Privacy Policy

Last updated: February 9, 2026

Introduction

Welcome to Postprism. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you use our social media management platform.

By using Postprism, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our services.

Information We Collect

Information You Provide

  • Account Information: Name, email address, password, company name, and profile information

  • Content Data: Social media posts, images, videos, captions, and scheduling information

  • Payment Information: Billing address, payment method details (processed securely by our payment processor)

  • Communications: Messages you send to us, feedback, and support requests

  • Social Media Credentials: OAuth tokens and access credentials for connected platforms (encrypted and securely stored)

Information We Collect Automatically

  • Usage Data: Pages visited, features used, time spent, click patterns, and interaction data

  • Device Information: IP address, browser type, device type, operating system, and unique device identifiers

  • Log Data: Server logs, error reports, and diagnostic information

  • Cookies and Tracking Technologies: Session cookies, persistent cookies, and analytics data

Information from Third Parties

  • Social Media Platforms: Profile information, follower counts, and engagement metrics from LinkedIn, Twitter, Instagram, Facebook, TikTok, YouTube, and Reddit

  • Analytics Providers: Aggregated usage statistics and performance data

How We Use Your Information

We use your information to:

  • Provide, maintain, and improve our services

  • Process and manage your account and subscriptions

  • Publish content to your connected social media platforms

  • Generate AI-powered content suggestions and optimizations

  • Analyze and optimize platform performance and user experience

  • Send important notifications about service updates, security alerts, and account activity

  • Process payments and prevent fraud

  • Provide customer support and respond to inquiries

  • Comply with legal obligations and enforce our Terms of Service

  • Conduct research and development to enhance our offerings

Data Sharing and Disclosure

We do not sell your personal information. We may share your data in the following circumstances:

Service Providers

We work with third-party service providers who perform services on our behalf, including:

  • Cloud hosting and infrastructure (Vercel, Supabase, Upstash)

  • AI content generation (Anthropic Claude, OpenAI, Google Gemini)

  • Payment processing (Stripe)

  • Analytics and monitoring services

  • Customer support tools

Social Media Platforms

When you publish content through Postprism, we transmit your content to the social media platforms you've connected (LinkedIn, Twitter, Instagram, Facebook, TikTok, YouTube, Reddit) according to your instructions.

Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or if we believe disclosure is necessary to:

  • Comply with legal obligations

  • Protect our rights, property, or safety

  • Prevent fraud or security threats

  • Protect the rights and safety of our users

Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and provide options for managing your data.

Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy. Specific retention periods include:

  • Account Data: Retained while your account is active and for 30 days after account deletion

  • Content Data: Retained according to your settings, with deleted content removed within 30 days

  • Payment Data: Retained for 7 years for tax and accounting purposes

  • Usage Logs: Retained for 90 days for security and operational purposes

  • Backup Data: May persist in backups for up to 90 days after deletion

Security Measures

We implement industry-standard security measures to protect your data:

  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)

  • Access Controls: Role-based access controls and principle of least privilege

  • Authentication: Secure password hashing (bcrypt) and optional two-factor authentication

  • OAuth Security: Social media credentials stored as encrypted tokens with automatic refresh

  • Regular Audits: Security audits, penetration testing, and vulnerability scanning

  • Monitoring: 24/7 security monitoring and incident response procedures

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you

  • Correction: Request correction of inaccurate or incomplete information

  • Deletion: Request deletion of your personal information (subject to legal retention requirements)

  • Data Portability: Receive your data in a structured, machine-readable format

  • Opt-Out: Opt out of marketing communications (unsubscribe links provided in emails)

  • Restriction: Request restriction of processing in certain circumstances

  • Objection: Object to processing of your personal information

To exercise these rights, contact us at privacy@postprism.com. We will respond within 30 days.

International Data Transfers

Postprism operates globally, and your information may be transferred to, stored, and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers:

  • Standard Contractual Clauses (SCCs) approved by the European Commission

  • Adequacy decisions for transfers to countries with equivalent data protection

  • Privacy Shield certification for transfers to the United States (where applicable)

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. For detailed information about our cookie practices, please see our Cookie Policy.

You can control cookies through your browser settings. Note that disabling cookies may affect the functionality of our services.

Third-Party Services

Our platform integrates with third-party services, including social media platforms and AI providers. These services have their own privacy policies, and we encourage you to review them:

  • LinkedIn Privacy Policy

  • Twitter/X Privacy Policy

  • Instagram Privacy Policy

  • Facebook Privacy Policy

  • TikTok Privacy Policy

  • YouTube Privacy Policy

  • Reddit Privacy Policy

  • Anthropic Privacy Policy

  • OpenAI Privacy Policy

  • Google Gemini Privacy Policy

Children's Privacy

Postprism is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at privacy@postprism.com, and we will delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

  • Posting a notice on our website

  • Sending an email to your registered email address

  • Displaying an in-app notification

Continued use of our services after changes constitutes acceptance of the updated Privacy Policy.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@postprism.com

Data Protection Officer: dpo@postprism.com

Address: Postprism, Inc., 123 Social Media Lane, San Francisco, CA 94102, USA

For GDPR-related inquiries, please see our GDPR Compliance page.