Privacy Policy

Effective date: June 14, 2026

This Privacy Policy explains how Adsu (“Adsu,” “we,” “us”) collects, uses, and shares information when you use our website and ad-attribution service (the “Service”). It covers both visitors to adsu.ai and the gym businesses (“Customers”) who use the product.

Information we collect

Information you give us. Your name, email, company, and anything you share when you book a demo or contact us.

Customer-connected data. When a Customer connects their tools, we process the data needed to attribute revenue to advertising — for example advertising click and spend data (including click identifiers) from Meta and Google, contact and lead records from GoHighLevel, and payment and membership records from Stripe and Mindbody. We use this data to match an ad click to the in-person membership it produced and to compute per-location performance.

Automatic data. Limited technical and usage data — such as device and browser information, IP address, and interactions with our site — collected via essential cookies and similar technologies.

Our role: processor for Customer data

For the contact, lead, and payment data a Customer connects, the Customer is the data controller and Adsu acts as a data processoron their behalf, handling that data only to provide the Service and on the Customer’s instructions. Each Customer’s data is kept logically isolated from other Customers’. We do notpool one Customer’s point-of-sale data (including Mindbody data) with another’s.

How we use information

• To provide, operate, secure, and improve the Service.
• To compute ad attribution and per-location revenue performance.
• To respond to your requests and provide support.
• To send service-related and, where permitted, marketing communications.
• To comply with legal obligations and enforce our terms.

Service providers & sub-processors

We share data only with providers that help us run the Service, under contracts that limit their use of it — including our hosting and database providers (such as Vercel and Neon) and the advertising, CRM, and point-of-sale platforms a Customer chooses to connect (such as Meta, Google, GoHighLevel, Stripe, and Mindbody). We do not sell personal information. We may disclose information where required by law or to protect our rights and the safety of others.

Data retention & deletion

We retain information for as long as needed to provide the Service and for legitimate business or legal purposes, then delete or anonymize it. Customers may request export or deletion of their connected data, and we will action such requests consistent with applicable law and our agreement with the Customer.

Security

We use reasonable administrative, technical, and physical safeguards to protect information, including encryption in transit (TLS) and encryption of connected credentials at rest. No method of transmission or storage is completely secure, but we work to protect your data and to respond promptly to any incident.

Your rights

Depending on where you live, you may have the right to access, correct, delete, or port your personal information, and to object to or restrict certain processing. To exercise these rights, contact us below; if your data was connected by a Customer, we may refer your request to that Customer as the controller. We will respond consistently with applicable law.

Changes to this policy

We may update this policy from time to time. When we do, we will revise the effective date above and, for material changes, provide additional notice where required.

Contact

Questions about this policy or your data? Email will@willocho.com.