Privacy Policy

Last Updated: November 7, 2025

1. Introduction

Welcome to AutoPost AI ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our social media auto-posting platform that integrates with Meta (Facebook and Instagram), Twitter, and other social media APIs.

By using our service, you agree to the collection and use of information in accordance with this Privacy Policy. Please read this policy carefully to understand our practices regarding your data.

2. Information We Collect

2.1 Personal Information

We collect information that you provide directly to us, including:

  • Name and email address when you create an account
  • Profile information you choose to provide
  • Payment information (processed securely through third-party payment processors)
  • Content you upload, including images, captions, and scheduled posts

2.2 Social Media API Credentials

To enable auto-posting functionality, we collect and store:

  • Meta (Facebook/Instagram) API Credentials: App ID, App Secret, and OAuth access tokens
  • Twitter/X API Credentials: API Key, API Secret, Bearer Token, and OAuth tokens
  • Access Tokens: OAuth tokens granted by social media platforms for posting on your behalf

Important: All API credentials and tokens are encrypted and stored securely. We never share your credentials with third parties except as necessary to provide the service.

2.3 Usage Data

We automatically collect information about how you use our service:

  • Log files and analytics data
  • Device information and IP address
  • Browser type and version
  • Pages visited and features used
  • Post scheduling and posting history

3. How We Use Your Information

We use the collected information for the following purposes:

  • Service Provision: To provide, maintain, and improve our auto-posting service
  • Social Media Integration: To connect with Meta, Twitter, and other social media APIs on your behalf
  • Content Posting: To schedule and publish posts to your connected social media accounts
  • Account Management: To manage your account, process payments, and communicate with you
  • Analytics: To analyze usage patterns and improve our platform
  • Security: To detect and prevent fraud, abuse, and unauthorized access
  • Legal Compliance: To comply with applicable laws and regulations

4. Third-Party API Services

4.1 Meta (Facebook & Instagram) APIs

When you connect your Facebook or Instagram accounts, we interact with Meta's Graph API and Instagram Graph API. By using our service:

  • You authorize us to access your Meta account data according to the permissions you grant
  • We comply with Meta's Platform Terms and Developer Policy
  • Your data is subject to Meta's Privacy Policy in addition to this policy
  • We may store access tokens securely to maintain your connection

Meta Permissions Used: pages_manage_posts, pages_read_engagement, pages_show_list, instagram_basic, instagram_content_publish

4.2 Twitter/X API

When you connect your Twitter/X account, we interact with Twitter's API v2. By using our service:

  • You authorize us to post tweets and manage your Twitter content
  • We comply with Twitter's Developer Agreement and Policy
  • Your data is subject to Twitter's Privacy Policy in addition to this policy
  • We follow Twitter's rate limits and usage guidelines

4.3 Other Social Media Platforms

We may integrate with additional social media platforms in the future. Each platform's terms and privacy policies will apply to their respective integrations.

5. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: All API credentials and sensitive data are encrypted at rest and in transit
  • Secure Storage: Data is stored in secure, encrypted databases
  • Access Controls: Strict access controls limit who can access your data
  • Regular Audits: We conduct regular security audits and updates
  • Token Management: OAuth tokens are securely stored and refreshed as needed

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee absolute security.

6. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

  • Service Providers: With trusted third-party service providers who assist in operating our platform (hosting, payment processing, analytics)
  • Social Media Platforms: As necessary to post content to your connected social media accounts via their APIs
  • Legal Requirements: When required by law, court order, or governmental regulation
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to users)
  • Consent: When you have given explicit consent for specific sharing

7. Your Rights and Choices

You have the following rights regarding your personal information:

  • Access: Request access to your personal data we hold
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and associated data
  • Portability: Request a copy of your data in a portable format
  • Opt-Out: Unsubscribe from marketing communications
  • Disconnect: Disconnect your social media accounts at any time
  • Revoke API Access: Revoke API tokens and credentials through your account settings

To exercise these rights, please contact us at the email address provided below or use the settings available in your account dashboard.

8. Data Retention

We retain your personal information for as long as necessary to:

  • Provide and maintain our services
  • Comply with legal obligations
  • Resolve disputes and enforce agreements
  • Maintain API connections and scheduled posts

When you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal purposes.

9. Children's Privacy

Our service is not intended for users under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. By using our service, you consent to the transfer of your data to countries that may have different data protection laws. We ensure appropriate safeguards are in place for such transfers.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date at the top of this page
  • Sending you an email notification for material changes
  • Displaying a prominent notice on our platform

Your continued use of our service after changes become effective constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@autopostai.com

Support: support@autopostai.com

13. Compliance with Platform Policies

Our use of third-party APIs is subject to the following platform policies:

By using our service, you acknowledge that you have read and agree to comply with these platform policies in addition to our own terms.

← Back to Home