Privacy Policy

1. Information We Collect

When you create a Social Schedulr account, we collect your name, email address, and password (hashed). When you connect social media accounts, we store OAuth tokens encrypted with AES-256 encryption.

2. How We Use Your Data

We use your information solely to provide the Social Schedulr service — scheduling posts, publishing content, and displaying analytics. We do not sell your data to third parties.

3. Data Security

All OAuth tokens are encrypted at rest using AES-256-CBC. We enforce HTTPS via HSTS, use secure HttpOnly cookies, and implement rate limiting on authentication endpoints. All API communications use TLS.

4. Third-Party Services

Social Schedulr connects to Instagram, Threads, LinkedIn, and Facebook via their official APIs using OAuth 2.0. We only request the minimum permissions necessary for scheduling and publishing. We also use Anthropic's Claude AI for optional caption rewriting.

5. Data Retention

Your data is retained as long as your account is active. You may disconnect social accounts at any time, which revokes stored tokens. To delete your account entirely, please contact support.

6. Your Rights

You have the right to access, correct, or delete your personal data. You can disconnect any social media account at any time from the Connected Accounts page.

7. Contact

For questions about this privacy policy, please reach out to us via the support channels provided in the application.