Privacy Policy - Growth Monster

Privacy Policy

Last Updated: [Date - e.g., October 26, 2023]

1. Introduction

Welcome to Growth Monster ("we," "us," "our"). We are committed to protecting the privacy of individuals whose personal information we handle. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you visit our website, mygrowthmonster.com (the "Site"), use our services (the "Services"), or otherwise interact with us.

We operate primarily from Australia but provide services globally. We comply with the Australian Privacy Principles (APPs) contained within the Privacy Act 1988 (Cth) and endeavour to adhere to other applicable international data protection laws like the General Data Protection Regulation (GDPR) where relevant.

By using our Site or Services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We may collect various types of information, including:

  • Personal Identification Information: Name, email address, phone number, company name, job title, physical address, billing information, account credentials.
  • Client Data: Information provided by our clients about their business, target audience, marketing goals, customer relationship management (CRM) data (where access is granted), and performance metrics necessary to provide our Services. Clients are responsible for ensuring they have the necessary rights and consents to share this data with us.
  • Usage Data: Information about how you access and use our Site and Services, including IP address, browser type, operating system, referring URLs, pages viewed, time spent on pages, links clicked, and interaction data.
  • Marketing and Communications Data: Your preferences in receiving marketing from us and our third parties and your communication preferences.
  • Advertising Interaction Data: Information related to your interaction with advertisements we manage on behalf of our clients (e.g., clicks, views, conversions), collected via platforms like Meta (Facebook/Instagram) and potentially others. This data is often pseudonymized or aggregated.
  • Cookies and Tracking Data: We use cookies and similar tracking technologies (like pixels) to track activity on our Site, manage advertising campaigns, and gather usage data. See Section 7 for more details.

3. How We Use Your Information

We use the collected information for various purposes:

  • To Provide and Maintain our Services: Including setting up accounts, delivering lead generation campaigns, managing CRM integrations, providing automated nurturing (SMS/Email), reporting on performance, and fulfilling our contractual obligations under our performance partnership agreements.
  • To Improve our Services: Analyzing usage data to understand trends, optimize campaign strategies, enhance website functionality, and develop new features.
  • To Communicate With You: Responding to inquiries, providing customer support, sending service-related updates, administrative messages, and invoices.
  • For Marketing and Promotions: Sending newsletters, promotional materials, and other information that may be of interest to you, where you have consented or where permitted by law. You can opt-out at any time.
  • For Advertising: To manage, track, and optimize advertising campaigns run on behalf of our clients on platforms like Meta.
  • Using AI and Automation: To assist in workflow automation, analyze performance data, optimize campaign parameters, and enhance the efficiency of our Services. Data used for these purposes is handled securely and in accordance with our agreements with AI providers (like OpenAI) and our clients.
  • For Security and Fraud Prevention: Monitoring for suspicious activity and protecting the integrity of our Site and Services.
  • To Comply with Legal Obligations: Fulfilling legal requirements, responding to lawful requests from public authorities.

4. Legal Basis for Processing (for GDPR applicability)

If you are in the European Economic Area (EEA), our legal basis for collecting and using personal information depends on the information concerned and the specific context:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose (e.g., subscribing to a newsletter).
  • Contract: Where processing is necessary for a contract we have with you (or our client), or because you have asked us to take specific steps before entering into a contract.
  • Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, provided those interests are not overridden by your rights and interests (e.g., improving our services, marketing analysis, security).
  • Legal Obligation: Where processing is necessary for us to comply with the law.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information with third parties only in the ways described in this policy:

  • Service Providers: We engage third-party companies and individuals to facilitate our Services ("Service Providers"), such as CRM platforms (e.g., HighLevel), email and SMS delivery platforms, advertising platforms (Meta, Google), analytics providers (e.g., Google Analytics), payment processors, cloud hosting providers, and AI tool providers (e.g., OpenAI, Taskade for internal workflow). These providers have access to your personal information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
  • Clients: We share generated leads and performance data related to campaigns run specifically for a client, directly with that client as part of our Service delivery.
  • Legal Requirements: If required by law, subpoena, or other legal process, or if we have a good faith belief that disclosure is reasonably necessary to (a) comply with a legal obligation, (b) protect and defend our rights or property, (c) prevent or investigate possible wrongdoing in connection with the Service, (d) protect the personal safety of users or the public, or (e) protect against legal liability.
  • Business Transfers: If Growth Monster is involved in a merger, acquisition, or asset sale, your Personal Information may be transferred. We will provide notice before your Personal Information is transferred and becomes subject to a different Privacy Policy.
  • With Your Consent: We may disclose your personal information for any other purpose with your explicit consent.

6. International Data Transfers

Your information, including Personal Information, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction (e.g., Australia, USA, EU). We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy, implementing appropriate safeguards where required.

7. Cookies and Tracking Technologies

We use cookies, pixels, and similar tracking technologies to track activity on our Site and hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier.

Examples of Cookies we use:

  • Session Cookies: To operate our Service.
  • Preference Cookies: To remember your preferences and various settings.
  • Security Cookies: For security purposes.
  • Advertising Cookies: To serve you with advertisements that may be relevant to you and our clients' services (including via third-party platforms like Meta).
  • Analytics Cookies: To help us understand how our Site is being used.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service. You can usually manage cookie preferences in your browser settings.

8. Data Security

The security of your data is important to us. We implement reasonable administrative, technical, and physical security measures designed to protect your personal information from unauthorized access, use, alteration, or disclosure. However, remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security.

9. Data Retention

We will retain your Personal Information only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

10. Your Data Protection Rights

Depending on your location and applicable law (including APP and GDPR), you may have the following rights regarding your personal information:

  • The right to access – You have the right to request copies of your personal data.
  • The right to rectification – You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • The right to erasure – You have the right to request that we erase your personal data, under certain conditions.
  • The right to restrict processing – You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • The right to object to processing – You have the right to object to our processing of your personal data, under certain conditions.
  • The right to data portability – You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

To exercise any of these rights, please contact us using the details below. We may need to verify your identity before responding to your request. You also have the right to lodge a complaint with a relevant data protection authority (like the Office of the Australian Information Commissioner (OAIC) or your local EU supervisory authority).

11. Children's Privacy

Our Service does not address anyone under the age of 18 ("Children"). We do not knowingly collect personally identifiable information from children. If you are a parent or guardian and you are aware that your Child has provided us with Personal Information, please contact us. If we become aware that we have collected Personal Information from children without verification of parental consent, we take steps to remove that information from our servers.

12. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes. Changes are effective when they are posted on this page.

13. Contact Us

If you have any questions about this Privacy Policy, please contact us:

  • By email: [email protected]
  • By visiting this page on our website: [Link to Contact Page on mygrowthmonster.com if available]