Privacy Policy

This Privacy Policy applies to Octogen, CreateNow, and related connector experiences operated by CTG Business Sdn Bhd, including any Meta Ads Connector used to connect a customer's Meta Business, Page, or advertising account to an Octogen agent.

We collect only the information needed to provide and secure the service, including:

• Account information such as name, email address, workspace membership, authentication state, and billing status.
• Agent and workspace information such as prompts, configuration, runtime status, tasks, logs, memory files, and connector settings.
• Connector data that a user authorizes us to access, such as OAuth access tokens, refresh tokens, scopes, connected account identifiers, Page or Business asset identifiers, ad account identifiers, campaign, ad set, ad, creative, ads insights, and Page insights data.
• Operational data such as IP address, timestamps, request identifiers, error logs, and audit events.

We use information to:

• Authenticate users and provide access to Octogen workspaces and agents.
• Connect authorized third-party services to agents at the user's request.
• Read authorized Page and advertising performance data and, where authorized, help create or manage advertising objects.
• Maintain audit logs, prevent abuse, troubleshoot errors, and secure the service.
• Provide support, billing, product improvement, and compliance workflows.

When a user connects Meta assets, we process Meta Platform Data only to provide the Meta Ads Connector and related agent workflows requested by the user. This may include Meta user identifiers, Business identifiers, Page identifiers, ad account identifiers, Page content summaries, campaign and ad object data, Page insights, ads insights, and access tokens. We do not sell Meta Platform Data.

We may use service providers for hosting, databases, authentication, logging, payment processing, and AI infrastructure. These providers process data on our behalf to operate the service. We require them to protect data and use it only for the services they provide to us.

We keep account, workspace, billing, and audit data for as long as needed to provide the service, satisfy legal obligations, resolve disputes, and maintain security. Connector tokens are retained until the user disconnects the connector, requests deletion, or the connector is otherwise revoked or expires.

Users can disconnect third-party connectors in the product where available. Users may also request deletion of Meta connector data by following the instructions on our Data Deletion page. After a valid request, we delete or de-identify connector tokens and Meta Platform Data that we are not required to retain for security, billing, legal, or audit reasons.

We use technical and organizational safeguards designed to protect data, including access controls, encrypted transport, secret handling, and audit logging. No system is perfectly secure, so we also monitor for issues and restrict access to sensitive connector data.

Data may be processed in countries where we or our service providers operate. Where required, we use appropriate safeguards for cross-border processing.

For privacy questions or deletion requests, contact us at cayden.nextventure@gmail.com.