Legal

Privacy Policy

Odyssey Operations LLC  ·  Last Updated: April 20, 2026

Section 01

Introduction

Odyssey Operations LLC ("Odyssey Operations," "we," "us," or "our") operates the website odysseyoperations.io and provides digital marketing consulting, analytics dashboard, and advertising management services to automotive dealerships and other business clients ("Clients").

This Privacy Policy explains how we collect, use, store, and protect information in connection with our services, including our use of Google APIs.

Section 02

Information We Collect

2.1 Information You Provide Directly

When you contact us through our website forms or engage our services, we may collect:

  • Name
  • Email address
  • Phone number
  • Business / dealership name
  • Message content
  • Any other information you voluntarily provide

2.2 Information Collected Automatically

When you visit our website, we collect standard analytics data through Google Analytics 4, including:

  • Pages visited, session duration, and engagement metrics
  • Device type, browser, and operating system
  • General geographic location (city-level)
  • Referring source / medium

2.3 Information Accessed Through Google APIs

In the course of providing our analytics dashboard and advertising management services to Clients, we access data from the following Google APIs on behalf of and with the explicit authorization of each Client:

Google Analytics 4 Data API (Read-Only)
We retrieve reporting metrics including users, sessions, pageviews, bounce rates, event counts, and conversion events, along with dimensions such as date, page path, device category, channel group, city, and event parameters. This data is used exclusively to populate the Client's private analytics dashboard.

Google Search Console API (Read-Only)
We retrieve search analytics data including search queries, landing pages, clicks, impressions, click-through rates, and average position, with breakdowns by device, country, and date. This data is used exclusively to populate the Client's private SEO reporting dashboard.

Google Ads API (Read and Limited Write)
Read access: campaign performance metrics, conversion action data, and budget information — used exclusively to populate the Client's private advertising performance dashboard.

Write access (limited): Our application performs automated daily budget adjustments on Client campaigns to maintain even spend pacing against monthly budget targets. Write operations are limited exclusively to the CampaignBudget daily amount field. We do not create, pause, remove, or structurally modify campaigns, ad groups, ads, keywords, targeting criteria, or any other Google Ads entities. All budget adjustments are logged and subject to configurable safety controls including human approval workflows.

Section 03

How We Use Information

3.1 Website Inquiries

Information submitted through website forms is used solely to respond to your inquiry, provide requested information about our services, and communicate with you about potential or active engagements.

3.2 Client Analytics Data

All data retrieved through Google APIs is used exclusively to:

  • Populate the specific Client's private analytics dashboard
  • Generate performance reports for the specific Client
  • Manage the specific Client's advertising budgets as authorized
  • Provide consulting recommendations to the specific Client

We do not use Client data for any purpose other than providing services to that specific Client.

Section 04

Data Storage & Isolation

4.1 Client Data Storage

Data retrieved through Google APIs is stored in a private Google Sheets workbook that is owned and controlled by the Client. The Client's analytics dashboard reads from this workbook using a read-only API key.

Odyssey Operations does not store Google API data on its own servers. All retrieved data resides within Google's infrastructure (Google Sheets) under the Client's Google account ownership.

4.2 Client Data Isolation

Each Client's data is stored in a separate Google Sheets workbook. There is no cross-client data access, aggregation, or sharing. One Client's data is never accessible to another Client or used in connection with another Client's services.

4.3 Website Form Data

Information submitted through website contact forms is transmitted via email and stored in our business email systems. This data is not combined with Client analytics data.

Section 05

Authentication & Credentials

5.1 OAuth 2.0 Authentication

Clients authorize access to their Google data through Google's standard OAuth 2.0 consent flow. This process is managed entirely within Google Apps Script, which is part of Google's infrastructure.

5.2 Credential Handling

Odyssey Operations does not access, intercept, store, or transmit:

  • OAuth access tokens or refresh tokens
  • Google account passwords
  • API keys belonging to Client accounts
  • Any other authentication credentials

All OAuth token management is handled by Google's infrastructure. We never have direct access to raw authentication credentials.

Section 06

Data Sharing & Disclosure

We do not sell, rent, trade, or otherwise share Client data with third parties.

We do not use Client data for advertising, marketing, profiling, or any purpose unrelated to providing services to that specific Client.

We may disclose information only in the following limited circumstances:

  • With the Client's explicit written consent
  • To comply with applicable law, regulation, legal process, or enforceable governmental request
  • To enforce our Terms of Service
  • To protect the rights, property, or safety of Odyssey Operations, our Clients, or others
Section 07

Data Retention

7.1 Client Analytics Data

Client analytics data stored in Google Sheets remains in the Client's Google Sheets workbook for as long as the Client maintains the workbook. Upon termination of services, the Client retains full ownership and control of their Google Sheets workbook and all data within it. Odyssey Operations will revoke its own access to the Client's workbook upon termination.

7.2 Website Form Data

Contact form submissions are retained in our email systems for as long as reasonably necessary to respond to the inquiry and maintain business records.

7.3 Deletion Requests

Clients may request deletion of their data at any time by contacting us at the email address listed in Section 12. We will process deletion requests within 30 days.

Section 08

Data Security

We implement reasonable administrative, technical, and physical safeguards to protect information, including:

  • All data transmission occurs over encrypted connections (HTTPS/TLS)
  • Client data is stored within Google's infrastructure, which maintains SOC 2, ISO 27001, and other security certifications
  • Access to Client workbooks is limited to authorized personnel working on that Client's account
  • Google API access is authenticated through Google's OAuth 2.0 framework
  • Google Ads budget adjustment operations are governed by configurable safety controls

No method of transmission or storage is completely secure. While we strive to protect information, we cannot guarantee absolute security.

Section 09

Google API Services — Limited Use Disclosure

Odyssey Operations' use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

  • We only use Google API data to provide and improve the services described in this Privacy Policy
  • We do not transfer Google API data to third parties except as necessary to provide our services, as required by law, or with explicit user consent
  • We do not use Google API data for advertising or marketing purposes unrelated to the Client's own services
  • We do not use Google API data to develop or improve products or services unrelated to the services we provide to the Client
  • A human can review Google API data only when necessary to provide services to the Client, for security purposes, to comply with applicable law, or when the data is aggregated and anonymized for internal operations
Section 10

Cookies & Tracking

Our website uses Google Analytics 4 to collect standard web analytics data. GA4 uses first-party cookies to distinguish unique users and sessions. We do not use cookies for advertising, retargeting, or cross-site tracking on our own website.

Client websites managed by Odyssey Operations may use additional tracking technologies as described in separate agreements with those Clients.

Section 11

Children's Privacy

Our services are designed for business use and are not directed to individuals under the age of 18. We do not knowingly collect personal information from children.

Section 12

Contact Information

For questions about this Privacy Policy, data access requests, or deletion requests:

Odyssey Operations LLC

Email: ashton@odysseyoperations.io

Website: odysseyoperations.io

Section 13

Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be posted on this page with an updated "Last Updated" date. Continued use of our services after changes constitutes acceptance of the revised policy.

Scroll to Top