Privacy Policy

Last updated: March 25, 2026

1. Introduction

Pocket Social ("we," "our," or "us") operates the social media management platform available at pocketsocial.net (the "Service"). This Privacy Policy explains how we collect, use, and protect your information when you use our Service to manage your Facebook and Instagram business accounts.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email address, company information
• Facebook/Instagram Access: Permission to manage your business pages and accounts
• Content: Social media posts, images, and content you create through our platform

2.2 Information from Facebook/Instagram

• Page Information: Page names, IDs, categories, and basic profile information
• Access Tokens: Secure tokens to manage your pages (encrypted and stored securely)
• Analytics Data: Engagement metrics, insights, and performance data from your pages
• Content Interactions: Comments, messages, and engagement on your posts

2.3 Technical Information

• Usage Data: How you use our platform, features accessed, and performance metrics
• Device Information: IP address, browser type, and device characteristics
• Log Data: Server logs, error reports, and security events

3. How We Use Your Information

3.1 Service Provision

• Content Management: Post, schedule, and manage content on your Facebook and Instagram pages
• Analytics: Provide insights and performance metrics for your social media accounts
• Multi-Page Management: Enable efficient management of multiple business locations

3.2 Platform Improvement

• Feature Development: Improve and develop new features based on usage patterns
• Performance Optimization: Monitor and optimize platform performance
• Security: Detect and prevent unauthorized access or misuse

4. Information Sharing and Disclosure

4.1 Facebook/Instagram Integration

We share necessary information with Facebook/Instagram to provide our services:

• Content Posting: Posts, images, and media you create through our platform
• Page Management: Actions performed on your behalf through our service
• Analytics Requests: Requests for insights and performance data

4.2 Third-Party Services

• Infrastructure Providers: Vercel (hosting), Supabase (database), OpenAI (content generation)
• Security and Compliance: Services necessary for platform security and legal compliance

4.3 Legal Requirements

We may disclose information when required by law, to protect our rights, or to ensure platform security.

5. Data Security

5.1 Security Measures

• Encryption: All access tokens and sensitive data are encrypted in our database
• HTTPS: All data transmission uses secure HTTPS connections
• Access Controls: Strict access controls and authentication requirements
• Monitoring: Continuous monitoring for security threats and unauthorized access

5.2 Facebook/Instagram Token Management

• Secure Storage: Access tokens are encrypted and stored securely
• Limited Access: Tokens are only used for authorized actions on your behalf
• Automatic Refresh: Long-lived tokens are refreshed automatically to maintain access
• Revocation Handling: We immediately stop all actions when you revoke permissions

6. Your Rights and Controls

6.1 Access and Control

• Account Management: Update your account information and preferences
• Content Control: Full control over what content is posted to your pages
• Permission Management: Revoke Facebook/Instagram permissions at any time
• Data Export: Request export of your data and content

6.2 Data Deletion

• Account Deletion: Delete your account and associated data
• Content Removal: Remove specific content or cancel scheduled posts
• Permission Revocation: Revoke access through Facebook/Instagram settings

7. Data Retention

7.1 Retention Periods

• Account Data: Retained while your account is active
• Content and Analytics: Retained for service provision and analytics
• Access Tokens: Retained until revoked or expired
• Log Data: Retained for 90 days for security and debugging purposes

7.2 Data Deletion

When you delete your account or revoke permissions, we will:

• Immediately stop all automated actions on your behalf
• Delete access tokens and authentication data
• Retain minimal data as required by law or for security purposes
• Complete full data deletion within 30 days of account closure

8. International Data Transfers

Your data may be processed in countries outside your residence. We ensure appropriate safeguards are in place for international data transfers in compliance with applicable privacy laws.

9. Children's Privacy

Our Service is intended for businesses and individuals over 18. We do not knowingly collect personal information from children under 18. If we become aware of such data collection, we will delete it promptly.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through our platform. Continued use of the Service after changes indicates acceptance of the updated policy.

11. Contact Information

For questions about this Privacy Policy or your data:

• Email: privacy@pocketsocial.net
• Support: support@pocketsocial.net
• Address: 2340 Guilford Ln, Mission Hills, KS 66208

12. Facebook Platform Policy Compliance

Our use of Facebook and Instagram data is governed by:

• Facebook Platform Policy: We comply with all Facebook Platform Terms and Policies
• Instagram API Terms: We adhere to Instagram's API Terms of Use
• Data Usage: We only use your Facebook/Instagram data to provide our services
• Customer Control: You maintain full ownership and control of your social media assets

This Privacy Policy is designed to comply with Facebook Platform Policies, Instagram API Terms, GDPR, CCPA, and other applicable privacy regulations.