Privacy Policy

Introduction

PostZen ("PostZen," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our social media management platform and related services (collectively, the "Service").

By using PostZen, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this privacy policy, please do not access the Service.

Information We Collect

Personal Information

We collect information you provide directly to us, including:

• Account information (name, email address, password)
• Profile information (company name, job title, profile picture)
• Payment information (processed securely through our payment provider)
• Social media account credentials and tokens (encrypted and securely stored)
• Content you create, upload, or share through the Service
• Communications with us (support tickets, feedback)

Automatically Collected Information

• Device information (browser type, operating system, device identifiers)
• Log data (IP address, access times, pages viewed)
• Usage data (features used, actions taken, engagement metrics)
• Cookies and similar tracking technologies

Social Media Data

When you connect your social media accounts, we access:

• Profile information from connected accounts
• Posts, comments, and engagement data
• Analytics and performance metrics
• Direct messages are NOT accessed from LinkedIn. PostZen does not read or store LinkedIn direct messages.

LinkedIn Data and API Usage

When you choose to connect your LinkedIn account or LinkedIn Company Page to PostZen, we access certain information from LinkedIn through LinkedIn's Marketing Developer Platform and Community Management APIs.

Information We Access

The information we may access includes:

• Basic member identification information required for authentication (such as name and profile photo), as permitted by LinkedIn OAuth
• Organization (Company Page) details you administer
• Permissions necessary to publish posts on your behalf
• Analytics and engagement metrics related to posts you publish
• Any other data you explicitly authorize via LinkedIn OAuth

What We Do NOT Collect

We do NOT collect or store your LinkedIn password. Authentication is handled securely through LinkedIn's OAuth 2.0 protocol.

How We Use LinkedIn Data

We use this data solely to:

• Authenticate your LinkedIn login
• Publish posts on LinkedIn Company Pages when explicitly authorized by the Page administrator
• Retrieve analytics to display inside your PostZen dashboard
• Improve user experience and product functionality

Security and Compliance

Your LinkedIn access token is encrypted and stored securely. You may revoke PostZen's access to your LinkedIn account at any time from your LinkedIn settings or from within your PostZen account settings.

PostZen does not access, store, or process personal LinkedIn profile content beyond what is strictly necessary to enable Company Page publishing and analytics, in compliance with LinkedIn Platform Policies.

PostZen's use of LinkedIn data complies with LinkedIn's API Terms of Service, Platform Policies, and Marketing Developer Platform guidelines.

Facebook, Instagram & Meta Platform Data Usage

When you connect your Facebook Page, Instagram Business account, or Threads account to PostZen, we access and process data through Meta Platforms APIs (Facebook Graph API, Instagram Graph API) in accordance with Meta Platform Terms and Policies.

Information We Access May Include:

• Facebook Page information you manage
• Instagram Business account profile details
• Posts, captions, media, comments, and engagement metrics
• Insights and analytics data for connected Pages and accounts
• Permissions required to publish content on your behalf

What We Do NOT Collect

• We do not collect or store your Facebook or Instagram passwords.
• Authentication is handled securely via Meta OAuth.

How We Use Meta Data

• Publish posts to Facebook Pages and Instagram Business accounts as instructed by you
• Retrieve post performance analytics for display in the PostZen dashboard
• Manage scheduled posts and content workflows
• Improve platform reliability and user experience

PostZen's use of Facebook and Instagram data complies with the Meta Platform Terms, Meta Developer Policies, and applicable data protection laws.

Threads accounts connected via Instagram Business profiles are handled in accordance with the same Meta Platform data policies described above.

Content Publishing on Your Behalf

PostZen publishes content to your connected social media accounts (including LinkedIn, Twitter/X, Facebook, Instagram, and others) only when you explicitly schedule or authorize a post within the platform.

We will never publish content without your direct action or consent. This includes:

• No automatic posting without user initiation
• No posting of content you have not explicitly created or approved
• No unauthorized actions on your connected social accounts
• Full user control over what gets published and when

You retain complete control over the content and timing of all posts made through PostZen. Scheduled posts will only be published at the times you specify, and you can modify or cancel any scheduled content before it is published.

How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Service
• Process transactions and send related information
• Send technical notices, updates, and support messages
• Respond to your comments, questions, and customer service requests
• Generate AI-powered content suggestions and analytics
• Monitor and analyze trends, usage, and activities
• Detect, investigate, and prevent fraudulent transactions and abuse
• Personalize and improve your experience
• Comply with legal obligations

How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

• Service Providers: Third parties that perform services on our behalf (hosting, analytics, payment processing)
• Social Media Platforms: To publish content and retrieve analytics as directed by you
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Legal Requirements: To comply with applicable laws, regulations, or legal processes
• Protection: To protect the rights, property, and safety of PostZen, our users, and others
• With Your Consent: When you explicitly authorize us to share information

Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

• Encryption of data in transit (TLS 1.3) and at rest (AES-256)
• Regular security assessments and penetration testing
• Access controls and authentication mechanisms
• Employee training on data protection practices
• SOC 2 Type II compliance (in progress)

Your Rights and Choices

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your personal data
• Portability: Request transfer of your data to another service
• Objection: Object to certain processing activities
• Restriction: Request restriction of processing
• Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us at support@postzen.in.

GDPR Compliance

For users in the European Economic Area (EEA), we process personal data on the following legal bases:

• Performance of a contract (providing the Service)
• Legitimate interests (improving the Service, security)
• Consent (marketing communications, optional features)
• Legal obligations (compliance with applicable laws)

Data Retention

We retain your personal data for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with legal obligations, resolve disputes, and enforce our agreements. When you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law.

LinkedIn Data Deletion and Revocation

If you delete your PostZen account or remove LinkedIn access from your settings, all LinkedIn tokens and related stored data will be permanently deleted from our systems within 30 days.

How to Revoke Access

You may revoke PostZen's access to your LinkedIn account at any time through:

• PostZen Settings: Navigate to your account settings and disconnect your LinkedIn account
• LinkedIn Privacy Settings: Go to LinkedIn > Settings & Privacy > Data Privacy > Permitted Services and remove PostZen

Upon revocation, we will immediately stop accessing any LinkedIn data and will delete all stored LinkedIn tokens and associated data from our systems.

Independent Disconnection

You can disconnect your LinkedIn account from PostZen without deleting your PostZen account. This allows you to continue using PostZen with other connected platforms while removing LinkedIn access specifically.

Facebook & Instagram Data Deletion

If you disconnect your Facebook or Instagram account from PostZen or delete your PostZen account, all Meta-related access tokens and retrieved data will be permanently deleted from our systems within 30 days.

How to Revoke Meta Access

You may also revoke PostZen's access at any time directly from Meta:

• Facebook: Settings → Business Integrations → Remove PostZen
• Instagram: Settings → Security → Apps and Websites → Remove PostZen

Upon revocation, PostZen will immediately stop accessing Meta data and will delete stored tokens and associated data in accordance with Meta Platform requirements.

Children's Privacy

The Service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16 without parental consent, we will take steps to delete that information.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.