← Back to Conectoo
Legal

Privacy Policy

This policy explains how FRV Connect Hub collects, uses, stores, and protects your personal data when you use the Conectoo platform and its integrations with Meta and other social platforms.

Last updated: 10 April 2026FRV Connect Hub · office@conectoo.io

FRV Connect Hub operates as the data controller for personal data processed through the Conectoo platform. We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR) and Spanish Organic Law 3/2018 on Personal Data Protection (LOPD-GDD).

1

Data Controller

The data controller responsible for your personal data is:

  • Company: FRV Connect Hub
  • Address: CALLE Camino de Peitas, S/N, Bloque B, Piso 1, 50300, Calatayud, Zaragoza, Aragón, España
  • Phone: +34 676 291 178
  • Email: office@conectoo.io

For any data protection enquiries, please contact us at office@conectoo.io with the subject line "Data Protection Enquiry".

2

Data We Collect

Account Data

When you register for a Conectoo account, we collect your name, email address, company name, billing information, and any other details you voluntarily provide during onboarding.

Meta Platform Data

Conectoo integrates with Meta platforms including Facebook, Instagram, WhatsApp Business, and Facebook Messenger through Meta's official APIs. When you connect your Meta accounts to Conectoo, we receive and process the following data on your behalf:

  • Messages and conversations from connected Facebook Pages, Instagram accounts, and WhatsApp Business accounts
  • Sender names, profile identifiers (User IDs), and profile pictures of the people messaging your business pages
  • Timestamps, message content, attachments, and reaction data
  • Page and account metadata required to operate the inbox (page IDs, account names)
  • Comment data from Facebook and Instagram posts where enabled

This data is processed solely to provide you with the unified messaging dashboard service. We act as a data processor on behalf of your business for this Meta platform data, and your business acts as the data controller in relation to your customers' data.

Usage and Technical Data

We automatically collect information about how you interact with Conectoo, including: IP addresses, browser type and version, device identifiers, pages visited, features used, session duration, and error logs. This data is used to maintain, improve, and secure the platform.

Communication Data

If you contact us by email, phone, or through support channels, we retain records of those communications to resolve your enquiries and improve our support.

3

How We Use Your Data

  • To provide, operate, and maintain the Conectoo platform and its features
  • To process and display messages from your connected Meta and social media accounts
  • To send service notifications, security alerts, and administrative messages
  • To improve, personalise, and expand our platform based on usage patterns
  • To process billing transactions and manage your subscription
  • To detect, prevent, and address technical issues, fraud, and security incidents
  • To comply with legal obligations under Spanish and EU law
  • To respond to your enquiries and provide customer support
4

Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases as set out in Article 6 of the GDPR:

Contract Performance (Art. 6(1)(b))

Processing necessary to provide the Conectoo service you have subscribed to, including operating your inbox, processing messages, and managing your account.

Legitimate Interests (Art. 6(1)(f))

Processing for platform security, fraud prevention, service improvement, and internal analytics where your interests do not override ours.

Legal Obligation (Art. 6(1)(c))

Processing required to comply with applicable Spanish, EU, and international legal obligations including tax records and anti-fraud regulations.

Consent (Art. 6(1)(a))

Where we send marketing communications or place non-essential cookies, we rely on your freely given, specific, and informed consent, which you may withdraw at any time.

5

Data Sharing and Transfers

We do not sell, rent, or trade your personal data to third parties. We may share data only in the following limited circumstances:

  • Service providers: trusted third-party vendors who process data on our behalf under strict data processing agreements (e.g. cloud hosting, payment processors, email delivery)
  • Meta Platforms: data flows to and from Meta's APIs as required to operate the messaging integration you have authorised
  • Legal requirements: where disclosure is required by a court order, legal process, or applicable law
  • Business transfers: in the event of a merger, acquisition, or sale of assets, your data may transfer to the successor entity under equivalent protections

Any international transfers of personal data outside the European Economic Area are carried out under appropriate safeguards, including Standard Contractual Clauses approved by the European Commission.

6

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes described in this policy or as required by law:

  • Account data: retained for the duration of your subscription plus 3 years after termination for legal and billing purposes
  • Meta platform message data: retained for the duration of your active subscription; deleted within 30 days of account closure
  • Usage and technical logs: retained for up to 12 months
  • Billing records: retained for 7 years in accordance with Spanish tax law (Ley General Tributaria)
  • Support communications: retained for 2 years from the date of last interaction
7

Your Rights Under GDPR

As a data subject under the GDPR and LOPD-GDD, you have the following rights, which you may exercise at any time by contacting us at office@conectoo.io:

  • Right of Access (Art. 15): obtain a copy of the personal data we hold about you
  • Right to Rectification (Art. 16): request correction of inaccurate or incomplete personal data
  • Right to Erasure / 'Right to be Forgotten' (Art. 17): request deletion of your personal data where there is no legitimate reason for us to continue processing it
  • Right to Restriction of Processing (Art. 18): request that we restrict processing of your data in certain circumstances
  • Right to Data Portability (Art. 20): receive your personal data in a structured, machine-readable format
  • Right to Object (Art. 21): object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent: withdraw consent at any time where processing is based on consent

We will respond to all verified requests within 30 days. You also have the right to lodge a complaint with the Spanish Data Protection Authority (Agencia Española de Protección de Datos — AEPD) at www.aepd.es.

8

Data Deletion

You may request deletion of all personal data we hold about you at any time. To submit a data deletion request, please visit our Data Deletion page or send an email to office@conectoo.io with the subject line "Data Deletion Request" including your account email address.

We will process your request within 30 days and send written confirmation once deletion is complete. Please note that certain data may be retained where required by law (see Section 6).

9

Cookies

We use cookies and similar tracking technologies on our website and platform. For full details on the cookies we use and how to manage them, please see our Cookie Policy.

10

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction, or alteration. These include:

  • Encryption of data in transit using TLS 1.2 or higher
  • Encryption of data at rest
  • Access controls and role-based permissions for platform staff
  • Regular security audits and penetration testing
  • Incident response procedures in compliance with GDPR Art. 33-34
11

Children's Privacy

Conectoo is not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us at office@conectoo.io and we will promptly delete such information.

12

Meta Platform Policy Compliance

Conectoo accesses Meta platform data (including Facebook, Instagram, WhatsApp Business, and Messenger) exclusively through Meta's official APIs and in accordance with Meta's Platform Terms and Developer Policies. We:

  • Only request the minimum permissions necessary to provide the Conectoo service
  • Do not use Meta platform data for advertising purposes beyond the platform that provided it
  • Do not sell, license, or transfer Meta platform data to third parties
  • Do not use Meta platform data to create profiles for targeting of advertisements
  • Provide users with the ability to delete their data upon request (see Section 8)
  • Comply with all applicable Meta Platform Terms including data retention and deletion requirements
13

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will notify you of material changes by email or by posting a prominent notice on the platform at least 14 days before the changes take effect. Your continued use of Conectoo after the effective date constitutes acceptance of the updated policy.

14

Contact Us

For any questions, concerns, or requests relating to this Privacy Policy or the processing of your personal data, please contact:

  • FRV Connect Hub
  • CALLE Camino de Peitas, S/N, Bloque B, Piso 1, 50300, Calatayud, Zaragoza, Aragón, España
  • Email: office@conectoo.io
  • Phone: +34 676 291 178