Legal

Privacy Policy

Effective May 1, 2026

Last updated: May 2026

Rocketeerio ("we", "us", or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our website (rocketeerio.com) and our Facebook lead conversion services (the "Service"). It applies to all users worldwide and is designed to comply with the European Union's General Data Protection Regulation (GDPR) and the Philippine Data Privacy Act of 2012 (RA 10173).

1. Information we collect

We collect personal data in three ways: information you provide directly, information collected automatically when you use our Service, and information received from connected third-party platforms such as Meta (Facebook and Instagram).

a. Information you provide

Account information: name, email address, password, business name, time zone.
Billing information: payment method, billing address, transaction history (processed by our payment processor).
Configuration data: qualification flows, brand voice settings, notification preferences.
Support communications you send to us.

b. Information collected automatically

Device and usage data: IP address, browser type, operating system, referring URL, pages viewed, timestamps.
Cookies and similar tracking technologies (see our Cookie Policy).

c. Information from third parties

Meta integration data: Facebook Page name, message content from users who message your Page, Lead Ad form responses, Instagram DM content. We only access data you have authorized via Meta's OAuth flow.
CRM integration data, if you choose to connect HubSpot, GoHighLevel, Pipedrive, or similar.

2. How we use your information

We use the information we collect to: (a) provide, operate, and maintain the Service; (b) reply to and qualify leads on your behalf as configured by you; (c) send hot-lead notifications to you; (d) improve, personalize, and develop the Service; (e) communicate with you about your account, support requests, and product updates; (f) process payments; and (g) comply with legal obligations.

3. Legal bases for processing (GDPR)

For users in the European Economic Area, we rely on the following legal bases: contractual necessity (to deliver the Service you signed up for), legitimate interest (to operate, secure, and improve our Service), consent (for optional cookies and marketing communications), and legal obligation.

4. Sharing of information

We do not sell your personal data. We share data only with: (a) service providers who help us run the Service, including hosting (Vercel), analytics, and payment processing (Stripe), each bound by data processing agreements; (b) Meta, in order to send and receive messages on your behalf; (c) authorities, when legally required; and (d) acquirers in the event of a merger or acquisition, with notice to you.

5. Data retention

We retain personal data only as long as necessary for the purposes described above and to comply with our legal obligations. Lead conversation data is retained for 24 months by default; you may request earlier deletion at any time. Account data is deleted within 30 days of account closure, except where retention is legally required.

6. Your rights

Subject to applicable law, you have the right to access, correct, update, port, or delete your personal data, to object to or restrict certain processing, and to withdraw consent at any time. EU residents may lodge a complaint with their local data protection authority. Philippine residents may contact the National Privacy Commission. To exercise any of these rights, email privacy@rocketeerio.com and we will respond within 30 days.

7. International data transfers

Rocketeerio operates globally. Your data may be transferred to and processed in countries outside your country of residence, including the United States and the Philippines. Where required, we use Standard Contractual Clauses or other lawful transfer mechanisms.

8. Security

We use industry-standard technical and organizational safeguards to protect your data, including TLS encryption in transit, encryption at rest, regular access reviews, and strict role-based access controls. No system can be guaranteed 100% secure; if a breach occurs that affects your personal data, we will notify you and the relevant authorities without undue delay.

9. Children's privacy

The Service is not intended for individuals under 16. We do not knowingly collect personal data from children. If we become aware that we have, we will delete it promptly.

10. Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated version here and, where required, notify you by email. The "Effective" date at the top reflects the latest revision.

11. Contact us

For any questions about this Privacy Policy or your personal data, contact our Data Protection team at privacy@rocketeerio.com.