1. Who we are

SocialCTL ("we", "us") operates this SaaS platform. If you're in the EU or UK, we are the data controller for the personal data you provide to use the service. For questions, contact [email protected].

2. What we collect

  • Account data — name, email, password hash, role, tenant.
  • Brand data — what you put in your brand kit: logo, palette, voice notes, audience description, sample posts.
  • Content data — calendars, slot briefs, generated captions, hashtags, generated reels and carousels, scheduled posts, post results.
  • Billing data — Stripe customer ID, subscription status, invoice metadata. We never receive your full card number — Stripe handles it directly.
  • Usage data — feature usage, credit consumption, AI activity logs (which model ran, token counts, success/failure). Used for billing accuracy and product improvement.
  • Connected-platform tokens — OAuth tokens for Instagram, LinkedIn, TikTok, Facebook, X, YouTube. Stored encrypted; used only to publish on your behalf.
  • Technical data — IP address, browser/device info, session cookies. Used for security and to keep you logged in.
  • Communications — emails you send us, support tickets, replies.

3. Why we collect it

  • To run the service you signed up for (generating content, scheduling posts, billing).
  • To improve the product — aggregate usage analytics. Individual prompts and outputs are not used to train AI models.
  • To secure accounts — fraud prevention, login anomaly detection, rate limiting.
  • To meet legal obligations — accurate invoicing, tax records, sanctions compliance.
  • To talk to you — transactional emails (password resets, payment receipts), and product updates if you opted in.

4. AI processing

Your content briefs and generated outputs are sent to AI providers (Anthropic, OpenAI, OpenRouter, Google) to produce the output you requested. Those providers process the data under their own terms and do not retain it for model training when used via their API (per their published policies as of 2026). We log model, token counts, and cost per call, but do not store the prompt or response content in our admin analytics — only on your own piece records, which you can delete.

5. Who we share with

We share data only with the third parties needed to run the service:

  • Stripe — payment processing.
  • AI providers (Anthropic, OpenAI, OpenRouter, Google) — content generation.
  • Email providers — transactional and product email delivery.
  • Cloud hosting — AWS / Hetzner / equivalent for app servers and storage.
  • Social platforms you connect (Instagram, LinkedIn, TikTok, Facebook, X, YouTube) — only the content you choose to publish.

We do not sell or rent your data, and we do not share it for third-party advertising.

6. Cookies

We use a minimal set of cookies:

  • Essential — session, CSRF token, cookie-preference state. Always on.
  • Analytics (opt-in) — Google Analytics 4 with consent. Off until you accept in the banner.
  • Marketing (opt-in) — only loaded if you accept the marketing toggle.

Manage preferences via the cookie banner at the bottom of the page.

7. How long we keep it

  • Account + content data: while your account is active, plus 30 days after closure for backup retention.
  • Billing records: 7 years (or as required by your local tax law).
  • AI usage logs: 18 months for product analytics.
  • Connected-platform tokens: until you disconnect the channel or close the account.

8. Your rights

If you're in the EU, UK, California, or another jurisdiction with similar laws, you have the right to:

  • Access the data we hold about you.
  • Correct inaccurate data.
  • Delete your account and associated data ("right to be forgotten").
  • Export your data in a portable format (JSON/CSV).
  • Object to processing or restrict its scope.
  • Withdraw consent for analytics/marketing at any time via the cookie banner.

Email [email protected] to exercise any of these. We aim to respond within 30 days.

9. Security

We protect data with TLS in transit, encryption at rest for sensitive fields (OAuth tokens, password hashes via Bcrypt), tenant isolation in the database (every row is scoped by tenant), role-based access for admins, and audit logging on sensitive admin actions. See our security page for more.

10. International transfers

SocialCTL's servers and some of our processors operate in the EU and the US. Transfers outside your country happen under Standard Contractual Clauses or equivalent safeguards where required.

11. Children

SocialCTL is not directed at children under 16. We do not knowingly collect personal data from anyone under that age. If you believe a child has provided us data, email [email protected] and we will delete it.

12. Changes

We may update this policy. Material changes will be announced by email and in the app at least 14 days before they take effect.

13. Contact

Privacy questions: [email protected]. General contact: the contact page. If you're not satisfied with our response, you have the right to complain to your local data-protection authority.