This Privacy Policy explains in detail how Next2Data (the “Application”, “we”, “us”, or “our”) collects, processes, uses, stores, and protects personal data when users access and use the Application and its related services. The policy is drafted in accordance with applicable data protection laws, including the GDPR, and the Google API Services User Data Policy.

1. Data Controller

The Data Controller is the legal entity responsible for determining the purposes and means of processing personal data.

Next2ad s.r.l.

Via Valdera Pontedera n. 35

56038 Ponsacco (PI) – Italy

Email: info@next2ad.com

2. Types of Data Collected

Next2Data uses Google OAuth authentication. Personal data is accessed only after the user has explicitly granted permission through the Google consent screen. The Application collects only the minimum amount of data strictly necessary to provide its services.

2.1 Google Account Information

When a user authenticates via Google, the Application receives limited account information such as the email address, account name, and a unique Google Account identifier. These data elements are used solely to identify the user within the Application and to associate connected services.

2.2 Google Drive Data

Upon explicit authorization, Next2Data accesses the list of files stored in the user’s Google Drive. The Application retrieves file metadata including file names, file types, and creation or modification timestamps. This access is limited to structural and organizational information.

Next2Data does not read, download, copy, modify, or permanently store the actual content of any Google Drive file. File data is never shared with third parties.

2.3 Google Ads Data

If authorized by the user, Next2Data retrieves the list of Google Ads accounts associated with the authenticated Google account. Only account identifiers and descriptive metadata are accessed in order to allow account selection and visualization within the Application.

All Google Ads access is strictly read-only. The Application does not create, modify, pause, or manage advertising campaigns, budgets, ads, or billing settings.

3. Purpose of Data Processing

Personal data collected by Next2Data is processed exclusively for clearly defined and legitimate purposes related to the functioning of the Application.

Specifically, data is used to authenticate users, display Google Drive file structures, display connected Google Ads accounts, provide analytics and data integration features, and ensure the proper technical operation of the Application.

Under no circumstances is the data used for advertising, marketing activities, user profiling, resale, or training of artificial intelligence or machine learning models.

4. Legal Basis for Processing

The processing of personal data is based on the explicit and informed consent provided by the user during the Google OAuth authorization process. In addition, processing is necessary to fulfill the services explicitly requested by the user.

5. Data Retention

Personal data is retained only for the period strictly necessary to provide the requested services. Users may revoke access permissions at any time through their Google Account security settings.

Once access is revoked, Next2Data will promptly cease data processing activities and delete any stored data within a reasonable and technically feasible timeframe.

6. Data Sharing and Disclosure

Next2Data does not sell, rent, trade, or otherwise disclose personal data to third parties. Data may be disclosed only if required by applicable law, regulation, or valid legal request.

7. Data Security Measures

Next2Data implements appropriate technical and organizational security measures to protect personal data against unauthorized access, loss, misuse, or alteration. These measures include encrypted communications (HTTPS), restricted access controls, and secure API usage.

8. User Rights

Users have the right to access their personal data, request rectification or deletion, withdraw consent, and object to certain processing activities in accordance with applicable data protection laws.

Requests related to data protection rights may be submitted at any time by contacting info@next2ad.com.

9. Compliance with Google Policies

Next2Data fully complies with the Google API Services User Data Policy, including the Limited Use requirements. Data obtained through Google APIs is used solely to provide user-facing features explicitly requested by the user.

10. Changes to This Privacy Policy

Next2Data reserves the right to update or modify this Privacy Policy at any time. Any changes will be published with an updated revision date and will become effective upon publication.