Privacy Policy
Privacy Policy
This Privacy Policy describes how SignalSuites, a product of COR Clinic, Inc. (“SignalSuites,” “we,” “us,” or “our”), collects, uses, stores, and discloses information when you access or use our platform at signalsuites.com (the “Platform”). By using the Platform, you agree to the terms of this Privacy Policy.
SignalSuites is a Software as a Service (SaaS) platform providing analytics, AI-powered campaign management, and business intelligence tools to marketing agencies and businesses.
Data We Collect
1.1 Account Information
When you register for SignalSuites, we collect:
- Name and contact information (email address, phone number, company name)
- Billing information processed through our third-party payment processor
- Login credentials and authentication data
1.2 Google Ads Performance Data
When you connect your Google Ads account, we access and display:
- Campaign performance metrics (impressions, clicks, cost, conversions, ROAS)
- Ad group and keyword performance data
- Budget and spend information
- Quality scores, bid data, and auction insights
- Conversion tracking data you have configured in your account
1.3 Google Analytics 4 (GA4) Data
When you connect your GA4 property, we access and display:
- Website traffic metrics (sessions, users, pageviews, bounce rate)
- User behavior and engagement data
- Conversion events and goal completions
- Acquisition channel attribution data
- Audience and demographic reports (aggregated, non-personally identifiable)
1.4 Google Search Console Data
- Search query performance (impressions, clicks, average position)
- Page indexing and coverage reports
- Core Web Vitals and site health data
1.5 AI Interaction Data
When you use SignalSuites AI-powered platform features, we may collect and process prompts, queries, campaign context you provide, AI-generated recommendations, and feedback on AI outputs. We do not use your AI interaction data to train general AI models without your explicit consent.
1.6 Usage Data
We automatically collect IP address, browser type, device information, pages visited, features used, log data, and cookies to operate and improve the Platform.
Google OAuth & Scopes We Request
SignalSuites connects to your Google accounts using Google OAuth 2.0. You will be asked to authorize SignalSuites through Google’s secure consent screen before any data is accessed. We never store your Google password or credentials.
The following OAuth scopes are requested when you connect your Google accounts:
| Scope | Purpose |
|---|---|
| adwords | Read Google Ads campaign performance, spend, and keyword data. Read-only access enforced at the application layer — no write operations are performed. |
| analytics.readonly | Read Google Analytics 4 traffic and conversion data to display in your dashboard and generate reports. |
| searchconsole.readonly | Read Search Console query and indexing data to display SEO performance in your dashboard. (Coming soon — not yet active.) |
| userinfo.email | Identify your Google account for authentication and account linking. |
We request read-only scopes only. SignalSuites does not make changes to your Google Ads campaigns, budgets, or settings.
How We Use Your Data
We use the data we collect to:
- Display in your dashboard — Google Ads performance, GA4 analytics, and Search Console data are surfaced in your SignalSuites dashboard for your review
- Generate reports — We compile your connected platform data into reports you can review, download, and share
- Power AI insights — Your data is analyzed by our AI to surface recommendations, flag issues, and answer your questions
- Process payments and manage your account
- Send transactional communications (account notices, security alerts)
- Improve and develop Platform features
- Comply with legal obligations and detect fraud
How We Share Your Data
4.1 Service Providers
We share information with trusted infrastructure vendors (cloud hosting, payment processors, analytics) who are contractually required to protect your data and use it only as directed by us.
4.2 Google Platform
Data is exchanged with Google solely to fulfill your authorized API requests. We are bound by the Google API Services User Data Policy.
4.3 Legal Requirements
We may disclose information if required by law, court order, or governmental authority.
4.4 Business Transfers
If COR Clinic, Inc. is involved in a merger, acquisition, or asset sale, your information may be transferred. We will notify you of any such change.
Data Retention
We retain your data for as long as your account is active or as needed to provide services. You may request deletion of your account and all associated data at any time by contacting support@luxeos.com. We will confirm and complete deletion within 30 days.
Data Security
- Encryption of data in transit (TLS) and at rest
- Secure OAuth token storage — we never store your Google credentials
- Access controls and authentication requirements
- Regular security assessments
In the event of a data breach, we will notify you as required by applicable law, including Arizona A.R.S. § 18-551.
Your Rights & Choices
Revoke Google Access
You can disconnect SignalSuites from your Google account at any time by visiting myaccount.google.com/permissions or through your SignalSuites account settings. Revoking access stops all data collection from that account immediately.
Access and Correction
You may access and update your account information through your account settings or by contacting support@luxeos.com.
Data Deletion
To request deletion of your personal data, email support@luxeos.com with the subject line “Data Deletion Request.” We will process your request within 30 days.
California Privacy Rights (CCPA/CPRA)
California residents have the right to know, delete, correct, and opt out of the sale or sharing of personal information. We do not sell personal information. To exercise your rights, contact support@luxeos.com. We respond within 45 days as required by law.
Healthcare & HIPAA
SignalSuites serves aesthetic medicine practices. We do not intentionally collect Protected Health Information (PHI) as defined under HIPAA. If your use of the Platform may involve PHI, contact support@luxeos.com to discuss Business Associate Agreement requirements before connecting your accounts.
Google API Services User Data Policy
SignalSuites’ use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements:
- We only access Google user data necessary to provide the Platform services
- We do not use Google user data for advertising purposes
- We do not allow humans to read your Google user data except with your express permission, for security purposes, or as required by law
- We do not sell Google user data to any third party
- We do not transfer Google user data to third parties except as necessary to provide the Platform, and only with your authorization
Children’s Privacy
The Platform is not directed to individuals under 18. We do not knowingly collect data from minors. If we become aware of such collection, we will delete it promptly.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by updating the effective date above and, where appropriate, by email. Continued use of the Platform after changes are posted constitutes acceptance.
Contact Us & Data Deletion Requests
For privacy questions, data deletion requests, or to revoke data access, contact us:
9215 N 107th Way, Scottsdale, Arizona 85258
Privacy & data deletion: support@luxeos.com
General support: support@luxeos.com
Google API inquiries: support@luxeos.com
Website: signalsuites.com
