Privacy Policy

Personal Information You Provide

We collect information you provide directly when you:

• Create an account: Name, email address, password
• Complete your profile: Business name, industry, timezone, profile picture
• Subscribe to a plan: Payment information (processed by Paddle)
• Use the Service: Content you create, social media account connections
• Contact support: Communications and support tickets

Automatically Collected Information

When you use our Service, we automatically collect:

• Device information: Browser type, operating system, device type
• Usage data: Features used, pages visited, actions taken
• Log data: IP address, access times, referring URLs
• Cookies: Session and preference data (see Cookie section below)

Information from Third Parties

• Google Sign-In: Name, email, profile picture (if you choose to sign in with Google)
• Social Media Platforms: Account information when you connect platforms for publishing
• Paddle: Payment status and subscription information (not full payment details)

We use collected information to:

• Provide the Service: Create and manage your account, process subscriptions
• Generate AI Content: Process your inputs to create social media content
• Content Review Tracking: Record when you complete final reviews of scheduled posts to enable safe auto-publishing
• Improve the Service: Analyze usage patterns to enhance features
• Communicate: Send transactional emails, support responses, important updates
• Process Payments: Handle subscriptions and billing through Paddle
• Ensure Security: Detect and prevent fraud, abuse, and unauthorized access
• Legal Compliance: Comply with applicable laws and regulations

Final Review Data

When you complete a final review for scheduled posts, we store:

• Whether the final review has been completed (true/false)
• The timestamp when the review was completed

This data is used to determine which posts are eligible for auto-publishing and to provide you with a record of reviewed content.

We do not sell your personal information.

We may share information with:

• Paddle (Payment Processor): To process payments and manage subscriptions
• DeepSeek AI: Content generation inputs are sent to DeepSeek for processing (inputs are not permanently stored by them)
• Hosting Providers: Vercel for application hosting, Neon for database services
• Social Media Platforms: When you connect accounts for direct publishing
• Google: For authentication if you use Google Sign-In
• Legal Requirements: When required by law, court order, or to protect our rights
• Business Transfers: In connection with mergers, acquisitions, or asset sales (users will be notified)

We implement industry-standard security measures to protect your data:

• Encryption: All data transmitted via HTTPS/TLS encryption
• Password Security: Passwords are hashed using bcrypt (never stored in plain text)
• Access Controls: Strict internal access controls and authentication
• Database Security: Encrypted database connections with role-based access
• Rate Limiting: Protection against brute force and abuse attempts
• Regular Audits: Periodic security reviews and updates

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security but commit to promptly addressing any security incidents.

We retain your information as follows:

• Active Account: Data is retained while your account is active
• After Cancellation: Content and data retained for 30 days (for account recovery)
• After Deletion Request: Data deleted within 30 days, backups within 90 days
• Legal Requirements: Some data may be retained longer if required by law
• Analytics Data: Aggregated, anonymized data may be retained indefinitely

We use cookies and similar technologies for:

• Essential Cookies: Required for the Service to function (authentication, security)
• Preference Cookies: Remember your settings and preferences
• Analytics Cookies: Understand how you use the Service to improve it

Managing Cookies: You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of the Service.

For more details, see our Cookie Policy.

We may show ads to Free plan users through Google AdSense. AdSense may use cookies or similar technologies to serve and measure ads. You can control ad personalization in your Google Ads settings.

For more information, see the Google Ads policies.

Our Service is not intended for children under 13 (or under 16 in the EEA). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately at admin@contentdrifter.com, and we will promptly delete such information.

Your information may be transferred to and processed in countries other than your own, including the United States. These countries may have different data protection laws.

We ensure appropriate safeguards are in place for international transfers, including:

• Standard Contractual Clauses approved by relevant authorities
• Data processing agreements with service providers
• Compliance with applicable data protection frameworks

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal reasons. We will notify you of significant changes by:

• Posting a notice on our website
• Sending an email to the address associated with your account
• Updating the “Last Updated” date at the top of this policy

We encourage you to review this Privacy Policy periodically.