Stepup Marketing Management (“we”, “our”, “us”) is a digital marketing and technology company
providing a range of services including digital marketing, website development, software solutions,
automation tools, and messaging or social integrations that may connect to
Meta products and APIs, including where applicable the
WhatsApp Business Platform, Facebook Pages,
Facebook Messenger, and Instagram (professional accounts linked to a Page).
This Privacy Policy explains how we collect, use, store, and protect personal data across all our services.
It applies to our website, client-facing tools, and any application or integration we operate that uses Meta’s developer or business APIs.
Meta’s own data practices are described in Meta’s policies (for example, Meta’s Data Policy at
https://www.facebook.com/privacy/policy).
2. Information We Collect
a) Business & Client Information
Company name
Contact details
Billing and contractual information
b) End-User & Communication Data
Messages and interactions via WhatsApp, Facebook Messenger, Instagram Direct, email, and other channels you connect to our services
Message metadata (timestamps, delivery or read status where available)
Contact information voluntarily provided by users
c) Website & Digital Services Data
Website form submissions
Cookies and analytics data
IP address and device information
d) Technical & Software Data
API usage logs
System events and error logs
Automation and webhook data (including Meta webhook payloads needed to deliver connected features)
e) Data from Meta Platforms (when you connect an account or Page)
If a business client connects Meta assets to our services, we may receive and process information made available
through Meta’s APIs for the features the client has enabled. Depending on the integration, this may include:
Identifiers and profile information for connected Facebook Pages, Instagram professional accounts, or WhatsApp Business accounts
Messaging content and metadata for features such as customer messaging, automation, or shared inboxes
Page or account insights or engagement metrics where the client authorizes such access
Technical tokens and configuration data needed to maintain a secure, authorized connection
We only request and use data that is necessary to provide the specific features the client has selected.
End users who message a client through Meta’s services should also review Meta’s policies and the client’s notices.
3. How We Use Information
Deliver digital marketing and advertising services
Develop, manage, and maintain websites and software solutions
Provide chatbot and automation services, including WhatsApp messaging
Communicate with clients and end users
Ensure security, compliance, and service performance
4. Meta Platform, WhatsApp, Facebook, and Instagram
Where our services integrate with Meta:
Data is accessed only after explicit authorization by the business client who owns or administers the relevant Meta asset (Page, WhatsApp Business Account, Instagram professional account, etc.)
Access uses Meta’s official APIs and approved connection flows (for example WhatsApp Business Platform, Messenger, Instagram messaging or insights features, and Facebook Pages), not unauthorized scraping
Our use of Meta developer and business products complies with applicable Meta Platform Terms, Developer Policies, WhatsApp Business Messaging Policy, and other Meta terms that apply to the specific products and permissions we use
We use Meta-related data only to provide the connected product features (such as messaging, automation, reporting, or account management), to maintain security, and to meet legal obligations
We do not sell personal data received through Meta APIs; we do not use such data for purposes that violate Meta’s terms or applicable law
If Meta updates its APIs, policies, or required disclosures, we will adjust our practices and this Policy as appropriate.
5. Data Sharing
We do not sell or rent personal data.
Data may be shared only with:
Meta Platforms, Inc. and its affiliates, where required to operate integrations you have enabled (for example message delivery, API operations, or as described in Meta’s policies)
Hosting, analytics, and infrastructure providers necessary to operate our services (under appropriate agreements)
Professional advisers or authorities where required by law
6. Data Retention
Data is retained only for as long as necessary to provide the requested services
At StepUp, safeguarding your data is our highest priority. We comply with all applicable data protection regulations and adhere to strict data handling practices:
Data Encryption: All data transmitted between your device and our servers is secured using industry-standard encryption protocols.
Access Control: Access to personal and business data is strictly restricted to authorized personnel who need it to provide you with our services.
Data Retention & Deletion: We only retain organizational and user data for as long as necessary. You can request data deletion at any time by contacting our support team.
Third-Party Compliance: When utilizing Meta or other third-party APIs (including WhatsApp Business Platform, Facebook Pages, Messenger, and Instagram), we align our practices with their applicable terms, developer policies, and messaging or commerce rules.
Regular Audits: Our security infrastructure and data practices undergo regular checks to ensure ongoing compliance and safety against potential vulnerabilities.