Public paid beta

Privacy Policy

How Metricanic handles information for the public paid beta website, application panel, tracking infrastructure, billing flows, integrations, and related services.

Effective date
May 1, 2026
Last updated
May 1, 2026

Scope and Contact

BushWell Inc. operates Metricanic as a public paid beta for business users. Metricanic is offered as a public paid beta. Beta features may change, have limited support or SLA commitments, and may be unavailable or incomplete. No production-grade SLA applies unless separately agreed in writing. Some integrations or advanced features may require configuration, approval, or plan eligibility.

Privacy requests may be sent to privacy@metricanic.com. Support and legal notices may be sent to support@metricanic.com.

Roles

Metricanic acts as a controller or business for information it uses to operate its own service, including account creation, authentication, tenant administration, billing, support, product security, abuse prevention, legal compliance, and website or panel analytics where enabled.

Metricanic generally acts as a processor or service provider for customer campaign, tracking, attribution, event, routing, reporting, postback, and integration data that customers submit to, configure in, or collect through Metricanic.

For visitor tracking data, the customer is usually the controller or business. The customer is responsible for its own lawful basis, privacy notices, cookie notices, consent, opt-outs, and ad platform obligations.

Metricanic provides tools for tracking, attribution, routing, reporting, postbacks, and integrations. Metricanic does not determine customer campaign purposes, audiences, offers, legal bases, consent requirements, or whether a visitor may lawfully be tracked.

Information Metricanic Collects

  • Account and authentication data, such as email address, user ID, tenant ID, login/session metadata, and security metadata.
  • Billing and subscription metadata, including Stripe customer IDs, subscription IDs, price IDs, checkout metadata, invoice metadata, billing status, usage, and plan limit data.
  • Support, diagnostic, audit, request, security, abuse-prevention, and account communication data.
  • Website and panel analytics where implemented, subject to applicable consent requirements.

Customer Tracking and Campaign Data

When customers deploy Metricanic tracking, campaign links, scripts, cookies, redirects, postbacks, direct tracking, APIs, imports, exports, Google Ads conversion uploads, or related integrations, Metricanic may process visitor, click, visit, event, conversion, cost, revenue, and campaign data on behalf of that customer.

  • Visit IDs, click IDs, external IDs, tokens, subids, pubids, placement IDs, creative IDs, and source-specific IDs.
  • IP address, user agent, referrer, approximate location, language, device, operating system, browser, ASN, ISP, connection type, and bot or threat signals.
  • Event, conversion, cost, revenue, value, goal, postback, lander, offer, rotator, campaign, and reporting data.

Customer Responsibilities

Customers, not Metricanic, determine their campaigns, audiences, offers, landing pages, traffic sources, redirects, postbacks, integrations, tracking domains, cookies and scripts deployment, whether and how visitors are tracked, legal bases, consent flows, opt-outs, privacy notices, and ad platform compliance.

Customers are solely responsible for their use of Metricanic, including lawful collection and use of Customer Data, required privacy notices, cookie notices, consents, opt-outs, Do Not Sell or Share handling where applicable, campaign-specific GDPR, ePrivacy, PECR, CPRA, PIPEDA, Quebec Law 25, traffic source, affiliate network, publisher, advertiser, app store, and Google Ads obligations, lander, offer, funnel, and content legality, and the accuracy and legality of data submitted to Metricanic.

Metricanic does not provide legal, privacy, advertising compliance, platform compliance, tax, or regulatory advice. Customers must obtain their own professional advice.

  • Provide required privacy notices and cookie notices.
  • Obtain and record required consent for cookies, tracking, analytics, advertising, profiling, attribution, and similar technologies.
  • Honor opt-outs, withdrawal of consent, Do Not Sell or Share requests, and similar privacy choices where applicable.
  • Comply with applicable traffic source, ad platform, affiliate network, publisher, advertiser, app store, and partner rules.
  • Avoid sending regulated sensitive data to Metricanic unless Metricanic separately approves that use case in writing.

Integrations

If a customer connects Google Ads, Metricanic may process encrypted OAuth refresh tokens, Google Ads customer IDs, and conversion upload data when the integration is enabled. Customers are responsible for ensuring conversion uploads and consent handling comply with Google Ads policies and applicable law.

If a customer connects an OpenAI or ChatGPT MCP integration, the connection may expose workspace data such as setup summaries, aggregate reports, goals, postbacks, rotators, landers, offers, and event health. The MCP connection is designed to exclude raw IPs, raw user agents, raw URLs, secrets, and write access.

How Metricanic Uses Information

  • Provide, operate, maintain, and improve the public paid beta service.
  • Authenticate users, protect accounts, process billing, administer plans, and enforce subscription limits.
  • Provide tracking, attribution, reporting, routing, postbacks, and enabled integrations.
  • Monitor reliability, debug issues, prevent abuse, and respond to support requests.
  • Comply with legal, tax, accounting, security, and recordkeeping obligations.

Sharing and Disclosure

  • Service providers and subprocessors used to operate the service.
  • Payment processors, identity providers, infrastructure providers, analytics providers, and integration providers where applicable.
  • Customers, when processing customer-controlled tracking data.
  • Authorities or third parties when required by law or needed to protect rights, safety, security, or service integrity.
  • Successors in connection with a merger, acquisition, financing, reorganization, or sale of assets.

Retention, Deletion, and Security

Metricanic retains information as long as needed to provide the service, administer subscriptions, maintain security, provide support, comply with legal obligations, resolve disputes, enforce agreements, and operate the public paid beta.

Deletion is request-based unless a specific product workflow states otherwise. Deletion may be limited by legal retention, security, fraud-prevention, audit, billing, tax, accounting, backup, log, provider, or customer-instruction requirements.

Metricanic uses technical and organizational measures intended to protect information, including encryption in transit, tenant isolation, restricted access, secrets handling, audit logs where available, and Cloudflare edge and security controls. No service can guarantee absolute security.

Privacy Rights and Requests

Requests may include access, export, deletion, correction, opt-out, Do Not Sell or Share, and integration revocation. Send requests to privacy@metricanic.com or support@metricanic.com, or use the Privacy Choices and Data Deletion pages.

If a request concerns customer-controlled visitor tracking data, Metricanic may route the request to the relevant customer or act on that customer's instruction because the customer is usually the controller or business for that data.