Privacy Policy — Assafar Growth Command Center

Effective date: July 5, 2026

1. Who we are and what this policy covers

This Privacy Policy describes how Assafar Growth Command Center (the “Application”) handles information. The Application is an internal business advertising-management tool operated for Assafar Bio. It connects to Meta’s Marketing API to help our team create, manage, and measure advertising for Assafar Bio products.

This policy covers the information the Application accesses through Meta’s platforms and how that information is used, stored, retained, and deleted. If you have any question about this policy, contact aboulissan@hotmail.com.

2. Authorized internal business use

The Application is used only by authorized business users working for or with Assafar Bio. It is not a public consumer application, it has no public sign-up, and it is not provided as a service to third parties.

3. Information we access

Depending on the permissions granted to the Application by our own business accounts, the Application may access:

  • Campaign and ad configuration information — advertising campaigns, ad sets, advertisements, and advertising creatives belonging to authorized Assafar Bio business assets, including their names, settings, budgets, targeting parameters, and statuses.
  • Advertising insights and performance information — aggregated metrics such as impressions, reach, clicks, spend, and conversion results for authorized business assets.
  • Business asset identifiers — identifiers of the ad accounts, Facebook Pages, Instagram accounts, or Business Portfolios that our business has authorized, used only to address the correct asset through the API.
  • Lead information — where our business runs Meta lead-generation forms, the Application may retrieve the information a person voluntarily submits through those forms (for example name, phone number, and city or address), together with the form and campaign identifiers needed to attribute the lead, so that our team can follow up on that person’s request.

The Application does not request access to personal profiles of the general public, and it does not collect information from people who have no relationship with Assafar Bio advertising or forms.

4. Why we process this information

  • To create, manage, and optimize advertising campaigns for Assafar Bio products.
  • To measure and report advertising performance for our own business assets.
  • To follow up on requests that people voluntarily submit through our lead forms, such as calling a customer back about an order.
  • To keep internal records of our advertising activity and its results.

5. How information is stored

Information retrieved by the Application is stored in access-controlled systems used by the Assafar Bio operations team, including secured servers and business productivity tools (such as spreadsheet-based order and lead management) that are protected by account authentication. Access tokens and API credentials are stored separately from business data and are not published or shared.

6. Access controls and security

  • Access to the Application and to stored information is limited to authorized team members who need it for their work.
  • Connections to Meta’s APIs and to our storage systems use encrypted transport (HTTPS/TLS).
  • Credentials and access tokens are kept in restricted configuration storage and are rotated or revoked when no longer needed.
  • We review access periodically and remove accounts that no longer require it.

7. Service providers and hosting

We use established third-party infrastructure and productivity providers to host our systems and store business records (for example web hosting, server hosting, and cloud-based office tools). These providers process information on our behalf under their own security and privacy commitments. We do not sell personal information to anyone, and we do not share it with third parties for their own marketing.

8. Retention

We keep information only as long as it is needed for the purposes described above: advertising configuration and performance records are kept as part of normal business history, and lead information is kept for as long as it is relevant to the customer relationship or required for legitimate business records. Information that is no longer needed is deleted or anonymized.

9. Deletion requests

You may request deletion of your data at any time by following our User Data Deletion Instructions. In summary: email aboulissan@hotmail.com with the subject “Meta App Data Deletion Request” and we will verify the request, delete the data we are not legally or operationally required to keep, and confirm completion, with a target response period of 30 days.

10. Your rights

Subject to applicable law, you may ask us to confirm whether we hold information about you, to access it, to correct it, or to delete it. To exercise any of these rights, contact aboulissan@hotmail.com. We may need to verify your identity before acting on a request.

11. No sale of personal information

We do not sell personal information. Information accessed through Meta’s APIs is used only for the internal business purposes described in this policy and in accordance with Meta’s Platform Terms and Developer Policies.

12. Changes to this policy

If we change this policy, we will update this page and its effective date. Significant changes will be communicated to authorized users of the Application.

13. Contact

For any privacy question or request, contact aboulissan@hotmail.com. See also our Terms of Service and User Data Deletion Instructions.