Goodman Holdings Logo Contact Us

Privacy Policy

Effective Date: June 16, 2026Last Updated: June 16, 2026

Goodman Holdings (referred to as "we", "us", "our", or the "Company") is committed to protecting the privacy and security of your personal data. This Privacy Policy details how we collect, process, share, and protect information collected through our corporate website and our portfolio ventures (including integrations with social platforms and APIs, such as the Meta Graph API).

Meta Developer Platform Compliance Notice: This policy governs all data collection endpoints, applications, and automation utilities operated by Goodman Holdings. We strictly adhere to Meta Developer Policies, including limitations on data caching, user consent protocols, and automated user data deletion mechanisms.

1. Information We Collect

Depending on how you interact with our website or ventures, we may collect the following classifications of information:

  • Identity and Contact Data: Name, contact email address, mailing address, billing information, and phone number when voluntarily supplied during registration or inquiries.
  • Technical and Usage Data: IP addresses, browser specifications, login histories, navigation logs, cookies, device identifiers, and session durations collected via standard web metrics.
  • Authorized Platform Data: OAuth access tokens, Page IDs, and account metadata collected when you grant authentication to our applications (e.g., Meta Graph API, YouTube Data API, or eBay API).

2. How We Use Your Data

We process your data strictly under valid legal bases and for specified operational purposes:

  1. Service Delivery: Establishing customer accounts, processing payments, facilitating print-on-demand fulfillment, and performing automated API tasks.
  2. Meta/API Integrations: Fetching, formatting, and posting media assets (such as video rendering streams or social media posts) authorized under OAuth consents.
  3. System Security & Improvements: Conducting vulnerability audits, tracking serverless performance thresholds, resolving script errors, and identifying operational bottlenecks.
  4. Legal & Regulatory Compliance: Filing tax records, satisfying federal/provincial corporate regulations, and processing data-subject deletion requests.

3. Cookies and Tracking Technologies

Our website uses cookies and similar tracking tags to enhance site performance, store user preferences, and analyze demographic web traffic. You may choose to disable cookies in your browser settings; however, doing so may restrict access to specific interactive utilities or checkout flows.

4. Data Sharing and Third-Party Disclosures

We do not sell, rent, or trade your personal data. We disclose personal information only to trusted third-party service providers who assist us in operating our business under strict confidentiality agreements:

  • Fulfillment & Payment Gateways: Printify, Printful, and Stripe Inc. to process transactions and ship products.
  • Cloud Infrastructure: Supabase Inc. (database, auth) and Google Cloud Platform (Cloud Run, storage).
  • Social Media APIs: Meta Platforms, Inc., Google LLC, and TikTok for authorized social posting and verification actions.

5. Data Retention

We retain personal information only as long as necessary to satisfy the purposes for which it was collected, including legal, accounting, and reporting obligations. Authorized token credentials and social platform data caches are automatically refreshed or deleted in compliance with platform limits (e.g., token expiration cycles and 30-day manual data deletion audits).

6. Your Rights and Controls

You possess specific rights regarding your personal information under applicable regulations, including:

  • The right to request access to and receive copies of the personal data we hold.
  • The right to request rectification of inaccurate or incomplete personal records.
  • The right to request deletion of your personal data under the "Right to be Forgotten" standard.
  • The right to revoke OAuth permissions at any time via your social account security settings.

7. Data Security Safeguards

We enforce robust technical safeguards to protect your data. All communication is encrypted via TLS/SSL, access to production databases is restricted to verified agents and infrastructure administrators, and corporate API secrets are stored securely within Cloudflare and Supabase environment variables in compliance with our corporate rotation schedule.

8. Contact Information

For any inquiries, requests to exercise your data rights, or questions regarding our data practices, please contact our Compliance Officer at:

Goodman Holdings Compliance Office
Email: legal@goodmanholdings.co
Mailing Address: Vancouver, BC, Canada