Privacy Policy

Ninja‑360 Privacy Policy

Effective date: Who we are: [Company Legal Name] (“Ninja‑360”, “we”, “us”, or “our”)
Contact: privacy@YOUR-DOMAIN.com • Address: [Street, City, Country]

Summary: We collect the minimum data needed to run Ninja‑360, use it to provide and improve features, don’t sell your personal information, and give you choices to access, delete, or control it. Scroll for details, including Data Deletion Instructions required by Meta (Facebook).

1) Scope

This Privacy Policy explains how Ninja‑360 handles personal information when you use our websites, apps, and services (collectively, the “Services”), including integrations you choose to connect such as Facebook/Meta. By using the Services, you agree to this Policy.

2) Data we collect

Information you provide to us

  • Account & profile: name, email, password (stored as a hash), company/team information, role.
  • Content & settings: workspaces, projects, preferences, integrations you connect.
  • Support communications: messages, feedback, attachments.

Information collected automatically

  • Usage data: app interactions, feature usage, timestamps, referring/exit pages.
  • Device & log data: IP address, browser type, OS, device identifiers, crash logs.
  • Cookies/SDKs: identifiers that help us keep you signed in, remember settings, measure performance, and (if enabled) tailor content or marketing—see Cookies.

Information from third parties

  • Integrations you connect (e.g., Facebook/Meta): account ID, access tokens, pages/accounts you manage, and content/metrics needed to provide features you request.
  • Payment processors: billing details and limited payment metadata (we do not store full card numbers).
  • Service providers: analytics and customer support tools that generate diagnostic data.

Sensitive data: We do not intentionally collect sensitive personal information (e.g., health, biometric, precise geolocation) unless clearly necessary and you provide it. We do not use it for advertising or sell it.

3) How we use data

  • Provide the Services, including authentication, core features, and integrations you enable.
  • Improve and secure the Services (troubleshooting, analytics, fraud and abuse prevention).
  • Communicate with you (service messages, product updates, and—if you opt in—marketing).
  • Personalize content and settings based on your preferences.
  • Legal compliance and to protect our rights and users.

5) Facebook/Meta permissions & how we use them

When you connect your Facebook/Meta account, we request only the permissions needed for features you choose. We use data solely to provide those features, comply with Meta’s policies, and do not sell it. You can revoke access at any time in your Facebook settings.

Permission What it lets us do How we use it How to revoke
public_profile, email Read your basic profile and email Identify your account and set up login Facebook > Settings > Apps and Websites
pages_show_list, pages_read_engagement See Pages you manage and read insights Let you select a Page and view engagement metrics inside Ninja‑360 Facebook > Settings > Apps and Websites
pages_manage_posts Create/edit/delete Page posts you choose Publish or schedule posts when you explicitly click publish Facebook > Settings > Apps and Websites
ads_read, ads_management Read/manage ad accounts you grant Pull ad performance and manage campaigns you create in Ninja‑360 Facebook > Settings > Business Integrations

We never post on your behalf without your explicit action.

We retain Facebook data only as long as necessary to provide the features you use or as required by law. Upon disconnection or deletion, we delete or de‑identify associated tokens and cached data within the timeframes described below.

6) Cookies & similar technologies

We use cookies/SDKs to make the Services work (e.g., sign‑in, security), measure performance, and (if you opt in) improve content or marketing. You can control optional cookies via our banner or your browser settings. [Link your Cookie Preferences manager here]

  • Strictly necessary – required for login and core functionality.
  • Performance/analytics – aggregated usage and diagnostics.
  • Functional – remember preferences.
  • Marketing (optional) – only if you opt in.

7) How we share information

  • Service providers (processors): hosting, storage, analytics, customer support—bound by contract to use data only for us.
  • With your direction (e.g., when you connect integrations or share content).
  • Legal and safety (to comply with law, enforce terms, protect rights).
  • Corporate transactions (e.g., merger or acquisition) with appropriate safeguards.

We do not sell your personal information. We also do not share it for cross‑context behavioral advertising unless you opt in and where permitted.

8) Retention

We keep personal information only as long as needed for the purposes above, to comply with legal obligations, or resolve disputes. Typical examples:

  • Account data: for your account’s lifetime, then deleted or de‑identified within [30–90] days of deletion.
  • Integration tokens/cache: removed within [24–72] hours after you disconnect or request deletion.
  • Logs/diagnostics: retained for [90–365] days, unless we must keep them longer for security or legal reasons.

9) Security

We use technical and organizational measures such as encryption in transit, access controls, and monitoring. No system is 100% secure; please use a strong, unique password and keep it confidential.

10) International transfers

Your data may be processed outside your country. Where required, we use appropriate safeguards such as Standard Contractual Clauses (and UK/Swiss addenda) to protect it.

11) Your privacy rights

Depending on your location, you may have rights to:

  • Access and port your data; correct inaccuracies.
  • Delete your data, and restrict or object to certain processing.
  • Withdraw consent where processing is based on consent.
  • Opt out of marketing and (where applicable) sale/share of personal information.

To exercise these rights, contact us at privacy@YOUR-DOMAIN.com. You may also have the right to contact your local data protection authority. We will not discriminate against you for exercising your rights.

California (CPRA): You can request to know, correct, or delete personal information and to opt out of sale/share. If we use any sensitive personal information, you may limit its use. Use the links: Do Not Sell or Share and Limit Use of Sensitive PI (if applicable).

12) Children’s privacy

Our Services are not directed to children under 13 (or the minimum age in your country). If you believe a child provided personal information, contact us and we will delete it.

13) Data Deletion Instructions Required for Meta

You can remove Ninja‑360’s access to your Facebook/Meta data at any time and request deletion of related data we store.

  1. Revoke app access on Facebook: Go to Facebook > Settings > Apps and Websites, find Ninja‑360, and remove it. This revokes our access tokens.
  2. Request deletion from Ninja‑360: Email privacy@YOUR-DOMAIN.com with the subject “Delete my data” and include the email you used for Ninja‑360 and (if applicable) your Facebook User ID/Page ID. Or use our form: https://YOUR-DOMAIN.com/data-deletion.
  3. What we delete: Integration tokens, cached Facebook data (e.g., insights, page lists, scheduled posts), and related logs will be deleted or de‑identified within [24–72] hours of verification, subject to legal retention requirements.

14) Changes to this policy

We may update this Policy from time to time. We will post the updated version with a new “Effective date” and, if changes are material, we will notify you by email or in‑app.

15) Contact us

Questions or requests? Contact our privacy team or Data Protection Officer (if appointed):

  • Email: privacy@YOUR-DOMAIN.com
  • Address: [Company Legal Name], [Street], [City], [Postal Code], [Country]
  • EU/UK representative (if required): [Name & Contact]

Legal note: This page provides general information and does not constitute legal advice. Please consult your counsel to tailor it to your specific data practices.

© [Company Legal Name]. All rights reserved.