Privacy Policy

We are committed to protecting your privacy and ensuring the security of your personal information. This policy explains how we collect, use, and protect your data.

Last Updated: January 15, 2025

Table of Contents

1. Information We Collect

We collect information you provide directly to us, information we obtain automatically when you use our services, and information from third-party sources.

Information You Provide to Us:

  • Account Information: Name, email address, company name, phone number, billing address
  • Payment Information: Credit card details, billing information (processed securely through our payment partners)
  • Campaign Data: SMS messages, email content, recipient lists, WhatsApp messages
  • Support Communications: Information you provide when contacting customer support
  • User Content: Templates, contact lists, campaign materials you create or upload

Information We Collect Automatically:

  • Usage Data: How you interact with our platform, features used, time spent
  • Device Information: IP address, browser type, operating system, device identifiers
  • Log Data: Server logs, API calls, error reports, performance metrics
  • Campaign Analytics: Delivery rates, open rates, click-through rates, engagement metrics

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Provision: To provide, maintain, and improve our SMS, email, and WhatsApp marketing services
  • Campaign Delivery: To send your marketing campaigns to your intended recipients
  • Account Management: To create and manage your account, process payments, and provide customer support
  • Analytics and Reporting: To provide campaign performance analytics and platform usage insights
  • Platform Improvement: To understand how our services are used and improve functionality
  • Security: To detect, prevent, and respond to fraud, abuse, security risks, and technical issues
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes
  • Communications: To send you service-related notifications, updates, and marketing communications (with your consent)
Legal Basis for Processing (GDPR)

We process your personal data based on:

  • Contractual necessity: To fulfill our services to you
  • Legitimate interests: To improve our services and prevent fraud
  • Consent: For marketing communications and non-essential cookies
  • Legal obligations: To comply with applicable laws

3. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share your information in the following limited circumstances:

Service Providers:

  • SMS gateway providers for message delivery
  • Email service providers for email delivery
  • WhatsApp Business API providers
  • Payment processors for billing
  • Cloud hosting providers for data storage
  • Analytics providers for platform insights

Business Transfers:

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction.

Legal Requirements:

We may disclose information when required by law, court order, or to protect our rights, property, or safety, or that of our users or others.

Consent:

We may share information with your explicit consent or at your direction.

4. Data Security

We implement comprehensive security measures to protect your information:

  • Encryption: Data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption
  • Access Controls: Strict access controls and authentication requirements for our systems
  • Regular Audits: Regular security audits and penetration testing
  • Secure Infrastructure: SOC 2 Type II compliant hosting infrastructure
  • Employee Training: Regular security training for all employees
  • Incident Response: Established procedures for security incident response
  • Data Minimization: We collect and retain only the data necessary for our services
Security Certifications

Our platform maintains the following security certifications and compliances:

  • SOC 2 Type II Compliance
  • GDPR Compliance
  • ISO 27001 Information Security Management
  • PCI DSS Level 1 (for payment processing)

5. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this policy:

  • Account Data: Retained while your account is active and for up to 2 years after account closure
  • Campaign Data: Retained for up to 2 years for analytics and compliance purposes
  • Payment Information: Retained as required by financial regulations (typically 7 years)
  • Support Communications: Retained for up to 3 years for quality assurance
  • Log Data: Retained for up to 1 year for security and performance monitoring

You may request deletion of your data at any time, subject to legal retention requirements.

6. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

GDPR Rights (EU Residents):

  • Access: Request a copy of your personal data
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Restriction: Request limitation of processing in certain circumstances
  • Portability: Request your data in a portable format
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent for consent-based processing

How to Exercise Your Rights:

  • Email us at: privacy@social-marketing.digital
  • Use the privacy controls in your account dashboard
  • Contact our support team through the platform

We will respond to your requests within 30 days (or as required by applicable law).

7. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

Types of Cookies We Use:

  • Essential Cookies: Required for platform functionality and security
  • Analytics Cookies: Help us understand platform usage and performance
  • Preference Cookies: Remember your settings and preferences
  • Marketing Cookies: Used for targeted advertising (with your consent)

Managing Cookies:

You can control cookies through your browser settings or our cookie preference center. Note that disabling certain cookies may affect platform functionality.

8. International Data Transfers

We may transfer your data to countries outside your residence for processing and storage. We ensure adequate protection through:

  • Adequacy Decisions: Transfers to countries with adequate data protection laws
  • Standard Contractual Clauses: EU-approved contracts for data transfers
  • Certification Schemes: Providers certified under recognized privacy frameworks
  • Binding Corporate Rules: Internal policies ensuring consistent data protection

9. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16.

If we become aware that we have collected information from a child under 16 without parental consent, we will take steps to delete such information promptly.

Parents or guardians who believe we may have collected information from a child should contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws.

  • We will notify you of material changes via email or platform notification
  • The "Last Updated" date will be revised to reflect the date of changes
  • Your continued use of our services after changes indicates acceptance
  • For material changes, we may seek your explicit consent where required

Questions About This Policy?

If you have questions about this Privacy Policy or our data practices, please contact us:

privacy@social-marketing.digital
+20 (12) 2927-9816
Privacy Officer, Social Marketing Digital
Contact Privacy Team