Privacy Policy

Introduction

Last updated: November 29, 2024

This Privacy Policy describes how KOSMO.IA ("we," "us," or "our") collects, uses, and protects your information when you use our interactive dashboard service for business customer service management across Meta platforms.

This Privacy Policy complies with applicable data protection laws, including the General Data Protection Regulation (GDPR) for users in the European Union and the California Consumer Privacy Act (CCPA) for users in California, USA.

For additional information, please refer to our Terms of Service.

Public Accessibility of this Policy

This Privacy Policy is publicly available and can be accessed at any time on our official website at: https://kosmo.com.mx/privacy-policy. It is regularly reviewed and updated to ensure compliance with Meta's platform requirements and data protection laws.

Meta Platform Data Usage

Data Collected through Meta Platforms

When using our dashboard service integrated with Facebook Messenger and Instagram, we may receive personal data provided by Meta, including:

Platform usernames and profile information
Message content and communication history
Interaction data and engagement metrics
Customer service analytics and performance data

Meta Platform Permissions

Our application requires the following permissions from Meta platforms to function effectively:

pages_messaging: To manage and respond to messages sent to your business page on Facebook Messenger.
instagram_manage_messages: To manage direct messages received on Instagram.
instagram_basic: To access basic profile information necessary for responding to users.

These permissions are strictly used to provide customer service management functionalities and are not shared with third parties without explicit user consent.

Data Usage Purposes

Providing consolidated customer service management across Meta platforms
Generating business insights and analytics
Improving dashboard functionality and user experience
Creating performance reports and metrics
Facilitating efficient customer communication management

Any data shared with third-party service providers is strictly limited to the purposes outlined in this policy. We require these providers to adhere to strict confidentiality agreements and comply with Meta’s data handling guidelines.

Meta Data Security

We implement robust security measures to protect data received from Meta platforms:

End-to-end encryption for data transmission
Secure data storage with encryption at rest
Role-based access control and authentication
Regular security audits and monitoring
Compliance with Meta's security requirements

All data is stored on secure servers provided by Amazon Web Services (AWS) located in Oregon, USA. These servers comply with international data protection standards, ensuring the integrity and confidentiality of your information at all times.

Compliance and Audits

Meta may conduct compliance reviews or audits of our application to ensure adherence to their platform policies. During these audits, we provide full cooperation and share any requested information related to our data handling practices, ensuring transparency in all operations.

Security Breach Notification

In the unlikely event of a security breach that affects your personal data, we will promptly notify affected users and relevant authorities as required by applicable laws. Our response will include details about the breach, its impact, and steps we are taking to mitigate further risks.

Contact Information

For any questions about this Privacy Policy or to exercise your data rights, please contact us at:
Email: [email protected]