cloud, Vercel) and utility services.
- Legal Authorities: Where disclosure is legally mandated by law, court order, or national security regulation.
7. Data Deletion, Retention, & Meta API Revocation
We store data for as long as your account is active. You maintain total control over your connected accounts and personal information:
Meta Integration Revocation
You may disconnect Ampl's API access to your Meta ad accounts at any time inside your Service Settings, or directly through Facebook's "Apps and Websites" settings pane.
Data Deletion Request
You can request full and permanent deletion of all data associated with your account at any time. For step-by-step instructions, please read our dedicated:
Data Deletion Instructions Page →8. CalOPPA Do Not Track (DNT) Statement
Because there is no standard consensus regarding how websites should respond to Do Not Track browser signals, the Service does not dynamically change its behavior in response to DNT headers. However, you can manage tracking preferences, clear browsing histories, or restrict cookies directly via your local browser settings.
9. Your Rights and Choices (Global)
Regardless of jurisdiction, you are empowered to:
- Access, adjust, download, or permanently delete personal data on our servers.
- Withdraw processing consent or object to automated profiling.
- Lodge a complaint regarding data usage with your local Data Protection Authority.
To submit a formal data request, email our data desk at privacy@tryampl.com.
10. International Data Transfers
Your data may be transferred to, and processed in, Canada or the United States. We secure transfers using robust mechanisms, including Standard Contractual Clauses (SCCs) approved by the European Commission, to guarantee a matching framework of protection across borders.
11. Children's Privacy
Our Service is designed solely for creators aged 18 and older. We do not knowingly collect personal data from minors. If you discover a child under 18 has established an account, notify us immediately so we can purge their files.
12. Security Measures
We deploy enterprise-grade security protocols, including AES-256 databases, HTTPS transmission, and end-to-end data auditing. While we defend our servers vigorously, no online system is completely impregnable, and we advise caution during credentials transmission.
13. Contact & Data Controller Details
For inquiries concerning this Policy, user rights, or data practices, contact us at:
Email: privacy@tryampl.com
© 2026 Ampl. All rights reserved.