← Back to AutoPoste

Privacy Policy

Last updated: February 11, 2026

1. Introduction

AutoPoste (“we”, “our”, “us”) is a social media management platform that helps users schedule, publish, and analyze content across multiple social media platforms. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our service at autoposte.app (the “Service”).

By using AutoPoste, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Name and email address
  • Password (hashed and encrypted)
  • Profile information you choose to provide

2.2 Social Media Platform Data

When you connect your social media accounts (Facebook, Instagram, LinkedIn, X/Twitter, Pinterest, Google Business Profile), we collect:

  • OAuth access tokens and refresh tokens (encrypted with AES-256-GCM)
  • Your social media profile information (name, profile picture, account ID)
  • Post content and media that you create through our platform
  • Analytics data from your connected accounts (impressions, likes, comments, shares)
  • Comments on your published posts for engagement management

2.3 Usage Data

We automatically collect:

  • Log data (IP address, browser type, pages visited)
  • Feature usage patterns within the Service

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve the Service
  • Schedule and publish content to your connected social media accounts on your behalf
  • Display analytics and performance metrics for your social media accounts
  • Sync and display comments from your connected platforms for engagement management
  • Generate AI-powered content suggestions (using OpenAI)
  • Send you service-related notifications
  • Ensure the security and integrity of the Service

4. Data Storage and Security

  • All data is stored in a PostgreSQL database hosted on Neon (US East region)
  • Social media OAuth tokens are encrypted using AES-256-GCM encryption before storage
  • Passwords are hashed using bcrypt
  • All communications use HTTPS/TLS encryption
  • We use Prisma Accelerate for secure, connection-pooled database access
  • The application is hosted on Vercel with enterprise-grade security

5. Third-Party Services

We integrate with the following third-party services:

  • Social Media Platforms (Facebook/Meta, Instagram, LinkedIn, X/Twitter, Pinterest, Google Business Profile) — to publish content and retrieve analytics on your behalf
  • OpenAI — to provide AI-powered content generation (your content prompts may be sent to OpenAI)
  • Vercel — application hosting
  • Neon — database hosting

We do not sell, rent, or share your personal data with third parties for their marketing purposes.

6. Pinterest-Specific Disclosures

When you connect your Pinterest account to AutoPoste:

  • We request access to read your boards and pins, create and delete pins, and read your account information
  • We only create or modify pins when you explicitly initiate a publish action
  • Pinterest data is used solely to provide the scheduling and analytics features you requested
  • We do not cache Pinterest data beyond what is necessary for the current user session
  • You can disconnect your Pinterest account at any time from the Settings page, which revokes our access
  • We comply with the Pinterest Developer Guidelines and Pinterest API Terms of Service

7. Your Rights

You have the right to:

  • Access your personal data stored in our system
  • Request correction of inaccurate data
  • Request deletion of your account and all associated data
  • Disconnect any connected social media account at any time
  • Export your data
  • Withdraw consent for data processing

8. Data Retention

We retain your data for as long as your account is active. When you delete your account, all personal data, social media tokens, and content are permanently deleted within 30 days. Analytics data may be retained in anonymized form.

9. Children's Privacy

AutoPoste is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that we have collected data from a child under 13, we will delete it immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last updated” date.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@autoposte.com