Effective date: May 2026
This Privacy Policy explains what information ClickFraudLab collects when you use the service available at clickfraudlab.com, how that information is used, and what information is not stored.
The short version: your CSV file is processed temporarily to generate a report and is not permanently stored. Only anonymized statistical signals related to detected anomalies are retained for research and improvement purposes.
1. What You Upload
When you submit a Search Terms Report CSV file, the file is transmitted to our processing server over an encrypted HTTPS connection.
The file is processed in memory for the sole purpose of generating your fraud analysis report. The uploaded CSV file itself is not permanently stored, written to disk, or retained after report generation is completed.
The Service is designed to analyze only the fields required for anomaly detection, including:
- Day
- Search term
- Keywords
- Impressions
- Clicks
- Cost
- Impression share (Top)
- Impression share (Absolute Top)
2. What We Store
After generating your report, a limited set of anonymized statistical records may be stored in Google BigQuery hosted in the United States (GCP region: US).
Stored records may include:
- anonymous account identifiers
- analyzed week or period
- anonymized anomaly classifications
- statistical indicators related to detected anomalies
- search terms associated with detected anomalies
- aggregated niche or category labels derived from high-volume search terms
These records are stored solely for research, benchmarking, trend analysis, and improvement of the detection methodology.
3. Anonymous Account Identifier
The Service generates an anonymous account identifier based on a truncated SHA-256 hash derived from the top search term by impressions within the uploaded file.
This identifier is designed to prevent practical identification of the original search term and is not intended to identify any individual, advertiser, or Google Ads account.
The identifier is used exclusively for technical functions such as cooldown enforcement and anonymous trend analysis.
4. Cooldown System
To prevent abuse and excessive automated usage, the Service may enforce a cooldown period of up to 30 days for repeated submissions associated with the same anonymous account identifier.
Cooldown records may contain:
- anonymous account identifier
- submission timestamp
- internal reference identifiers
These records do not contain names, email addresses, Google Ads account IDs, or intentionally stored personal information.
5. What We Do Not Intentionally Collect
The Service is designed not to intentionally collect or store:
- names
- email addresses
- phone numbers
- billing information
- Google Ads account IDs
- campaign identifiers
- personal profiles
- advertising identifiers
- analytics or tracking profiles
The Service does not use third-party advertising trackers or analytics platforms.
Standard server-level security logs maintained automatically by hosting or infrastructure providers may temporarily process technical information such as IP addresses for operational and security purposes. Such information is not used by ClickFraudLab for profiling, advertising, or behavioral tracking.
6. Data Storage and Security
All communication with the Service uses HTTPS/TLS encryption.
Anonymized records are stored in Google BigQuery hosted in the United States (GCP region: US). Data stored within Google Cloud Platform is encrypted at rest by default.
Access to stored data is restricted to authorized administrative and technical processes required to operate the Service.
7. Cookies and Website Functionality
The website runs on WordPress and may use basic functional cookies necessary for:
- session management
- login authentication
- security protection
- CSRF verification
- basic website functionality
These cookies are not used for advertising or cross-site behavioral tracking.
The website may use analytics and diagnostic tools, including Google Analytics 4 (GA4) delivered through Google Tag Manager (GTM), to measure website performance, understand aggregated usage patterns, and analyze key interaction events related to the Service.
These tools may process technical information such as browser type, device information, approximate geographic region, pages visited, session activity, and interaction events.
ClickFraudLab does not use analytics tools for personalized advertising, cross-site advertising profiles, or sale of user data.
8. Why Anonymized Data Is Stored
Anonymized anomaly records are retained exclusively for:
- research into click fraud trends
- improvement of anomaly detection methods
- aggregated statistical analysis
- identifying broad patterns across advertising niches
Stored data is not sold to third parties and is not used for advertising purposes.
9. Data Retention
Uploaded CSV files are not retained after processing.
Anonymized statistical records may be retained indefinitely because they are designed not to contain personally identifiable information.
If future features introduce optional user accounts or email-based functionality, additional retention terms may be published separately.
10. Your Rights
Because the Service is designed not to store personally identifiable information, it may not be possible to associate stored records with a specific individual.
If you have questions regarding privacy or applicable privacy regulations, you may contact us and we will respond within a reasonable time.
Residents of certain jurisdictions, including California and the European Economic Area, may have additional rights under applicable privacy laws.
11. Third-Party Infrastructure Providers
The Service relies on third-party infrastructure providers, including:
- Google Cloud Platform (BigQuery)
- Google Apps Script
- WordPress hosting infrastructure
These providers operate under their own terms and privacy policies.
12. Contact
For questions regarding this Privacy Policy, please contact:
13. Changes to This Policy
This Privacy Policy may be updated periodically to reflect changes to the Service, infrastructure, or applicable law.
Continued use of the Service after updated terms are published constitutes acceptance of the revised Privacy Policy.