Your spend, your control, your data
Security and governance are foundational to AdNexus — not an afterthought bolted on later.
How we protect your accounts
OAuth, Never Passwords
We connect to ad platforms via official OAuth. We never see or store your platform passwords.
Encryption Everywhere
All data is encrypted in transit (TLS) and at rest. Access tokens are stored encrypted.
Draft-First by Design
The architecture makes autonomous live changes impossible — a person approves every action.
Audit Logging
Every mutating action is recorded: who did what, when, and which campaign it touched.
Least-Privilege Access
Role-based access control ensures team members only reach the accounts and actions they need.
Data Processing Agreement
A DPA is available for customers with regulatory or procurement requirements.
Compliance
AdNexus is built to SOC 2 control principles, and our formal certification is in progress. We're happy to share our current security posture, sub-processor list, and DPA with prospective customers under NDA.
Have a specific requirement? Reach out and we'll route you to the right details.
Questions about security?
Our team is glad to walk through our controls and documentation.