Privacy Policy

Markrush (“we”, “us”, “our”) operates the Markrush marketing intelligence platform at markrush.io (the “Service”). This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service.

1. Information We Collect

Account Information: name, email address, business name, password (hashed).

Usage Data: pages visited, features used, IP address, browser type, device information, timestamps.

Connected Account Data: When you connect external accounts (Google Analytics, Google Search Console, Google Ads, Meta Ads), we access read-only data including campaign performance metrics, traffic data, search performance data, and ad spend. We do not modify these accounts in any way.

Lead Capture Data: When you install our tracking snippet on your website, we collect visitor data including IP addresses, referrer URLs, UTM parameters, pages visited, and form submissions.

Payment Information: processed by Stripe and Razorpay. We do not store credit card numbers on our servers.

2. How We Use Your Information

We use collected data to:

• Provide and maintain the Service
• Generate analytics reports and dashboards
• Process payments
• Send transactional emails (account verification, payment receipts)
• Send marketing communications (you can unsubscribe anytime)
• Improve the Service
• Comply with legal obligations

3. Connected Accounts — Important

When you connect your Meta Ads, Google Ads, Google Analytics, or Google Search Console accounts to Markrush via OAuth:

• We read campaign performance data (ad spend, impressions, clicks, conversions) for display in your dashboard and ROI reports
• We do NOT modify your ad accounts, create campaigns, change budgets, or take any write actions
• We do NOT sell, share, or transfer your account data to any third party
• You can disconnect at any time from Settings → Connections or directly from your Meta/Google account permissions

This usage complies with the Meta Platform Terms, the Meta Developer Policies, the Google API Services User Data Policy (including the Limited Use requirements), and all applicable data protection laws.

4. Data Storage and Security

All data is encrypted at rest using AES-256 and in transit using TLS 1.3. We use MongoDB Atlas with industry-standard security controls. Access tokens and refresh tokens for connected accounts are encrypted using separate key management.

5. Data Sharing

We do NOT sell your personal data. We share data only with:

• Subprocessors providing infrastructure (MongoDB Atlas, AWS, Stripe, Razorpay)
• When required by law (court orders, legal process)
• With your explicit consent

6. Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your account and all associated data
• Export your data
• Withdraw consent

To exercise these rights, email hello@markrush.io.

7. Data Retention

We retain account data while your account is active. After account deletion, we retain data for 30 days for recovery purposes, then permanently delete it. Aggregate, anonymized analytics data may be retained indefinitely.

8. Cookies

We use cookies for authentication, session management, and analytics. You can disable cookies in your browser, but some features may not function properly.

9. International Transfers

We are based in India. Data may be transferred to and processed in the United States and European Union via our subprocessors. We use standard contractual clauses for international transfers.

10. Children's Privacy

Markrush is not intended for users under 18. We do not knowingly collect data from children.

11. Changes to This Policy

We may update this policy. Material changes will be notified via email and in-app notification. Continued use after changes constitutes acceptance.

12. Contact

Questions? Email: hello@markrush.io

Address: [your registered business address from Udyam certificate]