Privacy Policy
Effective 1 June 2026 · Last updated 1 June 2026
1. Introduction
Welcome to ROASmind ("we", "us", "our"), an AI-powered digital marketing platform operated by House of Namus, a sole proprietorship owned and managed by Suman Debnath, registered in India.
This Privacy Policy explains what personal and business data we collect, how we use it, who we share it with, and your rights in relation to that data. By accessing or using ROASmind at roasmind.houseofnamus.com ("the Platform"), you agree to this policy.
This policy is governed by:
- The Information Technology Act, 2000 and the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
- The Digital Personal Data Protection Act, 2023 (DPDP Act)
- The General Data Protection Regulation (GDPR) for users located in the European Economic Area (EEA)
2. Who This Policy Applies To
This policy applies to:
- Visitors to roasmind.houseofnamus.com
- Registered users of the ROASmind platform
- Any business or individual using ROASmind's services
You must be at least 18 years of age to use ROASmind. By using the Platform, you represent that you meet this requirement.
3. Data We Collect
3.1 Account & Identity Data
- Full name, email address, hashed password
- Member since date, account preferences
3.2 Business & Brand Data
- Brand name, website, industry, products/services, pricing, USP
- Business stage, revenue goals, profit margins, customer LTV and CAC
- Target audience personas, demographics, psychographics, pain points
- Competitor information (names, websites, ad library links)
- Brand voice, tone guidelines, messaging style
3.3 Uploaded Files
- Past campaign data (CSV, PDF, XLSX)
- Past ad creatives (images, video)
- Social media creatives (images)
- Brand blog content (PDF, DOCX, TXT, MD)
- Brand assets (logos, photos, graphics, fonts)
3.4 Ad Platform Data (via OAuth)
- OAuth access and refresh tokens for Meta, Google Ads, and LinkedIn
- Campaign performance data: impressions, clicks, spend, conversions, ROAS
- Ad account IDs, campaign structures, ad sets, creatives, keywords
- Search term reports, audience data
3.5 Payment Data
- Subscription plan and billing history
- Payment processing is handled entirely by Razorpay. We do not store card numbers, CVV, or full payment credentials on our servers.
3.6 AI-Generated Content
- Ad copy, campaign plans, creative briefs, keyword research, performance reports generated by ROASmind's AI engine on your behalf
3.7 Usage & Technical Data
- AI call counts, campaign counts, image generation usage
- IP address, browser type, device type
- Pages visited, features used, session timestamps
- Error logs and diagnostic data
3.8 Communications
- Messages sent to us via the contact form or email
- Support communications
4. How We Use Your Data
We use your data to:
| Purpose | Legal Basis |
|---|---|
| Provide and operate the ROASmind platform | Performance of contract |
| Run the Brand Brain AI analysis and campaign planning | Performance of contract |
| Execute and manage ad campaigns on your connected ad accounts | Performance of contract |
| Process subscription payments via Razorpay | Performance of contract |
| Send transactional emails (onboarding, reports, alerts) | Performance of contract |
| Send weekly AI-generated performance reports | Performance of contract |
| Improve platform features and AI accuracy | Legitimate interests |
| Detect and prevent fraud or abuse | Legitimate interests |
| Comply with legal obligations | Legal obligation |
| Send product updates or offers (with your consent) | Consent |
We do not use your data to train third-party AI models unless you explicitly opt in. We do not sell your data to any third party.
5. Third Parties We Share Data With
We share data only where necessary to deliver our services. All third parties are bound by their own privacy policies and, where applicable, data processing agreements.
| Third Party | Purpose | Location |
|---|---|---|
| Supabase | Database storage and file storage | AWS ap-southeast-2 (Sydney) |
| Railway | Backend application hosting | United States |
| Vercel | Frontend application hosting | United States / Global CDN |
| Anthropic | Claude AI — campaign planning, copy generation, analysis | United States |
| OpenAI | GPT-4o fallback AI processing + text embeddings | United States |
| Resend | Transactional email delivery | United States |
| Razorpay | Payment processing and subscription management | India |
| Meta (Facebook) | Ad campaign execution on Meta/Instagram (when connected) | United States |
| Ad campaign execution on Google Ads (when connected) | United States | |
| Ad campaign execution on LinkedIn (when connected) | United States |
We do not share your data with any other third parties without your explicit consent, except where required by law.
6. Data Retention
| Data Type | Retention Period |
|---|---|
| Account and brand data | For the duration of your subscription + 30 days after deletion |
| Campaign and performance data | For the duration of your subscription + 30 days after deletion |
| Uploaded files | For the duration of your subscription + 30 days after deletion |
| AI-generated content | For the duration of your subscription + 30 days after deletion |
| Payment records | 7 years (as required by Indian tax law) |
| Technical/diagnostic logs | 90 days |
Upon account deletion, all personal and business data is permanently deleted within 30 days, except where retention is required by law.
7. Data Security
We implement industry-standard security measures including:
- AES-256 encryption for data at rest
- TLS 1.2+ encryption for data in transit
- Hashed passwords (bcrypt)
- Encrypted storage of OAuth tokens
- Role-based access controls
- Regular security reviews
Despite these measures, no system is completely secure. We cannot guarantee absolute security of your data.
8. Cookies
ROASmind uses minimal cookies:
- Authentication: JWT tokens stored in localStorage for session management
- Analytics: We may use anonymised analytics to understand usage patterns
We do not use third-party advertising cookies.
9. Your Rights
For all users (under Indian law):
- Right to access your personal data
- Right to correct inaccurate data
- Right to delete your account and data
- Right to withdraw consent at any time
For EEA users (under GDPR):
- Right to access, rectify, erase, restrict, or port your data
- Right to object to processing
- Right to lodge a complaint with your local data protection authority
To exercise any of these rights, email us at defy@houseofnamus.com. We will respond within 30 days.
10. International Data Transfers
ROASmind is operated from India. Our infrastructure and third-party services are hosted in India, the United States, and Australia. By using the Platform, you consent to your data being transferred to and processed in these countries.
For EEA users, such transfers are made in compliance with GDPR requirements, relying on Standard Contractual Clauses or equivalent safeguards where applicable.
11. Children's Privacy
ROASmind is not intended for anyone under the age of 18. We do not knowingly collect data from minors. If you believe a minor has provided us with personal data, please contact us at defy@houseofnamus.com and we will delete it promptly.
12. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top of this page and, where the changes are material, notify you by email. Continued use of the Platform after any changes constitutes acceptance of the updated policy.
13. Contact Us
For any privacy-related questions, requests, or complaints:
House of Namus — ROASmind
Email: defy@houseofnamus.com
Website: roasmind.houseofnamus.com