User Data Deletion Instructions & Security Policy

Last updated:

Jan 16, 2026

1. User Data Deletion Instructions

In compliance with the policies of Meta (Facebook & Instagram), Google Services, TikTok for Business, X (Twitter) Ads, and LinkedIn Marketing Solutions, Roaspy provides users complete control over their data.

If you wish to remove your account or request the deletion of all personal and platform-associated data, you may do so via the following methods:

Method A: Automated Deletion (In-App)

  1. Log in to your Roaspy account.

  2. Navigate to Settings > Profile.

  3. Click "Delete Account". This will trigger the immediate removal of your credentials and queue your data for permanent deletion within 30 days.

Method B: Manual Deletion Request If you cannot access your account or prefer to contact us directly:

  1. Send an email to team@roaspy.com.

  2. Subject Line: "Data Deletion Request".

  3. Body: Please include your registered email address.

  4. Process: We will verify the request and permanently delete all data associated with your account within 30 days. You will receive a confirmation email once the process is complete.

2. Data Security & Privacy Policy

Scope of Data

This policy applies to all data handled by Roaspy for the purpose of attribution and analytics, specifically:

  • User Information: Name, email address, and billing details.

  • Ad Platform Data: Read-only data accessed via API from third-party platforms including Meta, Google, TikTok, X (Twitter), and LinkedIn. This includes ad account IDs, campaign names, ad spend, and performance metrics.

  • Attribution Data: Customer journey data (clicks, server-side events, and conversions) used to attribute sales to specific ad campaigns.

Encryption & Storage Security

We utilize industry-standard encryption to ensure your data remains secure:

  • In Transit: All data is encrypted using TLS 1.2+ when transmitted between your browser, our servers, and third-party APIs.

  • At Rest: All stored data is encrypted using AES-256 standards.

  • Database Security: Data is persisted in AWS RDS (PostgreSQL), utilizing automated backups and encrypted storage volumes.

  • Hosting Security: Infrastructure is hosted on Amazon Web Services (AWS), utilizing secure, access-controlled data centers compliant with SOC 2 and ISO 27001 standards.

Data Retention & Deletion

  • Minimization: Ad Platform Data is retained only as long as necessary to provide historical attribution reporting.

  • Deletion Protocol: Upon account deletion or access revocation, all personal and platform data is permanently deleted from our active databases within 30 days.

  • Backups: No unnecessary backups of personal or ad platform data are stored beyond the required disaster recovery retention period.

Data Sharing & Processors

We do not sell your personal data or Ad Platform Data. We do not use Artificial Intelligence (AI) models to process your data. Data is shared only with approved infrastructure providers:

  • Amazon Web Services (AWS): Secure cloud infrastructure, database (RDS Postgres), and hosting services.

  • Stripe: Secure payment processing. Roaspy does not store raw credit card numbers; these are handled directly by Stripe’s PCI-DSS compliant infrastructure.

Access Control

  • Internal Access: Restricted to authorized engineering personnel strictly on a "need-to-know" basis for maintenance and troubleshooting.

  • Authentication: We enforce strong credentials and Multi-Factor Authentication (MFA) for all administrative access.

User Rights & Consent

  • Revocation: You may revoke Roaspy’s access to your ad accounts at any time via the settings page of the respective ad platform (e.g., Facebook Business Integrations, Google Security Settings).

  • Consequence of Revocation: Once access is revoked, Roaspy will automatically cease data collection from that source and initiate the deletion process for that specific platform's data.

Incident Response

In the unlikely event of a data breach:

  1. We will investigate immediately.

  2. We will notify affected users and relevant regulatory authorities within 72 hours.

  3. We will log all incidents for compliance audits.

Contact Us

For any questions regarding data security or to initiate a deletion request, please contact our support team:

Email: team@roaspy.com