Privacy Policy
Last updated: June 2, 2026
This Privacy Policy explains how NiLa Digital Strategy (“NiLa,” “we,” “us”) collects, uses, and protects information in the NiLa client portal at portal.nilastrategy.com(the “Portal”). The Portal is an invite-only dashboard for NiLa’s clients. By using it you agree to this policy.
Information we collect
- Account & identity. Authentication is handled by Clerk. We receive your name and email address to identify your account; we do not store passwords.
- Engagement data. Business name, tasks, documents, invoices, and subscription status related to your engagement with NiLa.
- Connected analytics (only if you connect them). If you connect Google, we read your Google Analytics, Search Console, and Google Business Profile metrics. If you connect Instagram, we read your Instagram Business account insights (reach, views, followers, top posts) through its linked Facebook Page. We request read-only access and never post on your behalf.
- Files. Documents and creative you or NiLa upload, stored privately in DigitalOcean Spaces.
- Payments. Billing is processed by Stripe. We do not collect or store card numbers.
How we use information
- Operate the Portal and show your performance metrics, tasks, documents, and billing.
- Generate plain-language performance summaries from your connected metrics.
- Send service notifications (invites, invoices) by email.
- Maintain security and prevent abuse.
Service providers
We share data only with providers that help us run the Portal, under their terms:
- Clerk (authentication), Stripe (payments), DigitalOcean (hosting & file storage), Resend (email).
- Google APIs and Meta/Instagram APIs — to read the analytics you explicitly connect.
Google user data
NiLa’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We use Google data solely to display your analytics in the Portal, do not transfer it except as needed to provide that feature, do not use it for advertising, and do not allow humans to read it except with your consent, for security, or as required by law.
Meta / Instagram data
When you connect Instagram, we access your Instagram Business account’s insights through the Meta Graph API in accordance with the Meta Platform Terms and Developer Policies. We use this data only to display your social performance in the Portal. You can disconnect at any time from the Metrics page.
Data retention
We retain engagement data for the duration of your engagement and as needed for legal and accounting purposes. Connected-account tokens are stored only while connected and are deleted when you disconnect. You can request deletion at any time — see Data Deletion.
Your choices
- Disconnect Google or Instagram at any time from the Portal’s Metrics page — this revokes our access and removes the stored tokens.
- Request access to or deletion of your data via the contact below.
Contact
Questions or requests: [email protected].