AISocialPilot
FeaturesPricingBlogDocs
Log inStart Free Trial
Privacy

Privacy Policy

Effective date: March 1, 2026

AISocialPilot ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal information when you use our platform, website, APIs, and related services (collectively, the "Service"). By using the Service, you consent to the practices described in this policy.

1. Information We Collect

1.1 Information You Provide

  • Account Information: Name, email address, and password when you create an account.
  • Billing Information: Payment method details processed through Stripe. We do not store your full credit card number on our servers.
  • Content: Social media posts, images, captions, and other content you create or upload through the Service.
  • Communications: Messages you send to our support team or through the chat widget.
  • Workspace Data: Team member information, workspace settings, and configuration preferences.

1.2 Information from Connected Platforms

When you connect social media accounts (Instagram, Twitter/X, LinkedIn, Facebook, TikTok, YouTube, Pinterest), we collect:

  • Account profile information (username, display name, avatar).
  • OAuth access and refresh tokens to act on your behalf.
  • Analytics and engagement data (likes, comments, shares, follower counts).
  • Post performance metrics.

1.3 Information Collected Automatically

  • Usage Data: Pages visited, features used, actions taken, and timestamps.
  • Device Information: Browser type, operating system, screen resolution, and device identifiers.
  • IP Address: Used for security, rate limiting, and approximate geographic location.
  • Error and Performance Data: Crash reports and performance metrics collected through Sentry for service reliability.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, operate, and maintain the Service.
  • To process payments and manage your subscription.
  • To publish, schedule, and manage content on your connected social media accounts.
  • To generate AI-powered content suggestions and analytics insights.
  • To send transactional emails (account confirmations, billing receipts, notifications).
  • To respond to support requests and communicate about the Service.
  • To detect, prevent, and address security issues, fraud, and abuse.
  • To improve and optimize the Service through aggregated, anonymized analytics.
  • To comply with legal obligations.

3. Data Storage and Security

Your data is stored on infrastructure provided by Supabase (PostgreSQL database and file storage). We implement industry-standard security measures including:

  • Encryption in transit (TLS/SSL) for all data transmissions.
  • Encryption at rest for stored data.
  • Row-Level Security (RLS) policies to ensure users can only access their own data.
  • Rate limiting on all API endpoints to prevent abuse.
  • CSRF protection on authenticated endpoints.
  • Webhook signature verification for all incoming webhooks.
  • Regular security audits and monitoring through Sentry.

While we take reasonable precautions to protect your data, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.

4. Data Sharing

We do not sell your personal information. We share data only in the following circumstances:

  • Service Providers: We work with trusted third-party providers to operate the Service (see Section 5 below). They process data on our behalf under strict contractual obligations.
  • Connected Platforms: When you publish content through the Service, it is sent to the social media platforms you have connected.
  • Legal Requirements: We may disclose information when required by law, legal process, or government request, or to protect the rights, safety, or property of AISocialPilot or others.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of the transaction.
  • With Your Consent: We may share information with third parties when you explicitly consent.

5. Third-Party Services

The Service relies on the following third-party services, each with their own privacy practices:

ServicePurpose
SupabaseDatabase, authentication, file storage, and real-time functionality
StripePayment processing and subscription billing
Anthropic (Claude)AI-powered content generation and suggestions
SentryError tracking, performance monitoring, and service reliability
Social Media APIsContent publishing, analytics, and account management (Instagram, Twitter/X, LinkedIn, Facebook, TikTok, YouTube, Pinterest)

We encourage you to review the privacy policies of these services to understand how they handle your data.

6. Cookies and Tracking

We use cookies and similar technologies for the following purposes:

  • Essential Cookies: Required for authentication, session management, and security (e.g., CSRF tokens). These cannot be disabled.
  • Functional Cookies: Store your preferences such as language, theme, and workspace selection.
  • Analytics Cookies: Help us understand how the Service is used so we can improve it. This data is aggregated and anonymized.

You can control cookie preferences through your browser settings. Disabling essential cookies may prevent you from using parts of the Service.

7. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. Specific retention periods include:

  • Account Data: Retained while your account is active and for 30 days after cancellation or deletion.
  • Content and Posts: Retained while your account is active. Deleted content is removed within 30 days.
  • Analytics Data: Aggregated analytics may be retained indefinitely in anonymized form.
  • Billing Records: Retained for up to 7 years as required by tax and accounting regulations.
  • Server Logs: Retained for up to 90 days for security and debugging purposes.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data, subject to legal retention requirements.
  • Portability: Request your data in a structured, commonly used, machine-readable format.
  • Restriction: Request that we limit the processing of your data in certain circumstances.
  • Objection: Object to the processing of your data for specific purposes.
  • Withdrawal of Consent: Where processing is based on consent, you may withdraw consent at any time.

To exercise any of these rights, contact us at privacy@aisocialpilot.ai. We will respond within 30 days of receiving your request.

9. GDPR Compliance (European Economic Area)

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, we process your personal data under the following legal bases:

  • Contract Performance: Processing necessary to provide the Service as per our agreement with you.
  • Legitimate Interest: Processing for security, fraud prevention, and service improvement, balanced against your privacy rights.
  • Consent: Where you have given explicit consent (e.g., marketing communications).
  • Legal Obligation: Processing required to comply with applicable laws.

You have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.

10. CCPA Compliance (California Residents)

If you are a California resident, the California Consumer Privacy Act (CCPA) grants you additional rights:

  • Right to Know: You may request the categories and specific pieces of personal information we have collected about you.
  • Right to Delete: You may request the deletion of your personal information, subject to certain exceptions.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
  • No Sale of Data: We do not sell personal information to third parties as defined by the CCPA.

To submit a CCPA request, contact us at privacy@aisocialpilot.ai. We will verify your identity before processing the request.

11. Children's Privacy

The Service is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 18, we will take steps to delete that information promptly. If you believe a child has provided us with personal data, please contact us at privacy@aisocialpilot.ai.

12. International Data Transfers

Your data may be transferred to and processed in countries other than your own. When we transfer data internationally, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) to ensure your data receives an adequate level of protection as required by applicable data protection laws.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or by posting a prominent notice on the Service at least 30 days before the changes take effect. We encourage you to review this policy periodically. Your continued use of the Service after changes become effective constitutes your acceptance of the revised policy.

14. Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or your personal data, please contact us at:

AISocialPilot - Privacy Team
Email: privacy@aisocialpilot.ai
General inquiries: legal@aisocialpilot.ai
Website: https://aisocialpilot.ai

Related Documents

Last updated: March 1, 2026