Last updated: October 14, 2025
Organic Growth (“Organic Growth,” “we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you visit www.organicgrowth.io and associated subdomains (the “Website”), use our products and services (the “Services”), or otherwise interact with us.
Because our work involves customized, manual, and time-based creative effort, it’s important to clarify how refunds and cancellations are handled.
For the purposes of EU/UK data protection laws, Organic Growth is the data controller of personal data processed in connection with the Website and Services.
Email (Privacy/DPO): privacy@organicgrowth.io
General support: support@organicgrowth.io
Website: www.organicgrowth.io
If you are a business customer using our Services for your end users, please also see Customer Data below.
We collect the categories of information below, depending on how you interact with us.
2.1 Information you provide
Identification & contact: name, email, phone, company, role.
Billing: payment method details (processed by PCI-compliant providers), billing address, transaction history.
Content & communications: questionnaires, briefs, feedback, attachments, support messages, and other information you submit.
Recruitment: CV/Resume, portfolio, employment history (if you apply for a role).
2.2 Information from third parties you connect
If you connect third-party accounts (e.g., Instagram, Facebook, LinkedIn) or log in via a third party, we receive information in line with that service’s policies and your settings (e.g., name, handle, profile info, tokens necessary to publish/schedule content).
2.3 Automatically collected data
When you use the Website/Services, we and our partners may collect:
Device & usage: IP address, browser type, device identifiers, pages viewed, links clicked, timestamps, referring/exit pages, time-on-page.
Mobile: device model, OS, mobile identifiers (e.g., IDFA/GAID), approximate location (via IP).
Cookies & similar tech: cookies, pixels, local storage, beacons, and embedded scripts used for core functionality, analytics, and (where applicable) advertising.
See Cookies & Tracking below.
We use personal data to:
Provide & operate the Services, including account setup, scheduling/publishing (where connected), and client support.
Communicate with you (service notices, security alerts, onboarding, updates, responding to inquiries).
Personalize & improve the Website/Services (troubleshooting, analytics, product development).
Process payments and prevent fraud/abuse.
Recruit & hire (for applicants).
Comply with legal obligations and enforce agreements, including our Terms of Service.
Where GDPR/UK GDPR applies, we process personal data under these bases:
Contract: to provide the Services you request.
Legitimate interests: to secure and improve Services, support customers, run analytics, and market to existing users (balanced against your rights).
Consent: for cookies/ads where required; for specific activities you clearly agree to. You can withdraw consent at any time.
Legal obligation: to comply with applicable laws (e.g., tax, accounting).
We may share personal data with:
Service providers / processors: hosting, storage, CRM, analytics, email, customer support, payment processing, and publishing/scheduling platforms (only as needed to perform their work for us, under contract).
Professional advisors & auditors: for compliance, legal, and financial purposes.
Business transfers: in connection with a merger, acquisition, financing, reorganization, or sale of assets.
Legal & safety: if required by law/subpoena or to protect rights, security, or the integrity of our Services.
Aggregated or de-identified data: that does not reasonably identify you.
We do not sell personal data.
We (and our partners) use cookies and similar technologies to:
Keep you signed in and remember preferences,
Measure traffic and usage,
Diagnose and fix issues,
(Where applicable) deliver and measure interest-based advertising.
Choices:
Browser settings can block or delete cookies (some features may not function).
Email clients can disable remote images to limit email tracking.
For interest-based ads, see industry opt-outs:
NAI: www.networkadvertising.org/choices
EDAA (EU): www.youronlinechoices.eu
Do Not Track: we currently do not respond to browser DNT signals.
Google Analytics:
We may use Google Analytics. Learn more at www.google.com/policies/privacy/partners/
and opt out via the GA Opt-out Add-on: https://tools.google.com/dlpage/gaoptout
When a business customer uses our Services to manage its own social accounts or end-user content, that Customer is typically the controller of Customer Data. We process Customer Data as a processor in accordance with our agreement and, where applicable, a Data Processing Addendum (DPA).
Requests from individuals relating to Customer Data should be directed to the relevant Customer.
Your information may be processed in countries outside your location (including the EEA/UK/US) where service providers operate. Where required, we rely on lawful transfer mechanisms (e.g., Standard Contractual Clauses) and implement appropriate safeguards.
We retain personal data only as long as necessary for the purposes described in this Policy (e.g., while you have an account, to provide Services, for legal/accounting obligations, to resolve disputes, or to enforce agreements).
We may retain project deliverables for up to 3 months after delivery (see Terms of Service) unless a longer period is required by law or contract.
We use administrative, technical, and organizational measures designed to protect personal data (e.g., encryption in transit, access controls, least-privilege practices).
No system is 100% secure. If we become aware of a breach affecting personal data, we will take reasonable steps to notify affected individuals and regulators as required by law.
Payment data is processed by secure, PCI-compliant providers. We do not store full payment card details on our servers.
Subject to local law, you may have the right to:
Access your personal data,
Correct inaccurate or incomplete data,
Delete your data,
Restrict or object to certain processing,
Portability of your data,
Withdraw consent where processing is based on consent,
Lodge a complaint with your local data protection authority.
To exercise rights, contact privacy@organicgrowth.io
We may need to verify your identity and, where we act as processor of Customer Data, redirect you to the Customer.
Marketing emails: click “unsubscribe” in any marketing email or email support@organicgrowth.io
You may still receive essential service messages.
Account/data requests: email privacy@organicgrowth.io
To review, update, or request deletion of your information (we may not be able to delete data we must keep by law).
Third-party accounts: adjust privacy settings with third-party platforms you connect to our Services.
Our Services are not directed to children under 16 (or the age of digital consent in your country). We do not knowingly collect personal data from children under that age. If you believe a child has provided us information, contact privacy@organicgrowth.io and we will delete it.
Our Website may contain links to third-party websites, services, and social platforms. We are not responsible for their privacy practices. Review their policies before providing personal data.
We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date and, where required, notify you via the Services or by email. Continued use of the Services after the effective date constitutes acceptance of the revised Policy.
Questions about this Policy or our data practices?
Privacy/DPO: team@organicgrowth.io
Support: team@organicgrowth.io
Website: www.organicgrowth.io
