Privacy Policy

1. Introduction

Welcome to SocialStar ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our social media analytics platform.

By using SocialStar, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our service.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email address, password, and profile picture
• Profile Information: Business name, industry, website, and other optional profile details
• Communication Data: Messages, feedback, and support requests you send to us

2.2 Social Media Data

When you connect your social media accounts to SocialStar, we collect:

• Facebook/Instagram: Page and profile information, posts, comments, likes, reactions, shares, reach, impressions, engagement metrics, follower demographics, and page insights
• Twitter/X: Profile information, tweets, retweets, likes, replies, follower counts, and engagement metrics
• TikTok: Profile information, videos, views, likes, comments, shares, and performance metrics
• YouTube: Channel information, videos, views, watch time, subscribers, and analytics data
• LinkedIn: Profile information, posts, engagement metrics, and follower data

2.3 Automatically Collected Information

• Usage Data: Pages visited, features used, time spent, and interactions within the platform
• Device Information: Browser type, operating system, IP address, and device identifiers
• Cookies and Tracking: Session data, preferences, and analytics cookies

3. How We Use Your Information

We use the collected information for the following purposes:

• Provide Analytics Services: Display social media metrics, generate reports, and provide insights
• Content Scheduling: Schedule and publish posts to your connected social media accounts
• AI-Powered Features: Generate content suggestions, analyze trends, and provide personalized recommendations
• Account Management: Create and maintain your account, authenticate users, and manage preferences
• Communication: Send service updates, notifications, and respond to inquiries
• Improvement: Analyze usage patterns to improve our services and develop new features
• Security: Detect and prevent fraud, abuse, and security incidents
• Compliance: Comply with legal obligations and enforce our terms

4. Data Storage and Security

4.1 Data Storage

Your data is stored securely in our database systems. We implement industry-standard security measures including:

• Encrypted data transmission (SSL/TLS)
• Secure password hashing (bcrypt)
• Regular security audits and updates
• Access controls and authentication
• Database encryption at rest

4.2 Data Retention

We retain your information for as long as your account is active or as needed to provide services. You may request deletion of your data at any time (see Section 8).

5. Third-Party Services

We use the following third-party services that may collect or process your data:

5.1 Social Media Platforms

• Meta (Facebook/Instagram): Graph API for retrieving posts, insights, and analytics data
• Twitter/X: API for profile and tweet data
• TikTok: API for video and performance data
• Google (YouTube): API for channel and video analytics

5.2 Data Processing Services

• Apify: Web scraping service for collecting publicly available social media data
• OpenAI: AI-powered content generation and analysis (optional feature)

5.3 Authentication

• Google OAuth: For Google sign-in authentication
• NextAuth.js: Authentication and session management

These third-party services have their own privacy policies. We encourage you to review them:

• Meta Privacy Policy: facebook.com/privacy/policy
• Google Privacy Policy: policies.google.com/privacy
• Twitter Privacy Policy: twitter.com/privacy
• TikTok Privacy Policy: tiktok.com/legal/privacy-policy

6. Data Sharing and Disclosure

We do not sell your personal information. We may share your data in the following circumstances:

• With Your Consent: When you authorize us to share specific information
• Service Providers: With trusted third parties who help us operate our platform (hosting, analytics, support)
• Legal Requirements: When required by law, court order, or government request
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Protection: To protect our rights, safety, or property, or that of our users

7. Your Rights and Choices

You have the following rights regarding your personal information:

7.1 Access and Portability

You can access and export your data from your account dashboard at any time.

7.2 Correction

You can update your profile information and account settings directly in the app.

7.3 Deletion

You can request deletion of your account and all associated data. See our Data Deletion Instructions.

7.4 Disconnect Social Accounts

You can disconnect any linked social media account from your dashboard, which will stop data collection from that platform.

7.5 Marketing Communications

You can opt out of marketing emails by clicking the unsubscribe link in any email or updating your notification preferences.

7.6 Cookies

You can control cookies through your browser settings, though some features may not function properly without them.

8. Data Deletion

To request deletion of your data, you can:

• Delete your account from the Settings page, which will permanently remove all your data within 30 days
• Contact us at info@growthlab.digital with your deletion request
• Follow our Data Deletion Instructions

Upon deletion, we will:

• Remove all your personal information from our active database
• Delete all connected social media account data
• Revoke all access tokens and API connections
• Remove all scheduled posts and analytics data

Some information may be retained in backup systems for up to 90 days or as required by law.

9. Children's Privacy

SocialStar is not intended for use by individuals under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children. If we discover that we have collected information from a child, we will delete it immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using SocialStar, you consent to the transfer of your information to these countries.

11. GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under GDPR:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data ("right to be forgotten")
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to certain types of processing
• Right to Withdraw Consent: Withdraw consent for data processing at any time

To exercise these rights, contact us at GDPR Compliance.

12. CCPA Compliance (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

• Right to Know: What personal information we collect, use, and share
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt out of the sale of personal information (we do not sell your data)
• Right to Non-Discrimination: Not be discriminated against for exercising your privacy rights

To exercise these rights, contact us at info@growthlab.digital.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last Updated" date
• Sending you an email notification for significant changes

Your continued use of SocialStar after changes become effective constitutes acceptance of the updated policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: