Terms of service.

Overview

1. Who we are

Nathan Schram Digital is a registered Australian business name (ABN 32 380 848 852, registered with ASIC), operated as a sole-trader practice by Nathan Schram. Trading address: PO Box 5, Abbotsford VIC 3067, Australia. Contact: hello@nathanschram.com.

2. What Auditor Toolkit is

3. Who these Terms apply to

• NSD operators — Nathan Schram and any NSD personnel granted access in future. Internal use of the toolkit is governed by NSD's internal access controls and these Terms by reference.
• Clients of NSD — businesses that engage NSD for analytics services and grant partner access to their platform assets. Sections 4–7 apply directly to you.
• End users of clients' websites, apps, or social properties — these Terms do not create a direct relationship with you. Your relationship is with our client. NSD acts as a data processor for our clients, not as a controller. To exercise your right to deletion, see our data deletion instructions.
• Meta and other platform providers — Auditor Toolkit operates under Meta's Platform Terms, Developer Policies, and Marketing API access tier rules, plus the equivalent terms of every other platform we integrate with. Where these Terms conflict with a platform provider's terms, the platform provider's terms take precedence.

4. Authorisation and access

• Clients authorise NSD to access their Meta business assets via the Meta Business Portfolio "Partners" feature, granting NSD's verified Business Portfolio (Nathan Schram Digital, BP ID 1343600487608466) the agreed asset roles. Equivalent grants apply for other platforms (Google Analytics user roles, Search Console permissions, Ads MCC linkage, etc.).
• Clients may revoke access at any time via the relevant platform's UI (e.g. business.facebook.com/settings/partners for Meta, Google's user-management screens for GA4/Ads/Search Console). Revocation takes effect immediately on the platform's side; NSD removes any locally cached or warehoused data on the timelines described in our data deletion instructions.
• Clients warrant they have the lawful authority to grant the access they grant — i.e. they own the assets, or are authorised by the asset owner to grant agency access on the owner's behalf.
• NSD will not request or use access beyond the scope required to deliver the agreed analytics services.
• LinkedIn Marketing Solutions — the client assigns Nathan Schram Digital an appropriate role on their LinkedIn Ad Account (Viewer, Campaign Manager, or Account Manager, depending on the scope of the engagement) and, where relevant, on their LinkedIn Company Page. Our LinkedIn developer application authenticates against these authorised accounts via OAuth 2.0 using tokens that we rotate and store in our secrets manager. The client can revoke our role at any time from Campaign Manager, which immediately cuts off our access without affecting any other client.

5. Client obligations

By granting NSD access, you agree to:

• Provide accurate identifying information for the assets you're sharing.
• Notify NSD promptly when access should be revoked — for example, when the engagement ends, when authorised personnel change, or when a security incident requires rotation.
• Not require NSD to use access for purposes that would violate Meta's Platform Terms, Developer Policies, or Community Standards (or the equivalent rules of any other platform we integrate with).
• Comply with applicable privacy law in your own jurisdiction relating to the data you direct NSD to process — for example, the Australian Privacy Principles, GDPR, CCPA, or similar.

6. NSD obligations

We agree to:

• Use the access you grant only for the analytics purposes we've agreed.
• Apply commercially reasonable security measures to data we warehouse, including encryption at rest, access controls, and audit logging.
• Comply with Meta's Platform Terms, Developer Policies, Marketing API access tier rules, and the equivalent terms of every other platform we integrate with.
• Honour data deletion requests per our data deletion instructions — typically within 30 days for live systems and 90 days for backups.
• Not sell, re-license, or share warehoused client data with any third party without your explicit consent.
• Not use warehoused client data for purposes other than delivering the agreed services to that client — except as permitted in §8 (anonymous, aggregated benchmarks).
• Apply the same restricted-use rules to data from Meta, LinkedIn, and other advertising platforms — we will not resell platform-derived data to data brokers or ad networks, will not use it to make decisions about credit, employment, education, housing, insurance, or tenancy eligibility, will not derive sensitive personal characteristics from it, and will not re-identify pseudonymised or hashed identifiers a platform provides. The Meta-specific articulation of these rules sits in §7 below; the LinkedIn-specific articulation sits in §7a.
• Handle advertising-form PII strictly as a processor — where an engagement involves handling individually-identifying data submitted through advertising features (for example, LinkedIn Lead Gen Form responses or Meta Lead Ads), we process those records solely for the client's reporting and CRM integration purposes, never for our own marketing, and we apply the same retention and security controls described elsewhere in these Terms and in our Privacy Policy.

7. Meta platform terms (binding)

Use of Auditor Toolkit's Meta integration is subject to:

• Meta Platform Terms
• Meta Developer Policies
• Meta Marketing API Terms (referenced from the above)

Specifically, NSD will not:

• Sell or transfer Meta-derived data to data brokers, ad networks, or other third parties for monetisation.
• Use Meta data to make decisions about credit, employment, education, housing, or insurance eligibility.
• Combine Meta data with data obtained from other platforms in ways prohibited by Meta's policies.
• Use Meta data to derive sensitive categories about individuals (race, religion, health, sexual orientation, political affiliation, etc.) that Meta prohibits.
• Re-identify pseudonymised or hashed identifiers Meta provides.

7a. LinkedIn platform terms (binding)

Our use of LinkedIn Marketing Solutions APIs is governed by the LinkedIn API Terms of Use and the LinkedIn Marketing Developer Platform terms, including the requirements that we:

• use LinkedIn data solely for the purposes the client has engaged us for;
• not combine LinkedIn data with data from other sources except as expressly permitted;
• not use LinkedIn data to derive sensitive personal characteristics or to make decisions about credit, employment, insurance, housing, or eligibility for government benefits;
• delete LinkedIn data when no longer required for the engagement or when the client revokes our access; and
• comply with LinkedIn's data security and breach notification obligations.

These obligations bind us regardless of any other provision of these Terms. Where any conflict arises, the LinkedIn platform terms prevail in respect of LinkedIn data.

8. Intellectual property

• The Auditor Toolkit codebase, data models, query logic, dashboards, and report templates are NSD intellectual property.
• Client data passing through Auditor Toolkit remains client property. NSD holds it as a processor, not a controller.
• Aggregated, anonymised insights generated by NSD across multiple clients (where no individual client is identifiable) may be used by NSD for benchmarking, capability development, internal R&D, and marketing — unless your specific engagement agreement says otherwise.

9. Service availability

Auditor Toolkit currently operates as an internal NSD tool. We aim for high availability but do not currently offer a service-level agreement. Scheduled maintenance, infrastructure failures, third-party API outages (Meta, Google, etc.), API deprecations, and rate-limit throttling can interrupt data flow. We will communicate material outages to affected clients.

10. Fees

The Auditor Toolkit application itself is operated by NSD at our own cost. Any fees clients pay are for the analytics services delivered using the toolkit, governed by a separate engagement agreement (statement of work, retainer, or similar). Nothing in these Terms creates a payment obligation independent of that engagement agreement.

11. Termination

Either party may terminate the engagement at any time:

• Clients may revoke partner access via the relevant platform UI at any time, with immediate effect on the platform side.
• NSD may suspend or terminate access if a client breaches these Terms, breaches Meta's (or another platform's) terms via NSD's connection, or fails to pay for related services per the engagement agreement.

On termination, data deletion follows the timelines in our data deletion instructions.

12. Disclaimers and limitation of liability

Auditor Toolkit is provided "as is" without warranty, express or implied. To the extent permitted by Australian law:

• NSD is not liable for losses arising from third-party platform changes, outages, API deprecations, rate-limit changes, or policy enforcement actions outside our control.
• NSD's total liability for any claim arising from these Terms is limited to the fees paid by the client for the relevant engagement in the 6 months preceding the claim.
• Nothing in these Terms excludes or limits any consumer guarantee, statutory warranty, or liability that cannot be lawfully excluded under the Australian Consumer Law.

13. Governing law

These Terms are governed by the laws of Victoria, Australia. The exclusive jurisdiction for any dispute is the courts of Victoria.

14. Changes to these Terms

15. Contact

• Email: hello@nathanschram.com (use a "Terms question" subject line for routing)
• Postal: Nathan Schram Digital, PO Box 5, Abbotsford VIC 3067, Australia

If you have a complaint we can't resolve, the Office of the Australian Information Commissioner (OAIC) is the relevant regulator: 1300 363 992, oaic.gov.au.

For anything this page doesn't cover, our privacy policy is the source of truth on data handling and our data deletion instructions cover how to exercise erasure rights. The engagement agreement (statement of work or retainer) governs the commercial relationship with each client. If anything is unclear, get in touch — we'll explain plainly.