Privacy Policy

1. Who We Are

Bennell & Co is a digital marketing and software engineering practice based in Australia. We develop and operate tooling that accesses the Google Ads API on behalf of our clients to manage and optimise their paid search campaigns.

This policy applies to the website bennell.com.au and to the services Bennell & Co provides to its clients.

2. Data We Collect

• →Google Ads campaign data — performance metrics (impressions, clicks, conversions, spend) accessed via the Google Ads API on behalf of clients who have explicitly authorised us to manage their accounts. This data is processed in memory to generate reports and optimise campaigns and is not persisted to our own databases.
• →Client contact details — name, email address, and business name provided when engaging our services. Stored securely and used only for service delivery and billing purposes.
• →Website analytics — anonymised usage data collected via standard analytics tooling (page views, referrers, session duration) to improve the site. No personally identifiable information is collected at this layer.

3. How We Use Your Data

Data is used solely to deliver the services you or your organisation have engaged us for:

• →Generating campaign performance reports for clients
• →Optimising Google Ads campaigns on behalf of clients who have authorised access
• →Communicating about project scope, deliverables, and billing

We do not use client data for our own marketing and we do not build profiles from campaign data beyond what is required to deliver the contracted service.

4. How We Protect Your Data

• →Campaign data is processed in memory only and is not written to persistent storage on our own infrastructure. The authoritative source remains your Google Ads account.
• →Contact details are stored in industry-standard SaaS platforms with encryption at rest and in transit. Access is restricted to authorised personnel only.
• →API credentials (OAuth tokens) are stored in encrypted secret stores and rotated on a regular schedule. They are never logged or written to unencrypted storage.

5. Third-Party Sharing

We do not sell, rent, or share your personal data with third parties for their own marketing or commercial purposes.

Campaign data accessed via the Google Ads API is used solely to manage your own campaigns on your behalf. Google processes this data under Google’s own Privacy Policy.

We may disclose data where required by Australian law or a valid legal process.

6. Google Ads API Data Use

Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

• →Data from Google APIs is used only to provide or improve the service requested by the client whose account was accessed.
• →We do not use Google API data to serve advertisements.
• →We do not allow humans to read this data unless you have given us explicit permission, it is necessary for security purposes, or it is required by law.
• →We do not transfer this data to third parties except as necessary to provide the service, with your explicit permission, or as required by law.

7. Your Rights

You may request access to, correction of, or deletion of any personal data we hold about you at any time. To exercise these rights, contact us at:

matt@bennell.com.au

We will respond to all privacy requests within 30 days. Where deletion is requested, we will confirm once complete or explain any legal obligation that requires us to retain specific data.

8. Governing Law

This policy is governed by the laws of Queensland, Australia, and applicable federal privacy legislation including the Privacy Act 1988 (Cth) and the Australian Privacy Principles.

9. Changes to This Policy

We may update this policy from time to time. The “last updated” date at the top of this page will reflect any changes. Continued use of our services after an update constitutes acceptance of the revised policy.