Privacy Policy

Information You Provide Directly

We collect information that you provide directly to us when you:

• • Create an Account: We collect your email address, first name, last name, and password when you sign up for our Service.
• • Complete Onboarding: We collect additional information including:
  • • Account type (agency or personal)
  • • Agency name (if applicable)
  • • Agency size or total social accounts
  • • Usage intent preferences
  • • Region (optional)
• • Connect Social Media Accounts: When you connect your Instagram or Facebook accounts through Meta OAuth, we collect:
  • • Username
  • • Platform account ID
  • • Profile picture URL
  • • Access tokens (stored securely and encrypted)
• • Create Models and Personas: We collect information about the models/personas you create, including:
  • • Model names, ages (personas must be 18+), and appearance descriptions
  • • Niche tags and content categories
  • • AI persona configurations and personality descriptions
  • • Avatar images
• • Payment Information: When you subscribe to our Service, payment information is processed by Stripe. We do not store your full payment card details. We only store:
  • • Stripe customer ID
  • • Subscription tier and status
  • • Billing history

Information Collected Automatically

We automatically collect certain information when you use our Service:

• • Usage Data: We collect information about how you interact with our Service, including:
  • • Pages visited and features used
  • • Time spent on different sections
  • • Actions taken within the platform
• • Device and Browser Information: We collect technical information such as:
  • • Browser type and version
  • • Operating system
  • • Device type
  • • IP address
  • • Referral URLs
• • Social Media Data: When you connect your social media accounts, we automatically collect:
  • • Posts and their engagement metrics (likes, comments, shares)
  • • Comments received on your posts
  • • Account status and health metrics
  • • Rate limit usage and API call statistics

Information from Third-Party Services

We receive information from third-party services you connect:

• • Meta (Facebook/Instagram): When you authorize our app, Meta provides:
  • • Account information (username, profile picture, account ID)
  • • Access tokens for API access
  • • Post and comment data via webhooks
  • • Engagement metrics

Service Provision

• • Account Management: To create and manage your account, authenticate you, and provide access to our Service.
• • Social Media Automation: To connect your social media accounts, fetch posts and comments, and manage your content.
• • AI Reply Generation: To generate personalised automated replies to comments using AI technology based on your configured personas.
• • Analytics and Reporting: To provide you with insights, metrics, and performance data about your social media accounts.

Service Improvement

• • Platform Development: To improve, optimise, and develop new features for our Service.
• • Error Resolution: To diagnose technical issues, fix bugs, and ensure Service stability.
• • User Experience: To personalise your experience and provide relevant content and features.

Communication

• • Service Updates: To send you important updates about your account, subscription, or the Service.
• • Support: To respond to your inquiries, provide customer support, and address technical issues.
• • Marketing: To send you promotional communications (only with your consent, and you can opt out at any time).

Legal and Security

• • Compliance: To comply with applicable laws, regulations, and legal processes.
• • Security: To protect the security and integrity of our Service, prevent fraud, and ensure user safety.
• • Enforcement: To enforce our Terms of Service and protect our rights and the rights of our users.

Server and Hosting Locations

• • Database and user data are stored in London, UK via Supabase.
• • Our frontend is hosted on Vercel.
• • OpenAI may process data in multiple locations depending on infrastructure.

We ensure appropriate safeguards for international transfers.

Data Processing Activities

1. OAuth Token Management: We securely store and manage access tokens provided by Meta. Tokens are encrypted and stored in our secure database.
2. Webhook Processing: We receive and process webhooks from Meta containing real-time updates about comments, posts, and account activity. This data is stored in our database to enable automated reply functionality.
3. AI Reply Generation: We use OpenAI's API to generate replies based on your personas. We only send:
   • • Comment text
   • • Persona configuration
   • • Account context

   We do not allow or enable OpenAI to use data for model training.

4. Data Storage: Your information is stored securely in Supabase with encryption at rest and Row Level Security (RLS) to ensure access only to your data.
5. Analytics Processing: We process usage data and engagement metrics to provide you with insights and analytics about your social media performance.

Third-Party Service Providers

We use the following third-party services that process your information:

• • Supabase: Provides database, authentication, and storage services. Your data is stored in Supabase's secure infrastructure in London, UK.
• • OpenAI: Processes comment text and persona configurations to generate AI replies. OpenAI's use of your data is governed by their privacy policy. We have configured our integration to prevent data from being used for model training.
• • Meta (Facebook/Instagram): Provides OAuth authentication and social media API access. Meta's use of your data is governed by Meta's Privacy Policy and Data Policy. We only access data you explicitly authorize us to access.
• • Stripe: Processes payment information for subscription management. Stripe's use of your payment data is governed by their privacy policy.

We do not sell or transfer personal data to any other party.