Privacy Policy

Your privacy is important to us. This Privacy Policy explains how Dopost ("we", "our", or "us") collects, uses, and protects your personal information when you use our social media management platform. By using Dopost, you consent to the data practices described in this policy.

We collect several types of information to provide and improve our service:

• Account Information: Name, email address, password (encrypted using industry-standard encryption), and billing information.
• Social Media Access Tokens: Encrypted access tokens and refresh tokens from connected social media platforms (Twitter, Instagram, LinkedIn, Facebook, etc.) to post on your behalf.
• Service Usage Data: How you interact with our platform, including posts created, social media accounts connected, scheduling patterns, and feature usage.
• Content Data: Text, images, videos, and other media you upload or create for your social media posts.
• Post Analytics: Performance metrics of your published posts, engagement data, and scheduling history.
• Authentication Data: If you sign in with third-party services like Google, we receive basic profile information.
• Device and Technical Information: Browser type, IP address (anonymized), and technical data necessary for service functionality.

We use your personal information for the following purposes:

• Providing and maintaining our social media management platform
• Publishing your content to connected social media platforms on your behalf
• Processing payments and managing your subscription
• Sending service notifications and important account updates
• Improving and personalizing your user experience
• Providing customer support and responding to your requests
• Analyzing usage patterns to optimize our platform performance
• Detecting and preventing fraudulent or unauthorized activity
• Complying with legal obligations and protecting our rights

Our platform connects with various social media platforms to provide our services. Important details:

• We store encrypted access tokens to post content on your behalf
• We only access the minimum permissions required for posting and basic analytics
• We do not read your private messages or access personal data beyond what's necessary
• Each social media platform has its own privacy policy governing how they handle data
• You can revoke our access at any time through your social media platform settings
• We automatically refresh access tokens when needed to maintain service functionality
• Dopost.co's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements: https://developers.google.com/terms/api-services-user-data-policy#additional_requirements_for_specific_api_scopes

You are responsible for ensuring your social media accounts comply with each platform's terms of service and community guidelines.

We store your uploaded media files (images, videos) using Cloudflare R2 storage services:

• Media files are stored on secure servers with appropriate access controls
• Files are made publicly accessible via URLs to enable social media platforms to access them for posting
• We do not share your media files with any parties other than the social media platforms you've connected
• You retain full ownership of all media content you upload
• Media files may be cached by social media platforms according to their policies
• We implement appropriate security measures to protect against unauthorized access

By uploading media, you confirm you have the right to share and publish that content on social media platforms.

We implement robust security measures to protect your personal information:

• All sensitive data including passwords and access tokens are encrypted using industry-standard encryption
• Regular security audits and updates to maintain protection standards
• Secure database configurations with access controls and monitoring
• Data is stored on secure servers with appropriate backup procedures
• We follow security best practices for handling social media API credentials

Your data is stored on secure servers. We retain your data for as long as your account is active or as needed to provide services, plus any period required by law.

We use privacy-focused analytics to improve our service:

• We use Umami Analytics, a privacy-focused, GDPR-compliant analytics service
• Umami does not use cookies or track personal information
• We collect aggregated usage statistics to understand how our platform is used
• No personal data is shared with analytics providers
• IP addresses are anonymized and not stored
• We do not use tracking pixels or invasive tracking methods

Our analytics practices are designed to respect your privacy while helping us improve the service.

We are committed to protecting your privacy and do not engage in data selling:

• We do not sell, rent, or lease your personal data to third parties
• We do not share your content with anyone except the social media platforms you've authorized
• We only share data when required by law or to protect our rights
• Service providers (like payment processors) only receive data necessary for their specific function
• We do not participate in data broker networks or advertising exchanges

Your data is yours, and we are committed to keeping it that way.

Dopost integrates with certain third-party services to provide functionality:

• Social Media Platforms: For publishing and basic analytics (Twitter, Instagram, LinkedIn, Facebook, etc.)
• Stripe: For secure payment processing
• Cloudflare R2: For media file storage
• Umami Analytics: For privacy-focused usage analytics
• Authentication providers: For account access (Google OAuth)

These third parties have their own privacy policies. We recommend reviewing their policies to understand their practices.

Depending on your location, you may have rights regarding your personal data:

• Access your personal data and download your content
• Correct inaccurate or outdated information
• Delete your personal data (right to be forgotten)
• Object to processing of your data
• Data portability - export your data in a standard format
• Withdraw consent for data processing
• Disconnect social media accounts at any time

To exercise these rights, please contact us at support@dopost.co. We will respond within 30 days.

Dopost is not intended for children under 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete that information promptly.

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred to the new entity. We will notify users of any such transfer and any changes to this privacy policy. Your data will remain subject to the protections outlined in this policy unless you consent to different terms.

We may update our Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, we may also send an email notification.

If you have any questions about this Privacy Policy or want to exercise your rights, please contact us at support@dopost.co.