Legal
Privacy Policy.
How Jackson Group collects, uses, stores, and protects data.
Effective Date: 1 June 2026 | Last Updated: 1 June 2026
1. Who We Are
Jackson Group ("we", "us", "our") is a technology company that builds AI-powered business operations software for e-commerce and other businesses. Our platform integrates with third-party services on behalf of our clients to streamline operations, automate workflows, and surface business analytics. This Privacy Policy explains how we collect, use, store, and protect data.
2. Platforms and Data We Access
Our software integrates with the following platforms via their official APIs, accessing only the data categories listed and solely on behalf of our clients:
- Meta (Facebook and Instagram) — Business page messages, Instagram DMs, post comments, and ad performance data via the Meta Graph API.
- Shopify — Order data, customer names, email addresses, shipping addresses, and product information via the Shopify Admin API.
- Google (Gmail, Google Calendar, Google Sheets) — Email threads, calendar events, and spreadsheet data via Google OAuth.
- TikTok — Business account messages and content data via the TikTok API.
- Klaviyo — Email campaign performance metrics via the Klaviyo API.
- Reddit — Public posts and comments via the Reddit API.
- WhatsApp — Business messaging via the WhatsApp Business API.
3. Data We Collect
- Business contact information (name, email address, company name) provided during account setup or enquiries.
- Customer order data processed on behalf of our clients through integrated platforms.
- Social media messages, comments, and interactions processed on behalf of our clients.
- Usage data, including feature interactions and platform performance metrics, for product improvement.
4. How We Use Data
- To provide the operations platform service to our clients, including workflow automation and analytics.
- To display business metrics, dashboards, and analytics within the platform.
- To enable automated messaging, scheduling, and workflow features configured by our clients.
- To improve platform performance, reliability, and user experience through internal analysis.
- We never sell data to third parties.
- We never use client or customer data for advertising purposes.
5. Data Storage and Security
- Data is stored securely using Turso hosted database infrastructure.
- All data in transit is encrypted via HTTPS / TLS.
- Access to production data is restricted to authorised staff members only, protected by multi-factor authentication and role-based access controls.
- Clients can request deletion of their data and any associated customer data at any time by contacting us.
6. Your Rights
Depending on your location, you may have the following rights regarding your data:
- Right to access — request a copy of the data we hold about you or your business.
- Right to deletion — request that we delete your data and any associated customer data processed on your behalf.
- Right to data portability — request your data in a structured, machine-readable format.
- Right to object — object to processing where applicable under local law.
Jackson Group is GDPR compliant for EU and UK users. To exercise any of these rights, please contact us using the details below.
7. Third-Party Services and Data Processors
We rely on trusted third-party infrastructure providers to host and operate our platform. These providers process data only on our instructions and are bound by appropriate contractual safeguards. We do not share client data with any other third parties for independent purposes.
8. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal obligations. We will notify clients of material changes via email or through the platform. Continued use of our services after any changes constitutes acceptance of the updated policy.