Privacy Policy

Account Information: Name, email address, and password when you create an account. If you sign up via Google or Facebook OAuth, we receive your public profile information (name, email, profile picture) from the identity provider.

Payment Information: When you subscribe to a paid plan, payment is processed securely by Stripe. We do not store your credit card number, CVV, or full card details. We store only your Stripe customer ID, last four digits, card brand, and subscription status.

Connected Platform Data: When you connect Facebook Pages, Pinterest accounts, or WordPress sites, we access data through their official APIs (Facebook Graph API, Pinterest API v5, WordPress REST API) using OAuth tokens you authorize. This includes page metadata, posts, engagement metrics, and content you choose to publish through our platform.

Analytics Data: If you enable our analytics tracker on your WordPress site, we collect anonymous visitor data: page views, session duration, scroll depth, device type, browser, referral source, and UTM parameters. We use a first-party cookie with a random visitor ID — no personally identifiable information is collected from your site visitors.

Usage Data: We log how you interact with LinkFlows (features used, pages visited, actions taken) to improve the product and provide support. Server logs include IP addresses, browser user agents, and timestamps.

Provide and operate the service: Schedule and publish content to Facebook, Pinterest, and WordPress on your behalf; run autopilot campaigns; send email newsletters to your subscribers; display analytics dashboards.

Process payments: Manage subscriptions, invoices, and billing through Stripe.

Send essential communications: Account verification, password resets, billing receipts, security alerts, and critical product updates.

Improve the platform: Analyze aggregated usage patterns to fix bugs, improve UX, and develop new features. We do not sell or share individual usage data.

Provide AI features: When you use AI-powered features (content generation, comment automation), your prompts and content are sent to third-party AI providers (OpenAI, Anthropic) for processing. We do not use your content to train AI models.

Facebook / Meta: We use the Facebook Graph API under Meta's Platform Terms. We access only the pages and permissions you explicitly authorize. When you remove our app from your Facebook settings, Facebook notifies us and we delete your Facebook data. You can also disconnect pages from our dashboard at any time.

Pinterest: We use the Pinterest API v5 under Pinterest's Developer Terms. We access your boards, pins, and analytics only as authorized. Tokens are refreshed automatically and can be revoked by disconnecting your account.

Stripe: Payment processing is handled by Stripe Inc. Stripe's privacy policy governs how they handle your payment data. We receive only non-sensitive metadata (subscription status, plan, invoice history).

AI Providers (OpenAI, Anthropic): When you use AI features, relevant content is sent to these providers for processing. They process data under their respective data processing agreements and do not use your data for model training.

Email Service Providers (Brevo, SendGrid, Resend, Mailtrap): When you configure an email provider, your subscribers' email addresses and newsletter content are sent through your chosen ESP using your own API key. We do not have access to your ESP account beyond what your API key permits.

Redis Cloud: We use Redis Cloud by Redis Ltd. for job queuing and caching. No personal data is permanently stored in Redis — only transient job payloads and cache entries with automatic expiration.

We do not sell, rent, or trade your personal information to any third party for marketing purposes.

We comply with Meta's Platform Terms and Data Policy. Specifically:

We only request Facebook permissions that are necessary for the features you use (pages_manage_posts, pages_read_engagement, pages_manage_engagement).

We do not store Facebook user access tokens longer than necessary and encrypt all tokens at rest.

Page-level access tokens derived from user tokens are encrypted in our database.

When you disconnect a Facebook Page or remove our app from Facebook, we delete all associated data (pages, posts, tokens, automations).

We provide a data deletion callback endpoint as required by Meta's Platform Terms. When you remove the app from Facebook Settings, Meta notifies our endpoint and we automatically purge your data.

We do not use Facebook data for purposes other than providing the features you requested.

We comply with Pinterest's Developer Terms and API Terms of Service.

We access your Pinterest data only through the official Pinterest API v5 using OAuth tokens you authorize.

We request only the scopes necessary for pin scheduling, board management, and analytics.

Tokens are automatically refreshed and can be revoked at any time by disconnecting your account.

We do not scrape Pinterest or access data outside of the authorized API.

All payment processing is handled by Stripe Inc., a PCI DSS Level 1 certified payment processor.

We never see, store, or process your full credit card number, CVV, or bank account details.

We store your Stripe customer ID, subscription plan, billing cycle, and last four card digits for display purposes only.

You can manage your subscription, update payment methods, and download invoices from your account settings.

Refunds and disputes are handled through Stripe according to our refund policy in the Terms of Service.

Free trial periods are clearly marked with duration. We do not charge your card until the trial ends and you have selected a paid plan.

All data in transit is encrypted using TLS 1.2+.

All OAuth tokens (Facebook, Pinterest) are encrypted at rest in our database using Laravel's encryption (AES-256-CBC).

API keys and secrets are never exposed in API responses or frontend code.

Database access is restricted by role with least-privilege principles.

We maintain audit logs for sensitive operations (data access, token refresh, content publishing).

We use Redis Cloud with encryption for queue job processing.

Regular security reviews are conducted on authentication, authorization, and data handling code.

Active accounts: We retain your data for as long as your account is active and you maintain connected integrations.

Account deletion: When you delete your account, we delete all personal data, connected platform data, and content within 30 days. Aggregated, anonymized analytics may be retained for product improvement.

Facebook data deletion: When you remove our app from Facebook, we automatically delete your Facebook data via our data deletion callback. You can also manually disconnect pages from the dashboard.

Expired trials: If your trial expires and you do not subscribe, your account data is retained for 90 days in case you return, then automatically purged.

Backups: Database backups are retained for disaster recovery and are purged on the same schedule as the primary data.

Right to erasure: You can request complete data deletion at any time by emailing privacy@linkflows.com or using the account deletion feature in Settings.

Access: Request a copy of all personal data we hold about you.

Rectification: Update or correct inaccurate personal data through your account settings or by contacting us.

Erasure: Request deletion of your personal data (right to be forgotten).

Portability: Request your data in a machine-readable format.

Objection: Object to processing of your data for specific purposes.

Restriction: Request that we limit processing of your personal data.

Withdraw consent: Disconnect integrations or delete your account at any time.

To exercise any of these rights, email privacy@linkflows.com. We will respond within 30 days.

Essential cookies: Session cookies for authentication. Required for the platform to function.

Analytics cookies: If you enable our WordPress tracker, a first-party cookie stores an anonymous visitor ID. No third-party tracking cookies are used.

We do not use advertising cookies or share cookie data with third parties.

LinkFlows is not directed at children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a prominent notice on the platform at least 14 days before the changes take effect.

Prior versions are available upon request by emailing privacy@linkflows.com.

For privacy questions, data requests, or concerns: privacy@linkflows.com

LinkFlows — https://www.linkflows.com