1. Introduction
Welcome to OnPitch.io! Owned and operated by OnPitch Holdings Inc., we are committed to protecting your privacy. This Privacy Policy outlines how we collect, use, and safeguard your personal information.
2. Information We Collect
We collect personal information that you voluntarily provide when using our website. This may include:
- Contact Information: Such as your name and email address when you register or contact us.
- Profile Information: Details you provide in your user profile.
- Communications: Messages you send to other users or to us.
- Usage Data: Information about how you interact with our website.
- Third-Party Platform Data: Information from connected platforms like Instagram, including account details, access tokens, and connection metadata.
3. How We Use Your Information
We use the information we collect for various purposes, including:
- To Provide and Maintain Our Service: Ensuring the website functions properly and managing third-party integrations.
- To Improve Our Service: Analyzing usage to enhance user experience and platform performance.
- To Communicate with You: Responding to inquiries, updates, and promotional materials.
- To Enforce Our Terms: Preventing misuse of our platform and ensuring compliance with third-party platform policies.
- To Manage Third-Party Integrations: Processing Instagram connections, managing access tokens, and handling platform compliance requirements.
4. Disclosure of Your Information
We may share your information in the following situations:
- With Your Consent: When you agree to share information.
- Service Providers: With trusted third parties who assist us in operating our website.
- Legal Requirements: If required by law or to protect our rights.
- Third-Party Platforms: With Instagram/Meta as required by their platform policies and for authentication purposes.
All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties, excluding aggregators and providers of the Text Message services.
5. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience. You can adjust your browser settings to refuse cookies, but some features may not function properly.
6. Third-Party Links
Our website may contain links to third-party sites not operated by us. We have no control over their content or privacy practices and encourage you to review their policies.
7. Security of Your Information
We strive to protect your personal information using reasonable security measures. However, please be aware that no method of transmission over the internet is entirely secure.
8. Children's Privacy
Our service is not intended for individuals under the age of 13. We do not knowingly collect personal information from children.
9. Your Choices and Rights
You may update or delete your account information at any time. If you wish to unsubscribe from our communications, you can do so by following the instructions provided in our emails. You also have the right to request deletion of your personal data, including data shared with third-party platforms.
10. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page with an updated revision date.
11. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at: ian@onpitch.io.
12. Instagram Integration and Meta Data
When you connect your Instagram account to OnPitch.io, we collect and process the following information:
- Instagram Account Information: Your Instagram username, account ID, page ID, and connection status
- Access Tokens: Secure tokens that allow us to send messages on your behalf
- Connection Data: When you connected your account and connection status
- Message Data: Content and metadata of messages sent through our platform
- Webhook Data: Deauthorization and data deletion requests from Meta
How We Use Instagram Data:
- To send automated responses to your Instagram followers
- To manage your Instagram Business account connection
- To provide customer support and troubleshoot issues
- To comply with Meta's platform policies and data deletion requests
- To process deauthorization requests and maintain compliance
Data Sharing: We share Instagram data only with Meta/Instagram as required by their platform policies and for authentication purposes.
Data Retention: Instagram connection data is retained while your account is connected and for up to 30 days after disconnection for compliance purposes.
Your Rights: You can disconnect your Instagram account at any time, and we will delete all associated data within 30 days.
13. Third-Party Platform Compliance
OnPitch.io integrates with third-party platforms including Instagram (Meta). When you use these integrations:
- We comply with each platform's data handling requirements
- We process data deletion requests as required by platform policies
- We maintain audit logs of data access and modifications
- We implement security measures required by platform guidelines
- We maintain webhook endpoints for compliance verification
For Instagram specifically, we comply with Meta's Data Deletion Requirements and maintain confirmation codes for all deletion requests.
14. Data Deletion and Deauthorization
15. Data Processing and Legal Basis
We process your personal data based on the following legal grounds:
- Contract Performance: To provide our services and manage your account
- Legitimate Interest: To improve our services and ensure platform security
- Consent: When you explicitly agree to data processing
- Legal Obligation: To comply with applicable laws and platform requirements
For Instagram integration specifically, we process data based on your consent to connect your account and our legitimate interest in providing the requested services.
16. International Data Transfers
Your data may be transferred to and processed in countries other than your own. We ensure that such transfers comply with applicable data protection laws and implement appropriate safeguards. When sharing data with Meta/Instagram, we rely on their compliance with applicable data protection frameworks.
17. Data Breach Notification
In the event of a data breach that affects your personal information, we will notify you and relevant authorities in accordance with applicable laws. We maintain incident response procedures and will provide timely updates on any security incidents affecting your data.