OotyOoty
SEOComing soonSocialComing soonVideoComing soonAdsComing soonAnalyticsComing soonCommerceComing soonCRMComing soonCreatorsComing soon
Join the waitlist
FeaturesToolsPricingDocs

Products

SEOComing soonSocialComing soonVideoComing soonAdsComing soonAnalyticsComing soonCommerceComing soonCRMComing soonCreatorsComing soon
FeaturesToolsPricingDocs
Log in
Join the Waitlist

Launching soon

OotyOoty

AI native tools that replace expensive dashboards. SEO, Amazon, YouTube, and social analytics inside your AI assistant.

Product

  • Features
  • Pricing
  • Get started

Resources

  • Free Tools
  • Docs
  • About
  • Blog
  • Contact

Legal

  • Privacy
  • Terms
  • Refund Policy
  • Security
OotyOoty

AI native tools that replace expensive dashboards. SEO, Amazon, YouTube, and social analytics inside your AI assistant.

Product

  • Features
  • Pricing
  • Get started

Resources

  • Free Tools
  • Docs
  • About
  • Blog
  • Contact

Legal

  • Privacy
  • Terms
  • Refund Policy
  • Security

Stay in the loop

Get updates on new tools, integrations, and guides. No spam.

ยฉ 2026 Ooty. All rights reserved.

All systems operational
  1. Home
  2. /
  3. Blog
  4. /
  5. ai marketing
  6. /
  7. How Ooty Protects Your Marketing Data
12 March 2026ยท7 min read

How Ooty Protects Your Marketing Data

Your credentials never leave our servers. Here's how Ooty's proxy architecture keeps your marketing accounts safe, and the trade-offs we've made.

By Finn Hartley

When you connect ChatGPT, Gemini, or Claude to your Google Analytics account through Ooty, your Google password never touches our systems. Neither does your Meta login, your Amazon credentials, or any other platform password.

We use OAuth, the same authentication flow that Google, Meta, and Amazon use for every third-party app you've ever connected. You approve access on their consent screen, they send us a token, and that token is all we ever see.

This post explains how we protect those tokens, what we store and don't store, and the trade-offs we've made. Including the ones that aren't in our favour.

The problem with most AI marketing tools

Most MCP tools that connect AI assistants to marketing platforms ask you to manage your own API keys. Your Google API key, your Meta app secret, your Amazon credentials, all sitting in a config file on your laptop.

For developers, this is a reasonable trade-off. For marketing teams, it's a serious problem.

API keys in local config files are:

  • Accessible to any process running on your machine
  • Regularly committed to git repos by accident (over 12.8 million secrets were detected in public GitHub commits in 2023, GitGuardian, 2024)
  • At risk when your laptop is shared, lost, stolen, or compromised
  • Your responsibility to rotate, revoke, and keep safe

Some tools go further in the wrong direction. They store credentials in plaintext configuration files with no encryption at all. If someone gets access to that file, they have your marketing accounts.

Ooty takes a different approach entirely.

Your credentials stay on our servers

How Your Data Stays Protected

Your credentials never reach your machine. Data flows through Ooty without being stored.

Your Machine

Zone 1

Your AI assistant

A license key(revocable any time)

No API credentials(ever)

Encrypted connection

Ooty Servers

Zone 2

Validates your identity

Retrieves your encrypted credentials

Calls the platform API on your behalf

Data passes through, nothing stored

Authenticated requests

Marketing Platforms

Zone 3

Google, Meta, Amazon, YouTube

Connected via OAuth(minimum scopes)

Credentials encrypted at rest

Your API credentials never leave Zone 2. They are encrypted at rest, decrypted only for the instant of each request, and never sent to your machine.

Here's the short version: your marketing credentials never exist on your machine. Not in a config file, not in memory, not anywhere.

When you ask your AI assistant a question like "What were my top traffic sources last month?", here's what happens:

See where your marketing team stands on AI adoption. Free, takes 2 minutes.

Take the free assessmentView pricing
Share
Finn Hartley
Finn Hartley

Product Lead at Ooty. Writes about MCP architecture, security, and developer tooling.

Continue reading

15 Mar 2026

What Is MCP? The Protocol That Connects AI to Your Marketing Data

Most marketing teams use AI the same way: copy data from one dashboard, paste it into ChatGPT, Gemini, or Claude, ask a question, and hope the answer is useful. The AI does its best with a screenshot or a CSV export, but it is working with a snapshot, not your

25 Feb 2026

MCP Security: 10 Things That Actually Matter

MCP is moving from experimental to production fast. AI assistants connected to live APIs, databases, and third-party services are no longer a proof-of-concept. They're running in companies of all sizes, handling real data, right now. The security model for MCP

11 Apr 2026

Introducing Ploti: Free Interactive Charts for Any AI Assistant

Charts have always lived outside AI conversations. You run an analysis, get a table of numbers, and then open a separate tool to visualize it. Ploti changes that. It is a free, open-source MCP server that renders 43 chart types as interactive widgets directly

On this page

  • The problem with most AI marketing tools
  • Your credentials stay on our servers
  • How we handle authentication
  • What we store vs. what we don't
  • What you can do
  • When Ooty takes action on your accounts
  • The honest trade-offs
  • Why we built it this way
  • Why we're telling you all this
  1. Your AI assistant sends the request to Ooty's servers, authenticated with your license key.
  2. Our server validates your identity and retrieves your encrypted credentials.
  3. We decrypt those credentials in memory, call the upstream platform (Google Analytics, in this case), and get your data.
  4. The response flows back through our server to your AI assistant.
  5. Your AI synthesises the data and presents the answer.

The whole round-trip takes under a second. Your marketing data flows through our servers but is never stored. We're a conduit, not a warehouse.

How we handle authentication

How It Works

From question to answer in under two seconds. Your credentials never leave our servers.

1
๐Ÿ’ฌ

You ask a question

"How did our organic traffic change this month?"

2
๐Ÿ”

Ooty verifies your identity

Your license is checked instantly. No passwords, no extra logins.

3
๐Ÿ›ก๏ธ

Your data is retrieved securely

Ooty connects to the platform on your behalf. Your credentials never leave our servers.

4
โœ…

The answer appears in your conversation

Insights delivered in plain language, right where you asked.

When you connect a platform like Google, you go through their standard OAuth consent screen. This is the same "Allow access?" prompt you've seen when connecting any app to your Google account.

Here's what matters:

  • We never see your password. OAuth means the platform authenticates you directly. We receive a token, not your login credentials.
  • We request minimum permissions. Each Ooty product only asks for the scopes it needs. Ooty Analytics doesn't request advertising permissions. Ooty Video doesn't request Search Console access. This follows GDPR data minimisation principles.
  • Tokens are encrypted at rest. Your OAuth tokens are encrypted using industry-standard encryption before they're stored. The encryption keys are kept separate from the database, so compromising one doesn't compromise the other.
  • Tokens are never stored in plaintext. Not in our database, not on disk, not in logs.

What Each Product Connects To

Every product requests only the minimum permissions it needs. You choose which platforms to connect.

SEO

Search Performance

Google Search Console

Google Business Profile

Read-only search and listing data

Ads

Paid Advertising

Google Ads

Meta Ads

Read + write with preview-first safety

Social

Social Media

Instagram

LinkedIn

X

Reddit

Read + write with preview-first safety

Video

Video Analytics

YouTube

TikTok

Read-only channel and video data

Analytics

Web Analytics

Google Analytics

Read-only traffic and event data

Commerce

E-Commerce

Amazon

Etsy

Read + write with preview-first safety

What we store vs. what we don't

We store:

  • Your Ooty account credentials (email, hashed password)
  • License key records
  • Encrypted OAuth tokens for connected platforms
  • Usage logs (which tool was called and when, not what data came back)

We don't store:

  • Your marketing data (analytics reports, ad performance, search queries)
  • API response payloads
  • Your ad creative or campaign content
  • Your platform passwords

For a deeper look at the security model, see our MCP security guide.

What you can do

You're never locked in and always in control.

  • Revoke access anytime. Go to your Google, Meta, or Amazon account settings and remove Ooty's access. The tokens we hold become useless immediately.
  • Delete your account. If you delete your Ooty account, all stored tokens are destroyed. There's nothing left to decrypt.
  • Check connected platforms. Your Ooty dashboard shows every platform you've connected and when you connected it.
  • Works across your devices. Your license key works on any machine running an MCP-compatible AI assistant. Set it up on your work laptop and home machine with the same credentials. No local processes to manage.

Our getting started guide walks through the full setup in five minutes.

When Ooty takes action on your accounts

Ooty doesn't just read your marketing data. It can take real actions across Google Ads, Meta Ads, TikTok Ads, and Microsoft Ads. Pause campaigns. Adjust bids. Add negative keywords. Swap ad creatives. Boost posts.

How Write Protection Works

The AI proposes. You approve. Nothing executes without your say-so.

1

AI suggests a change

Your assistant proposes an action like "Pause Campaign X" or "Increase bid by 15%".

2
Blocked until approved

Staged in your Ooty dashboard

The proposed change appears as a pending edit in your dashboard. Nothing is sent to the platform.

3

Edit, approve, or reject in the dashboard

Modify the staged edit before approving, approve as-is, or reject entirely. The AI can't bypass this.

4

Only then does it execute

After your explicit approval, Ooty carries out the change on the platform. Not before.

The AI cannot skip ahead. Every write operation is staged as a proposal. Without your approval in the Ooty dashboard, the change never reaches the platform.

On top of the dashboard approval gate, we've added extra guardrails for the changes that could hurt the most:

  • Bid adjustments over 50% require an additional confirmation step
  • New campaigns always start paused. Ooty will never create a live campaign on your behalf.
  • Budget increases over 10x require a separate force confirmation
  • Every write action returns before-and-after state so you can verify exactly what changed

The honest trade-offs

It wouldn't be transparent to present this as all upside.

Trust surface. You're trusting Ooty with your marketing account tokens. We've designed the system to minimise that risk (encryption, no payload storage, narrow scopes, revocable tokens), but you are trusting a company. If you're not comfortable with that, a self-hosted architecture where you hold your own keys is the alternative.

Latency. Every tool call goes through our servers. Compared to a direct API call from your local machine, there's an additional network hop. In practice, 50-150ms of additional latency. Acceptable for interactive use, but worth knowing about for high-throughput automated workflows. For when to use direct APIs instead, see our MCP vs API decision framework.

Scope to our products. The proxy architecture only supports the platforms we've built integrations for. If you need to connect your AI assistant to an internal API or a platform we don't support yet, you'd need a different approach.

No offline use. This is an internet-connected product. It doesn't work offline.

Why we built it this way

The alternative is what most early MCP tools do: give each user instructions for setting up their own API keys with every upstream service and running local servers that hold those keys.

For marketing professionals, that creates too much friction. Setting up a Google Ads OAuth app, a Meta developer account, a YouTube API project, an Amazon PA-API application, all before seeing any value, is where most people stop.

Ooty's approach: sign up, choose your products, go through familiar OAuth consent screens, paste one URL and one key into your AI assistant's config. That's it. No API key management, no developer accounts, no local process management.

The trade-off is trusting us with your tokens. We've tried to make that trust as narrow and as safe as possible.

Why we're telling you all this

We publish how Ooty works because we think you deserve to understand the systems you depend on. If an architecture can only be trusted when users don't understand it, it's the wrong architecture.

If you have questions about how we handle credentials, want to see our data processing documentation, or need anything else, reach us at hello at ooty dot io. We'd rather explain the design than have you make decisions based on assumptions.