Back to Home

Privacy Policy

Last updated: 7/3/2025

1. Introduction

PostEase ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our social media management platform and services.

By using PostEase, you consent to the practices described in this Privacy Policy.

2. Information We Collect

2.1 Account Information

  • Email address for authentication via Supabase Auth
  • Account preferences and settings
  • Profile information you choose to provide

2.2 Social Media Platform Data

  • Facebook: Page access tokens, page IDs, page names
  • Instagram: Business account IDs, usernames, profile information
  • TikTok: User IDs, display names, authentication tokens
  • YouTube: Channel IDs, channel names, authentication tokens

2.3 Facebook/Instagram User Data

When you connect your Facebook Pages or Instagram Business accounts, we collect the following Facebook/Instagram user data:

  • Facebook Page IDs, page names, and basic page information
  • Instagram Business account IDs, usernames, and profile information
  • OAuth access tokens and refresh tokens for Facebook/Instagram API access
  • Content publishing permissions and page management capabilities
  • Basic account information necessary for posting functionality

2.4 Google User Data

When you connect your YouTube account, we collect the following Google user data:

  • YouTube channel IDs and channel information
  • Channel titles and basic profile information
  • OAuth access tokens and refresh tokens for YouTube API access
  • Video upload permissions and channel management capabilities

2.5 TikTok User Data

When you connect your TikTok account, we collect the following TikTok user data:

  • TikTok user IDs and display names
  • Profile information including username and verification status
  • OAuth access tokens and refresh tokens for TikTok API access
  • Video upload permissions and content posting capabilities
  • Basic account performance information for posting functionality

2.6 Content and Media

  • Posts, captions, and descriptions you create
  • Images and videos uploaded to our platform (temporarily stored in AWS S3)
  • Scheduling information and post metadata

2.7 Usage Data

  • Log data and analytics information
  • Device information and IP addresses
  • Usage patterns and feature interactions

3. How We Use Your Information

  • Provide and maintain our social media management services
  • Authenticate and authorize posts to your connected social media accounts
  • Process and schedule your content across multiple platforms
  • Store and manage your media files securely
  • Send service-related notifications and updates
  • Improve our platform features and user experience
  • Comply with legal obligations and platform requirements

3.1 Facebook/Instagram User Data Usage

We use Facebook/Instagram user data exclusively for the following purposes:

  • Authenticate your Facebook Page and Instagram Business account connections
  • Publish posts, images, and content to your Facebook Pages and Instagram accounts on your behalf
  • Retrieve basic page/account information for display in our interface
  • Maintain your Facebook and Instagram connections through token refresh
  • Enable content posting functionality including scheduling and metadata management

Important: Facebook/Instagram user data is used solely to provide social media posting functionality and is not used for any other purposes, including advertising, analytics, user profiling, or data resale.

3.2 Google User Data Usage

We use Google user data exclusively for the following purposes:

  • Authenticate your YouTube account connection
  • Upload and publish videos to your YouTube channel on your behalf
  • Retrieve basic channel information for display in our interface
  • Maintain your YouTube connection through token refresh

Important: Google user data is used solely to provide YouTube posting functionality and is not used for any other purposes, including advertising, analytics, or data resale.

3.3 TikTok User Data Usage

We use TikTok user data exclusively for the following purposes:

  • Authenticate your TikTok account connection
  • Upload and publish videos to your TikTok profile on your behalf
  • Retrieve basic profile information for display in our interface
  • Maintain your TikTok connection through token refresh
  • Enable content posting functionality including privacy settings and metadata

Important: TikTok user data is used solely to provide TikTok posting functionality and is not used for any other purposes, including advertising, analytics, or data resale.

4. Facebook/Instagram User Data Sharing and Disclosure

We do not sell, rent, trade, or otherwise transfer Facebook/Instagram user data to third parties.

4.1 No Third-Party Sharing

PostEase does not share, transfer, or disclose Facebook/Instagram user data to any third parties for any purpose, including:

  • Advertising or marketing purposes
  • Analytics or data analysis by external parties
  • Sale to data brokers or information resellers
  • Integration with other third-party services
  • Building or augmenting user profiles without explicit consent

4.2 Limited Internal Use

Facebook/Instagram user data is accessed only by our secure application infrastructure and is:

  • Processed entirely within our secure application environment
  • Used exclusively for Facebook/Instagram API operations on your behalf
  • Never accessed by our staff for any purpose other than technical troubleshooting when explicitly requested by you
  • Automatically deleted when you disconnect your Facebook or Instagram accounts

4.3 Compliance with Meta Platform Terms

Our use of Facebook/Instagram user data strictly complies with Meta's Platform Terms and Developer Policies, including:

  • Processing data only for authorized posting and content management activities
  • Implementing appropriate security measures as required by Meta
  • Not using data for any prohibited practices as defined by Meta
  • Respecting user content ownership and intellectual property rights
  • Maintaining valid user consent for all data processing activities

4.4 Legal Compliance

We may only disclose Facebook/Instagram user data if required by law, such as:

  • In response to a valid court order or subpoena
  • To comply with applicable data protection regulations
  • To protect our legal rights or the safety of our users

In such cases, we will make reasonable efforts to notify you unless prohibited by law.

5. Google User Data Sharing and Disclosure

We do not sell, rent, trade, or otherwise transfer Google user data to third parties.

5.1 No Third-Party Sharing

PostEase does not share, transfer, or disclose Google user data to any third parties for any purpose, including:

  • Advertising or marketing purposes
  • Analytics or data analysis by external parties
  • Sale to data brokers or information resellers
  • Integration with other third-party services

5.2 Limited Internal Use

Google user data is accessed only by our secure application infrastructure and is:

  • Processed entirely within our secure application environment
  • Used exclusively for YouTube API operations on your behalf
  • Never accessed by our staff for any purpose other than technical troubleshooting when explicitly requested by you
  • Automatically deleted when you disconnect your YouTube account

5.3 Legal Compliance

We may only disclose Google user data if required by law, such as:

  • In response to a valid court order or subpoena
  • To comply with applicable data protection regulations
  • To protect our legal rights or the safety of our users

In such cases, we will make reasonable efforts to notify you unless prohibited by law.

6. TikTok User Data Sharing and Disclosure

We do not sell, rent, trade, or otherwise transfer TikTok user data to third parties.

6.1 No Third-Party Sharing

PostEase does not share, transfer, or disclose TikTok user data to any third parties for any purpose, including:

  • Advertising or marketing purposes
  • Analytics or data analysis by external parties
  • Sale to data brokers or information resellers
  • Integration with other third-party services
  • Cross-context behavioral advertising

6.2 Limited Internal Use

TikTok user data is accessed only by our secure application infrastructure and is:

  • Processed entirely within our secure application environment
  • Used exclusively for TikTok API operations on your behalf
  • Never accessed by our staff for any purpose other than technical troubleshooting when explicitly requested by you
  • Automatically deleted when you disconnect your TikTok account

6.3 Compliance with TikTok Developer Terms

Our use of TikTok user data strictly complies with TikTok's Developer Terms of Service and Data Sharing Agreement, including:

  • Processing data only for authorized posting activities
  • Implementing appropriate security measures as required by TikTok
  • Not using data for any unauthorized commercial purposes
  • Respecting user content ownership and intellectual property rights

6.4 Legal Compliance

We may only disclose TikTok user data if required by law, such as:

  • In response to a valid court order or subpoena
  • To comply with applicable data protection regulations
  • To protect our legal rights or the safety of our users

In such cases, we will make reasonable efforts to notify you unless prohibited by law.

7. Data Storage and Security

7.1 Encryption

All social media access tokens, including Facebook/Instagram, Google and TikTok user data, are encrypted using AES-256-GCM encryption before storage in our database.

7.2 Facebook/Instagram User Data Protection

Facebook/Instagram user data receives comprehensive security measures:

  • End-to-end encryption during transmission and storage
  • Restricted access controls with principle of least privilege
  • Regular security audits and monitoring
  • Compliance with Meta's data security requirements and Platform Terms
  • Administrative, physical, and technical safeguards meeting industry standards

7.3 Google User Data Protection

Google user data receives additional security measures:

  • End-to-end encryption during transmission and storage
  • Restricted access controls with principle of least privilege
  • Regular security audits and monitoring
  • Compliance with Google's data security requirements

7.4 TikTok User Data Protection

TikTok user data receives equivalent security measures:

  • End-to-end encryption during transmission and storage
  • Restricted access controls with principle of least privilege
  • Regular security audits and monitoring
  • Compliance with TikTok's data security requirements and Developer Terms

7.5 Media Storage

Your uploaded media files are temporarily stored in AWS S3 with secure access controls. Files are automatically deleted after successful posting or workflow completion.

7.6 Database Security

Your data is stored securely using Supabase with PostgreSQL, featuring row-level security and encrypted connections.

8. Third-Party Services

8.1 Social Media Platforms

We integrate with Facebook, Instagram, TikTok, and YouTube APIs to post content on your behalf. Your use of these platforms is subject to their respective privacy policies and terms of service.

8.2 Infrastructure Providers

Our infrastructure providers process data on our behalf under strict data processing agreements:

  • Supabase: Authentication and database services (Facebook/Instagram, Google and TikTok user data is encrypted before storage)
  • AWS S3: Temporary media file storage (no Facebook/Instagram, Google or TikTok user data stored)
  • Trigger.dev: Background job processing (processes encrypted tokens only for API calls)

Important: These providers do not have access to unencrypted Facebook/Instagram, Google or TikTok user data and are contractually bound to use data only for providing their specific services to us.

9. Access Token Management

We store encrypted access tokens and refresh tokens to maintain your social media connections. These tokens are:

  • Automatically refreshed when needed to maintain service functionality
  • Used only for authorized posting activities on your behalf
  • Immediately invalidated when you disconnect a platform
  • Protected with industry-standard encryption

9.1 Facebook/Instagram Token Management

Facebook/Instagram OAuth tokens receive special handling:

  • Stored with additional encryption layers
  • Used exclusively for Facebook/Instagram API operations
  • Automatically revoked when Facebook or Instagram connections are removed
  • Regularly validated and refreshed according to Meta's Platform Terms
  • Protected and never transferred, shared, or solicited to unauthorized parties

9.2 Google Token Management

Google OAuth tokens receive special handling:

  • Stored with additional encryption layers
  • Used exclusively for YouTube API operations
  • Automatically revoked when YouTube connection is removed
  • Regularly validated and refreshed according to Google's requirements

9.3 TikTok Token Management

TikTok OAuth tokens receive equivalent handling:

  • Stored with additional encryption layers
  • Used exclusively for TikTok API operations
  • Automatically revoked when TikTok connection is removed
  • Regularly validated and refreshed according to TikTok's Developer Terms

10. Your Rights and Choices

  • Access: Request access to your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your personal data
  • Portability: Receive your data in a portable format
  • Withdrawal: Revoke consent for data processing
  • Platform Disconnection: Remove social media connections at any time

10.1 Facebook/Instagram Data Rights

Regarding your Facebook/Instagram user data, you have the right to:

  • Disconnect your Facebook Pages and Instagram accounts at any time, which immediately deletes all stored Facebook/Instagram user data
  • Request a copy of what Facebook/Instagram user data we have stored
  • Revoke our access to your Facebook and Instagram accounts through your Facebook account settings
  • Request modification or deletion of your data through an easily accessible and clearly marked process

10.2 Google Data Rights

Regarding your Google user data, you have the right to:

  • Disconnect your YouTube account at any time, which immediately deletes all stored Google user data
  • Request a copy of what Google user data we have stored
  • Revoke our access to your YouTube account through your Google Account settings

10.3 TikTok Data Rights

Regarding your TikTok user data, you have the right to:

  • Disconnect your TikTok account at any time, which immediately deletes all stored TikTok user data
  • Request a copy of what TikTok user data we have stored
  • Revoke our access to your TikTok account through your TikTok account settings
  • Object to processing activities as outlined in TikTok's Developer Data Terms

11. Data Retention

  • Account data: Retained while your account is active
  • Social media tokens: Retained until you disconnect the platform
  • Facebook/Instagram user data: Immediately deleted when Facebook or Instagram connections are removed
  • Google user data: Immediately deleted when YouTube connection is removed
  • TikTok user data: Immediately deleted when TikTok connection is removed
  • Media files: Automatically deleted after posting workflow completion
  • Post history: Retained for service functionality and analytics
  • Account deletion: All data permanently removed within 30 days

12. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your data in accordance with applicable data protection laws.

Facebook/Instagram, Google and TikTok user data is processed in compliance with their respective data residency and international transfer requirements.

13. Children's Privacy

PostEase is not intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

15. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

PostEase Support

Email: contact@postease.pro

Website: https://postease.pro