Privacy Policy

1. Overview

Client Craft provides CRM, commerce, marketing, analytics, and social messaging tools for businesses. This Privacy Policy explains how we collect, use, store, and protect personal data when you use Client Craft websites, applications, APIs, and integrations.

2. Information We Collect

We may collect account information, user profile information, contact and lead records, customer communications, order and billing records, integration configuration, analytics events, support messages, and technical data such as IP address, device information, logs, and security events.

3. Instagram and Meta Data

When a user connects an Instagram professional account or another Meta asset, Client Craft may process profile information, media metadata, comments, direct message conversations, message content, message status events, postbacks, referrals, and related identifiers that the user authorizes through Meta permissions.

We use this data to display inbox conversations, support replies, sync account content, power automations selected by the account owner, and report operational metrics. We do not sell Instagram or Meta data.

4. How We Use Information

We use information to provide and improve the service, authenticate users, manage tenants and permissions, process orders and payments, deliver CRM and marketing workflows, operate integrations, prevent abuse, comply with legal obligations, and provide support.

5. Sharing and Processors

We share data only when needed to operate the service, comply with law, protect rights and security, or at the direction of the account owner. Service providers may include hosting, storage, email delivery, payment processing, analytics infrastructure, and connected integration providers such as Meta, Google, Stripe, or Twilio.

6. Security and Retention

We use technical and organizational safeguards such as access controls, encryption in transit, protected secrets, audit logs, tenant isolation, and operational monitoring. We retain data for as long as needed to provide the service, meet legal obligations, resolve disputes, and enforce agreements, unless a shorter retention period is required by law or requested by the account owner.

7. Your Choices and Deletion Requests

Users can disconnect integrations, request deletion of integration data, or ask for access, correction, export, or deletion of personal data by contacting us. Some records may be retained where required for security, compliance, accounting, or legal reasons.

8. International Transfers

Client Craft may process data in countries where our infrastructure, service providers, or team members operate. Where required, we use appropriate safeguards for cross-border transfers.

9. Contact

For privacy questions or data requests, contact us at arthur.nassar@client-craft.com.