MRKT Manager — Privacy Policy

Effective date: May 26, 2026 Operator: MRKT Manager — an unincorporated service operating in Alberta, Canada Contact / privacy questions: support@mrktmanager.app

This policy explains what we collect, why, who we share it with, and your rights.

1. What we collect

• Account data: email address and a hashed password.
• Billing data: subscription status and a Stripe customer ID (card details are handled by Stripe, not stored by us).
• Facebook integration data: your Facebook login email, password, and session cookies, used to post and manage your Marketplace listings on your behalf. The password is encrypted at rest when encryption is configured; session cookies are stored to keep you logged in. We never post anything except the vehicle listings you direct.
• Inventory data: vehicle records and images synced from your dealer website / sources.
• Customer data (only if you use the Reply Assistant / Customers features): names, contact details, message history, and notes you enter or import about your customers.
• Usage & technical data: logs, errors, and basic usage needed to operate and debug the Service.

2. Why we use it

To provide and operate the Service (sync inventory, generate and post listings, manage Facebook activity, assist with replies), to support you, to process billing, to secure and debug the Service, and to comply with law. We do not sell your personal information.

3. Third parties that process data for us

• Stripe — payments/subscriptions.
• OpenAI — generates listing text and (if you use them) reply suggestions and image tags. Content you process with these features (which may include vehicle details and customer message text) is sent to OpenAI to produce the output.
• Railway — application/database hosting.
• Cloudflare — hosting/CDN and inventory backups.
• Facebook / Meta — where your listings are posted (we are not affiliated with Meta).

4. Retention

We keep data while your account is active and as needed to operate the Service or meet legal obligations. You can request deletion (Section 6). Note third parties (e.g., OpenAI, Stripe) retain data under their own policies.

5. Security

We use access controls, encryption in transit, and at-rest encryption for sensitive credentials where configured. No system is perfectly secure; during beta especially, do not store anything you can't risk losing.

6. Your rights (PIPEDA / Alberta PIPA)

You may request to access, correct, or delete your personal information, or ask questions about our handling of it, by emailing support@mrktmanager.app. We will respond within the timeframes required by applicable law. You may also contact the Office of the Information and Privacy Commissioner of Alberta or the Privacy Commissioner of Canada.

7. Customer data you enter

If you use the Customers / Reply Assistant features, you are responsible for having a lawful basis to collect and process your customers' information, and for your own privacy obligations to them. We process that data on your behalf to provide the feature.

8. Children

The Service is for business use and not directed to children under 18.

9. Changes

We may update this policy; material changes will be posted at mrktmanager.app and/or notified in-app.

10. Contact

Questions or requests: support@mrktmanager.app.