Privacy Policy

Effective Date: March 12, 2026 Last Updated: March 12, 2026

MarketDragon ("we," "our," or "us"), operated by MarketDragon, located at 78 Veloso St. Bo Obrero, Davao City 8000, Philippines, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered managed marketing services.

By engaging our services, you consent to the data practices described in this policy.

1. Information We Collect

1.1 Personal Information You Provide

When you sign up for or use MarketDragon's managed marketing services, we may collect the following personal information:

• Account Information: Full name, email address, phone number, business name, and job title.
• Business Information: Company name, industry, business address, website URL, and social media account credentials.
• Billing Information: Payment method details, billing address, GCash/Maya account information, bank account details, and transaction history.
• Communication Data: Messages, emails, and correspondence you send to us, including support tickets and feedback.
• Brand Assets: Logos, brand guidelines, product images, marketing copy, and any content you provide for campaign creation.

1.2 Information Collected Automatically

When you access our platform, we automatically collect:

• Device Information: IP address, browser type and version, operating system, device type, and unique device identifiers.
• Usage Data: Pages visited, features used, click patterns, session duration, and navigation paths within the platform.
• Log Data: Server logs including access times, error logs, and referring URLs.
• Location Data: General geographic location derived from your IP address.

1.3 Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies to:

• Maintain your authenticated session
• Remember your preferences and settings
• Analyze platform usage and performance
• Deliver relevant content and improve our services

For detailed information about our cookie practices, please refer to our Cookie Policy.

1.4 Information from Third-Party Sources

We may receive information about you from:

• Social Media Platforms: When you connect your Facebook, Instagram, TikTok, or other social media accounts, we receive profile information, page analytics, audience insights, and engagement data as authorized by you.
• Payment Processors: Transaction confirmations and payment status from Xendit and associated payment providers.
• Analytics Services: Aggregated data about campaign performance and audience behavior.

2. How We Use Your Information

2.1 Service Delivery

• Create and manage your marketing campaigns, social media posts, and content calendars.
• Generate AI-powered marketing content including captions, graphics, video scripts, and ad copy.
• Schedule and publish content to your connected social media accounts.
• Manage and respond to leads generated through your campaigns.
• Provide customer support and account management.

2.2 AI Processing

• Analyze your brand voice, audience demographics, and engagement patterns to generate tailored marketing content.
• Process your brand assets and guidelines to maintain consistency across AI-generated materials.
• Use machine learning models to optimize posting schedules, content recommendations, and campaign strategies.
• Generate performance predictions and actionable insights from your marketing data.

Important: We do not use your proprietary business data or brand assets to train AI models for other clients. Your data is processed solely to deliver your marketing services.

2.3 Analytics and Improvement

• Track campaign performance metrics including reach, engagement, conversions, and ROI.
• Analyze usage patterns to improve platform features and user experience.
• Conduct research and development to enhance our AI capabilities and service offerings.
• Generate aggregated, anonymized insights for internal reporting and service improvement.

2.4 Communication

• Send service-related notifications including campaign updates, performance reports, and system alerts.
• Deliver billing notifications, payment confirmations, and subscription reminders.
• Provide marketing communications about new features and services (with your consent).
• Respond to your inquiries, support requests, and feedback.

2.5 Legal and Security Purposes

• Detect, prevent, and address fraud, abuse, and security incidents.
• Comply with legal obligations, including tax reporting and regulatory requirements.
• Enforce our Terms of Service and other agreements.
• Protect the rights, property, and safety of MarketDragon, our clients, and the public.

3. Data Sharing and Disclosure

3.1 Third-Party Service Providers

We share your information with trusted third-party service providers who assist us in operating our platform and delivering services:

• Payment Processors: Xendit (including GCash, Maya, bank transfers, and credit card processing) receives billing information necessary to process your payments.
• AI Service Providers: OpenAI and other AI providers process content generation requests. We transmit only the minimum data necessary for content creation, and these providers are contractually prohibited from retaining or using your data for their own purposes.
• Cloud Infrastructure: Our hosting providers store and process data in secure, encrypted environments.
• Social Media Platforms: Facebook (Meta), Instagram, TikTok, and other platforms receive content and scheduling instructions as authorized by you.
• Email Service Providers: For sending transactional emails and authorized marketing communications.
• Analytics Tools: For monitoring platform performance and usage statistics.

3.2 Legal Requirements

We may disclose your information when required to:

• Comply with applicable laws, regulations, or legal processes in the Philippines or other jurisdictions.
• Respond to lawful requests from government authorities, including law enforcement.
• Protect and defend the rights, property, or safety of MarketDragon, our clients, or the public.
• Enforce our Terms of Service and other agreements.

3.3 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the successor entity. We will notify you of any such transfer and any changes to this Privacy Policy.

3.4 With Your Consent

We may share your information with other parties when you have given us explicit consent to do so.

4. Data Retention and Deletion

4.1 Retention Periods

• Active Account Data: Retained for as long as your account is active and you maintain a service subscription with us.
• Campaign and Content Data: Retained for the duration of your subscription plus 90 days to allow for data export.
• Billing and Transaction Records: Retained for 7 years as required by Philippine tax and accounting regulations.
• Server Logs: Retained for 12 months for security and troubleshooting purposes.
• Communication Records: Retained for 3 years for quality assurance and dispute resolution.

4.2 Data Deletion

Upon termination of your account, we will:

• Delete your personal information and brand assets within 30 days, except as required by law.
• Remove your content from active systems within 30 days.
• Purge backup copies within 90 days.
• Retain only anonymized, aggregated data that cannot be linked back to you.

You may request early deletion of your data at any time by contacting us at [email protected].

5. Your Rights

As a data subject, you have the following rights under the Philippine Data Privacy Act of 2012 (Republic Act No. 10173) and other applicable laws:

5.1 Right to Access

You may request a copy of the personal data we hold about you, including information about how it is processed and with whom it has been shared.

5.2 Right to Correction

You may request correction of inaccurate or incomplete personal data. We will update your information promptly upon verification.

5.3 Right to Deletion

You may request deletion of your personal data, subject to legal retention requirements. We will process deletion requests within 30 days.

5.4 Right to Data Portability

You may request a copy of your personal data in a structured, commonly used, and machine-readable format (such as CSV or JSON).

5.5 Right to Object

You may object to the processing of your personal data for direct marketing purposes or other processing based on legitimate interests.

5.6 Right to Lodge a Complaint

You have the right to lodge a complaint with the National Privacy Commission of the Philippines if you believe your data privacy rights have been violated.

To exercise any of these rights, contact us at [email protected] or call +639989392801.

6. International Data Transfers

MarketDragon is based in the Philippines. Your data may be transferred to and processed in countries outside the Philippines, including but not limited to the United States, where our AI service providers and cloud infrastructure may be located.

When we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Contractual clauses requiring data recipients to maintain adequate data protection standards.
• Ensuring recipients comply with data protection regulations equivalent to or exceeding Philippine standards.
• Limiting data transfers to what is strictly necessary for service delivery.

By using our services, you consent to the transfer of your data to countries outside the Philippines as described in this policy.

7. Children's Privacy

MarketDragon's services are designed for businesses and professionals. Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from minors.

If we become aware that we have collected personal data from a person under 18, we will take immediate steps to delete that information. If you believe that a minor has provided us with personal data, please contact us at [email protected].

8. Security

We implement industry-standard security measures to protect your personal data, including:

• TLS/SSL encryption for all data in transit.
• AES-256 encryption for sensitive data at rest.
• Role-based access controls and multi-factor authentication for internal systems.
• Regular security assessments and penetration testing.
• Employee training on data protection and security practices.

For more details, please refer to our Security Policy.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes:

• We will notify you via email or through a prominent notice on our platform.
• We will update the "Last Updated" date at the top of this policy.
• Continued use of our services after the effective date of changes constitutes your acceptance of the updated policy.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Email: [email protected]
• Phone: +639989392801
• Address: 78 Veloso St. Bo Obrero, Davao City 8000, Philippines

For data privacy complaints, you may also contact the National Privacy Commission of the Philippines at https://www.privacy.gov.ph.

MarketDragon - AI-Powered Marketing, Human-Centered Privacy.