Privacy Policy

Information We Collect

We collect the following categories of information:

• Account information — your name and email address when you create an account or sign in (including via Google).
• Content you provide — your workspace and brand content, such as your brand kit, uploads, and the results of scanning a website you ask us to analyze, along with anything else you enter to create or schedule posts.
• Generated content — the posts, captions, images, and videos produced for you through the Service.
• Connected accounts — when you connect a social or marketing account, we store the tokens needed to publish on your behalf, plus basic account identifiers (such as the account name).
• Usage and device data — basic technical information such as your IP address, browser type, pages viewed, and interactions with the Service, collected to operate, secure, and improve it.
• Payment information — subscription and billing details are processed by Stripe. We do not store your full card numbers; Stripe handles card data directly.

How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain the Service;
• Generate posts, captions, and media, and publish them to the accounts you connect;
• Process payments, manage subscriptions and credits, and prevent fraud;
• Communicate with you about your account, security, and product updates;
• Monitor, troubleshoot, secure, and improve the Service; and
• Comply with our legal obligations.

How We Share Your Information

We do notsell your personal data. We share information only with the service providers (“sub-processors”) that help us run the Service, and with the platforms you choose to connect:

• kie.ai — AI generation of images, video, and captions.
• Postiz — publishing your content to social platforms.
• Stripe — payment processing (we do not store card numbers).
• Supabase — database, authentication, and file storage/hosting.
• The social platforms you connect — Facebook, Instagram, LinkedIn, X, TikTok, YouTube, Pinterest, Google Business Profile, and Mailchimp. When you publish to a platform, the relevant content is sent to that platform and handled under its own terms and privacy policy.

We may also disclose information if required by law, to enforce our agreements, or to protect the rights, safety, and security of our users and the Service.

Cookies & Local Storage

We use cookies and similar local-storage technologies to keep you signed in, remember your preferences, and understand how the Service is used. You can control cookies through your browser settings; disabling them may affect core functionality such as staying signed in.

Data Retention

We retain your account information and content for as long as your account is active or as needed to provide the Service. We may retain certain information after account closure where necessary to comply with legal obligations, resolve disputes, and enforce our agreements. You can request deletion of your data as described below.

Your Rights

Depending on where you live, you may have rights to access, correct, delete, or export your personal data, and to object to or restrict certain processing. Residents of the European Economic Area and the United Kingdom have rights under the GDPR, and California residents have rights under the CCPA/CPRA, including the right to know what personal information we collect and the right to opt out of its sale — and, as noted above, we do not sell personal data. To exercise any of these rights, contact us at support@autosocial.ai.

Security

We use reasonable technical and organizational measures designed to protect your information, including encryption in transit and access controls. No method of transmission or storage is completely secure, however, and we cannot guarantee absolute security.

International Transfers

We and our sub-processors may process and store information in countries other than the one in which you live. Where we transfer personal data across borders, we take steps intended to ensure it receives an adequate level of protection consistent with applicable law.

Children's Privacy

The Service is not directed to children, and is not intended for anyone under the age of 16 (or 18 where a higher minimum age applies). We do not knowingly collect personal data from children. If you believe a child has provided us personal data, please contact us so we can delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the effective date above and, where appropriate, provide additional notice. Your continued use of the Service after changes take effect constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this Privacy Policy or our data practices, contact us at support@autosocial.ai.