Safety

Data security is non-negotiable.

Adclear is designed for regulated financial services environments where the content is sensitive, policies are private and audit trails must withstand scrutiny.

Book my product tour

Your data is yours...

Your content and policies never leave your control. Adclear is ISO 27001 and SOC 2 Type II certified, and Cyber Essentials Plus accredited. All data is hosted on Google Cloud with UK data residency.

...and we treat your privacy like it’s ours.

Your content is yours.

Every Adclear customer operates in its own dedicated, isolated data environment.

Granular permissions.

Adclear's role-based access control lets you define who can submit content, review and approve it.

Full access visibility.

Every permission configurable by role, team, and content type.

Annual penetration testing

Independent pen testing by a CREST-certified provider. Results are available under NDA.

No cross-client training

Content submitted by you is never used to train Adclear's models for any other customer.

Configurable data residency

Data residency defaults to UK (AWS eu-west-2). US and EU residency available for firms with geographic requirements.

Request our security documentation

Whatever the reassurance you need, request the right documentation using the links below.

SOC 2 Type II report
Request  →
Data processing agreement
Request  →
Security questionnaire
Request  →

Have Security questions? Let’s talk.

See how we secure customer data.

Book my product tour
50,000+ ads cleared
100,000+ ads being monitored

Frequently asked questions

Where is customer data stored?

UK data residency by default, running on Google Cloud Platform. EU and US residency available on enterprise plans. Ask us during procurement and we'll confirm regional options.

How do you handle data deletion?

Customer-controlled retention policies. On account termination, all customer data is deleted within 30 days per our DPA. Logs and backups purged within 90 days.

Do you use customer data for model training?

No. Customer assets and review decisions are never used to train foundation models. Your rules, your data, your control.

What's your incident response SLA?

Severity-based SLAs: 30 minutes acknowledgement for Sev-1, 2 hours for Sev-2, 8 hours for Sev-3. Full incident response playbook shared during procurement.

Can I run Adclear in an isolated tenant?

Yes — enterprise customers get dedicated GCP projects with hardened network boundaries, private endpoints, and optional VPC peering to your infrastructure.

Do you support SSO and SCIM?

Yes — SAML 2.0 and OIDC SSO with all major IdPs. SCIM provisioning on enterprise plans.

How does Adclear's Al model governance work?

Adclear operates a formal model risk management framework aligned to SR 11-7, PRA SS1/23, and ECB TRIM. Models go through three-lines-of-defence validation — development, risk oversight, and independent model validation — before any production deployment. Every version is immutably logged with full rollback support.

Can the Al approve content automatically?

No. Adclear's AI is advisory only and is technically incapable of auto-approving content. Every AI recommendation is presented to a human reviewer. Human override authority is preserved and documented at every step.

What happens if Adclear is unavailable?

A documented non-AI fallback workflow ensures your approval process continues without disruption if the platform is unavailable. No single point of failure in your compliance chain.