Privacy Notice

1. Who we are

MarketFitt is operated as a sole proprietorship based in Ajax, Ontario, Canada. This notice explains what personal information we collect, why we collect it, how we use and share it, and the rights you have over it.

2. Information we collect

You give us:

• Account information — name, email address, password (hashed), and role (customer or founder).
• Profile information — display name, optional organization details for founders.
• Pain-point briefs (for customers) and product/feedback submissions (for both sides).
• Payment details — billing name, address, and card information are collected and stored by our payment processor (Paddle); we do not see or store card numbers.

We collect automatically:

• Log data — IP address, browser type, pages visited, timestamps. Used to operate the Service and diagnose issues.
• Cookies and similar technologies — only as needed to keep you signed in and remember preferences. We do not use third-party advertising cookies.

3. How we use your information

• To provide, maintain, and improve the Service;
• To match customers to relevant founders based on pain-point briefs and product profiles;
• To process payments, manage subscriptions, and prevent fraud;
• To send transactional emails (account verification, match notifications, billing receipts, security alerts);
• To diagnose errors and monitor service health (PII-scrubbed where possible);
• To comply with legal obligations.

We do not sell your personal information. We do not use your data to train third-party AI models.

4. Sub-processors

We rely on the following third-party services (“sub-processors”) to operate MarketFitt. Each has its own privacy policy.

5. International transfers

Some sub-processors operate outside Canada (primarily in the United States and European Union). Where required, we rely on appropriate safeguards such as Standard Contractual Clauses to protect your information when it crosses borders.

6. Data retention

We retain account information for as long as your account is active and for a reasonable period after closure to comply with legal obligations, resolve disputes, and enforce our agreements. Pain-point briefs and feedback may remain visible to founders you previously interacted with, in aggregated or anonymized form, even after you delete your account.

7. Your rights

Depending on your jurisdiction (including under the GDPR, UK GDPR, PIPEDA, and similar laws), you may have the right to:

• Access the personal information we hold about you;
• Correct inaccurate or incomplete information;
• Delete your account and associated personal information (subject to legal retention requirements);
• Export your data in a portable format (account, pain-point briefs, feedback submissions);
• Object to or restrict certain processing; and
• Lodge a complaint with your local data-protection authority.

To exercise any of these rights, email support@marketfitt.com.

8. Security

We use industry-standard technical and organizational measures to protect your information, including encryption in transit (TLS), encryption at rest, row-level access controls at the database level, and least-privilege access for administrators. No system is perfectly secure, however, and we cannot guarantee absolute security.

9. Children

MarketFitt is not directed to anyone under 18, and we do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will delete it.

10. Changes to this notice

We may update this Privacy Notice from time to time. Material changes will be announced by email or in-app notice at least 14 days before they take effect.

11. Contact

Privacy questions, requests, or complaints: support@marketfitt.com. See also our Terms of Service.