Privacy Policy

1. Introduction

Astronaut Party Inc. ("we," "us," or "our") operates a software-as-a-service application that helps businesses optimize their Facebook advertising campaigns. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our service.

By using our service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

• Account Information: Email address, name, and authentication credentials when you create an account
• Facebook Authentication Data: Basic profile information required for Facebook OAuth authentication (name, email, Facebook user ID)

2.2 Facebook Business Data

When you connect your Facebook account, we access and store:

• Facebook Ads account data and performance metrics
• Facebook Pages data associated with your Business Manager
• Facebook Business Manager information
• Advertising campaign data, including ad performance, spend, and audience insights

We access this data through Facebook's Marketing API using the following permissions:

• ads_read - To read your advertising data
• ads_management - To help optimize your campaigns
• business_management - To access your Business Manager data

2.3 Usage and Analytics Data

• Service usage information collected through PostHog analytics
• Log data including IP addresses, browser type, and device information
• Cookies and similar tracking technologies necessary for service functionality

2.4 Data Sync Frequency

We sync with Facebook's API daily and on-demand when you request updates to ensure your campaign data is current.

3. How We Use Your Information

We use your information solely to:

• Provide and improve our Facebook campaign optimization services
• Authenticate your identity and manage your account
• Analyze and optimize your Facebook advertising performance
• Display your Facebook advertising data to you within our application
• Communicate with you about your account and our services
• Comply with legal obligations

We do not:

• Sell your data to third parties
• Use your Facebook data for purposes other than campaign optimization
• Share your advertising data with other users or unauthorized parties

4. Data Sharing and Disclosure

4.1 Third-Party Service Providers

We share limited data with the following categories of service providers:

• PostHog: Analytics platform for understanding service usage
• Cloud Infrastructure Providers: Hosting and data storage services (e.g., AWS, Google Cloud)

These providers are contractually obligated to protect your data and use it only for providing services to us.

4.2 Legal Requirements

We may disclose your information if required by law, court order, or governmental regulation, or to protect our rights, property, or safety.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change.

5. Facebook Platform Compliance

5.1 Facebook Data Usage

• We comply with Facebook's Platform Terms and Policies
• Facebook advertising data is used exclusively for optimizing your campaigns
• We do not use Facebook data to build or augment user profiles
• We do not transfer Facebook data to any data broker or advertising network
• Your Facebook data is only visible to you and authorized users of your account

5.2 Facebook Data Retention

• We retain your Facebook advertising data while your account is active
• Upon account deletion or disconnection from Facebook, we immediately delete all associated Facebook data from our systems

6. Data Retention and Deletion

6.1 Active Accounts

We retain your data while your account is active to provide our services.

6.2 Account Deletion

You can delete your account at any time through our user interface. Upon deletion:

• We immediately remove all your data, including Facebook advertising data
• Your personal information and account data are permanently deleted
• We may retain certain information for legal compliance purposes only (e.g., financial records)

6.3 Deletion Requests

You can request data deletion by:

• Using the account deletion feature in our application
• Emailing us at data@astronautparty.com

We will process deletion requests immediately upon receipt.

7. Your Privacy Rights

7.1 European Users (GDPR)

If you are located in the European Union or United Kingdom, you have the following rights:

• Access: Request a copy of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data
• Restriction: Request limitation of data processing
• Portability: Receive your data in a structured, machine-readable format
• Objection: Object to certain data processing activities
• Withdraw Consent: Withdraw consent for data processing at any time

To exercise these rights, contact us at data@astronautparty.com.

7.2 California Users (CCPA)

California residents have the right to:

• Know what personal information we collect, use, and disclose
• Request deletion of personal information
• Opt-out of the sale of personal information (Note: We do not sell personal information)
• Non-discrimination for exercising privacy rights

To submit a request, email data@astronautparty.com or use our in-app account deletion feature.

8. Cookies and Tracking Technologies

We use cookies and similar technologies that are necessary for:

• User authentication and session management
• Service functionality and performance
• Analytics through PostHog to improve our service

You can control cookies through your browser settings, but disabling cookies may affect service functionality.

9. Data Security

We implement appropriate technical and organizational security measures to protect your data, including:

• Encryption of data in transit and at rest
• Secure authentication mechanisms
• Regular security assessments
• Access controls and monitoring

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

10. Children's Privacy

Our service is not directed to individuals under the age of 13. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. We ensure appropriate safeguards are in place for international data transfers in compliance with applicable laws.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of material changes by:

• Posting the updated policy on our website
• Updating the "Last Updated" date
• Emailing registered users (for significant changes)

Your continued use of our service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

For data protection inquiries from EU/UK users, you may also contact your local data protection authority.