Privacy Policy

Last updated: March 22, 2026

1. Introduction

Postzilia ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share your information when you use our AI-powered social media management platform.

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, and password. If you sign up through a third-party provider (e.g., Google), we receive basic profile information from that provider.

Brand Kit Data

You may upload logos, brand colors, product descriptions, and custom prompts to create your brand kit. This data is stored securely and used solely to generate personalized content for your social media accounts.

Social Media Connections

When you connect social media accounts, we receive access tokens and basic profile information from those platforms. We use these tokens only to schedule and publish content on your behalf.

Usage Data

We collect information about how you interact with the Service, including features used, content generated, and scheduling activity. This helps us improve the platform and your experience.

Payment Information

Payment processing is handled by Stripe. We do not store your full credit card number. Stripe may collect and process your payment data in accordance with their privacy policy.

3. How We Use Your Information

  • To provide and operate the Service, including AI content generation and social media scheduling
  • To personalize your experience using your brand kit and preferences
  • To process payments and manage your subscription
  • To communicate with you about your account, updates, and support requests
  • To improve our AI models and platform features using aggregated, anonymized data
  • To detect and prevent fraud, abuse, or security threats

4. AI Content Generation

When you use our AI features, your inputs (brand information, product details, prompts) are sent to third-party AI providers to generate content. We do not use your personal brand data to train AI models. Generated content is associated with your account and is not shared with other users.

5. Data Sharing

We do not sell your personal data. We may share information with:

  • Service Providers: Third-party services that help us operate the platform (e.g., Supabase for database and authentication, Stripe for payments, AI providers for content generation)
  • Social Media Platforms: Content and scheduling data is shared with platforms you connect (Facebook, Instagram, Twitter/X, LinkedIn) to publish your posts
  • Legal Requirements: We may disclose information if required by law, regulation, or legal process

6. Data Storage and Security

Your data is stored securely using Supabase with row-level security (RLS) policies ensuring that users can only access their own data. We use encryption in transit (TLS) and implement industry-standard security practices. Social media access tokens are stored securely and are never exposed to other users.

7. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law or for legitimate business purposes (e.g., billing records). AI-generated content and scheduling history are deleted along with your account.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Withdraw consent for data processing
  • Object to or restrict certain processing activities

To exercise any of these rights, please contact us at support@postzilia.com.

9. Cookies

We use essential cookies for authentication and session management. We do not use third-party tracking cookies or advertising cookies. Your preferences and session data are stored locally to provide a seamless experience.

10. Children's Privacy

The Service is not intended for users under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child under 16, we will take steps to delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through a notice on the Service. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at support@postzilia.com.