privacy

last updated · may 2, 2026

adfi is operated by SOROOSHX INC., a corporation incorporated in Ontario, Canada ("adfi," "we," "us"). SOROOSHX INC. is the data controller for personal data we collect and process through adfi.ca and the adfi mobile and admin apps (collectively, the "service"). this notice explains what data we collect, why we collect it, who we share it with, and the choices you have.

what we collect

• account info — your email and (if you choose google sign-in) the basic profile fields supabase auth returns to us. we do not collect government ids.
• business profile — anything you enter during onboarding or in settings: business name, description, website, logo, content pillars, audience segments, brand voice. you control all of these and can edit or delete them at any time. on studio/agency plans you may run multiple businesses under one account; each business's data is scoped to that business.
• connected channels — when you link instagram, facebook, linkedin, telegram, twilio, sendgrid, or any other channel, we store the access tokens encrypted at rest (aes-256, application-layer) and the minimum metadata needed to publish on your behalf (page id, page name, account id, instagram business id).
• meta platform data — when you connect a facebook page or instagram business account via facebook login, meta makes available to us: the list of pages you manage (so we can show a page picker), the page id and page access token for the page you select, the linked instagram business id, page-level engagement metrics (reach, reactions, comments) for posts on the connected page, and the contents of inbound messenger and instagram-dm conversations on the connected page. this data is processed only for the features you use it for (publishing, dashboard analytics, dm auto-reply via the signal agent).
• content + agent activity — the drafts our agents produce, posts you publish, post performance metrics, inbound messages and calls handled by signal, and the prompts and responses each agent run sends to anthropic and replicate.
• billing — handled by stripe. we store your stripe customer id and subscription status; we never see card numbers or full payment instruments.

how we use it

• to run the agents you hired us to run.
• to render the dashboards, drafts, inbox, and analytics you see in the app.
• to send transactional email (account, billing, draft notifications) and the newsletters you ask echo to send to your subscribers.
• to detect abuse and enforce platform terms (ours and connected channels').
• to meet our legal and tax obligations.

we do not sell your data. we do not use it to train third-party models. anthropic and replicate process prompts as data processors under their respective agreements; both retain inputs only as long as needed to return a response and for their own abuse-prevention. we do not pass meta access tokens, customer phone numbers, or full payment instruments to anthropic or replicate.

third-party processors

we use the processors below to operate the service. each processes your data only on our instructions and only for the purposes described.

• supabase inc. (united states) — postgres database, auth, file storage. stores all account, business, content, and connected-channel records. tokens are application-layer encrypted before write; supabase only sees ciphertext.
• vercel inc. (united states) — application hosting, serverless runtime, edge network. handles all api requests; no persistent storage of user data.
• anthropic pbc (united states) — claude api for agent reasoning (echo, signal, strategist, planner, scout, pulse). processes the prompts and responses for each agent run.
• replicate, inc. (united states) — image generation for echo (flux schnell). processes only image prompts.
• stripe, inc. (united states) — payments, subscriptions, customer portal. processes payment instruments and billing data directly.
• sendgrid (twilio inc.) (united states) — newsletter delivery, transactional email, subscriber management.
• twilio inc. (united states) — phone numbers, sms, voice calls (signal agent — only when enabled).
• meta platforms inc., linkedin corporation, telegram fz-llc — only when you explicitly connect those channels.

international transfers

our processors are primarily based in the united states. if you access the service from the european union, the united kingdom, or another jurisdiction with cross-border transfer restrictions, your data is transferred to the united states under standard contractual clauses (sccs) and equivalent safeguards published by each processor.

retention

we retain account, business, and content data for as long as your account is active. when you disconnect a channel, the associated access tokens and channel-specific data are deleted within 30 days. when you delete your account, all personal data is deleted within 30 days; backups are purged within 90 days. data we are legally required to keep (billing records for tax purposes, records of fraud or abuse) is retained for the period required by law.

security

all traffic between you, our service, and our processors is encrypted in transit with tls 1.2 or higher. data at rest in supabase postgres is encrypted with aes-256. access tokens for connected channels are additionally encrypted at the application layer before they are written to the database. access to production systems is restricted to authenticated personnel and audited.

your rights

depending on your jurisdiction (gdpr, uk gdpr, ccpa, pipeda, and equivalents) you have the right to: access the personal data we hold about you; correct inaccurate data; delete your data; restrict or object to processing; data portability; and lodge a complaint with your local supervisory authority.

you can export or delete your account data any time. settings → account → request export, or email us at privacy@adfi.ca. deletion is hard within 30 days for content data and immediate for connected-channel tokens.

government requests

if a government authority requests personal data from us, we review every request for legality, push back on overreach, disclose only the minimum information legally required, and document our response. we will notify you of any request that concerns your data unless legally prohibited from doing so.

children

adfi is not intended for users under 18. we do not knowingly collect personal data from anyone under 18. if you believe a child has provided us with personal data, contact privacy@adfi.ca and we will delete it.

changes to this notice

we may update this notice from time to time. material changes will be emailed to the address on your account and reflected here with a new "last updated" date.

contact

SOROOSHX INC.
Ontario, Canada
privacy questions: privacy@adfi.ca