Privacy policy

What we collect

• Account details you provide: name, email, and the organization you belong to.
• Content you create in the product: topic searches, notes, briefs, and brand profiles.
• Social account connections you authorize (for example TikTok, Instagram, YouTube), including access tokens needed to read analytics and publish on your behalf. Tokens are stored encrypted at rest.
• Operational data: logs, usage events, and error reports used to run and improve the service.

Why we collect it

To provide the service: run topic research, generate content ideas, schedule and publish posts, and report on performance. We do not sell your personal data, and we do not use it for advertising.

Where your data lives

Application data is stored in Supabase (Postgres) and served through Vercel. Some processing is performed by third-party providers we use to deliver features, including AI model providers (OpenRouter / Anthropic / OpenAI) for content generation, Resend for transactional email, and social platform APIs for publishing and analytics. Each receives only the data needed for its function.

Retention

We keep data for as long as your account is active or as needed to provide the service. Operational logs and completed records are pruned on a recurring schedule. You can request deletion of your account data by contacting us.

Your rights

Depending on your location (including under GDPR and CCPA), you may have the right to access, correct, export, or delete your personal data, and to object to certain processing. To exercise these rights, contact us at the address below.

Security

We protect data with encryption in transit and at rest, scoped access controls, and row-level security on our database. No system is perfectly secure, but we work to keep your data safe and to respond quickly if something goes wrong.

Contact

Questions about this policy or your data? Email privacy@nativz.io.