Legal

Privacy Policy

This policy explains how mypostshare handles account data, OAuth tokens, connected social account data, publishing records, billing data, and support information.

Last updated: June 6, 2026

TermsData deletion

Hosted OAuth

Tokens stay server-side and are used for requested social workflows.

Tenant isolation

Organizations, apps, users, connections, and posts are scoped by account.

Security controls

API keys, redirects, credential storage, and activity logs support safer operation.

Information we collect

  • Account information such as name, email address, organization details, login records, and dashboard activity.
  • API app information such as app names, redirect URLs, API key prefixes, provider credential settings, and usage records.
  • Social connection information such as connected platform, remote account ID, username, access tokens, token expiry, scopes, and connection status.
  • Publishing information such as post content, media URLs, selected platforms, schedule time, delivery status, provider response IDs, and error messages.
  • Billing information such as plan, credit usage, subscription state, checkout records, and payment provider identifiers.

How we use information

  • To provide hosted OAuth, social account connection, direct publishing, scheduled publishing, dashboard tools, logs, and API access.
  • To authenticate users, protect accounts, enforce tenant boundaries, prevent abuse, and troubleshoot failed connection or publishing flows.
  • To process billing, calculate usage, manage subscriptions, issue credits, and provide customer support.
  • To improve reliability, measure product usage, and maintain operational security.

OAuth tokens and social platform data

  • OAuth access tokens are stored server-side and used only to operate connected-account features requested by the customer or end user.
  • mypostshare does not sell social platform data or use connected account content for advertising profiling.
  • Connected account data is retained only as needed to provide the service, meet legal obligations, prevent abuse, or support customer requests.

Sharing and processors

  • We share data with infrastructure, database, queue, email, analytics, and payment providers only as needed to operate the service.
  • When you connect a social account or publish content, relevant data is sent to the selected social platform according to that platform API.
  • We may disclose information if required by law, to protect users, or to investigate security, fraud, or abuse concerns.

Your choices and deletion

  • You can disconnect social accounts, rotate API keys, remove redirect URLs, and request account or organization data deletion.
  • For deletion requests, use the data deletion instructions page or contact support with the email tied to your account.
  • Some records may be retained when required for legal, billing, security, audit, or abuse-prevention reasons.