Privacy Center

Privacy, consent posture, and data-subject requests in one place.

This page explains the platform's data-handling posture at a practical level and routes access, correction, deletion, restriction, objection, and complaint requests into the admin queue.

Open Docs Contact Support

What we collect

We may collect account identity, workspace and billing data, campaign and ad configuration, measurement and event data, support messages, log data, cookies or similar technologies, and approval or audit records needed to operate the service.

Why we use data

We use data to provide the service, authenticate users, connect advertising accounts, improve measurement quality, operate automation features, investigate incidents, prevent abuse, satisfy legal obligations, and communicate with customers.

Meta and connected platforms

When you connect Meta or other commerce systems, we process the data those systems make available under your instructions and subject to applicable platform terms and policies.

India-specific posture

For users and data principals in India, the platform is structured to support notice, consent management where required, grievance handling, and lawful requests to access, correct, update, or erase data, subject to applicable exceptions.

Global rights

Depending on location, users may have rights to access, correct, delete, object to, restrict, or receive a copy of personal data, and may also have rights related to automated decision-making and profiling.

Retention and security

We retain data only as long as necessary to provide the service, comply with law, resolve disputes, prevent abuse, and support legitimate business records. Administrative, technical, and organizational safeguards are used to protect data.

Privacy Operations

Privacy, consent, and automated-decision controls for a Meta ads platform.

This privacy center is designed for teams using Meta ads automation, WhatsApp marketing, campaign reporting, and measurement workflows at scale. It explains what data the platform handles, why it handles that data, how requests are routed, and how governance controls limit downstream automation when rights or consent changes affect eligibility.

Consent-aware processing

Consent state, lawful processing posture, and region-specific handling should determine which optional exports, enrichments, and automations remain active. That is why the privacy queue and the operating system need to stay connected.

Data-subject request workflow

Access, correction, deletion, restriction, objection, and complaint requests are recorded into the admin queue so operators can verify identity, track due dates, review legal holds, and document completion evidence.

Automation with accountability

A platform that automates Meta ads decisions needs privacy-aware governance. That includes decision logging, explainability, safe mode, region controls, and the ability to challenge or limit automated behavior when the legal or trust posture changes.

Submit a privacy request

Use this form for access, correction, deletion, restriction, objection, or complaint requests. It routes into the admin privacy queue with due-date tracking.

Consent and suppression

Where required by law, consent state and withdrawal handling should control optional downstream processing, exports, and automation behavior.

Automated decisions

The platform records decision rationale, policy posture, and rollback context so significant automation can be reviewed and challenged.

Cross-border handling

Where data crosses borders, the product is designed to pair technical controls with the safeguards required by applicable law and customer agreements.

Support and grievance routing

Privacy and support requests can also be routed through support@glimmio.com.

How Requests Move

From customer request to admin review to completion evidence.

The privacy workflow is built for operational clarity. The request starts here, moves into the admin queue, receives verification and notes, and then flows through review, suppression, completion, or escalation. That process helps D2C brands, agencies, and platform operators keep privacy handling consistent with the rest of the system.

1. Intake and verification

Capture requester identity, region, request type, and details.
Validate the workspace relationship and review the applicable privacy posture.
Set the review status and due date inside admin operations.

2. Review and impact control

Inspect consent state, retention rules, automation exposure, and exports.
Apply holds, suppression, or workflow limitations where required.
Document admin notes for follow-up and audit history.

3. Completion and evidence

Record completion status, outcome notes, and timestamps.
Preserve evidence for customer support, privacy reviewers, and platform governance.
Keep the privacy center, admin queue, and trust posture aligned.