We collect your email address and authentication data when you sign in via Google or Discord OAuth. We also store encrypted user tokens (Discord bot tokens) and bot configuration data that you provide when setting up your autopost bots.
Your information is used solely to operate the out autopost service — to authenticate your account, run your bots, and process subscription payments. We do not sell, share, or disclose your personal data to third parties.
All user tokens are encrypted using AES-256-GCM before being stored in our database. The raw token is never exposed via our API or stored in plain text. Only the encrypted form is persisted, and it is only decrypted in memory during bot operation.
Your account data is retained as long as your account is active. If you request account deletion, all associated data including tokens, bots, and access codes will be permanently removed within 30 days.
We use session cookies only for authentication purposes. We do not use tracking or advertising cookies.
We may update this Privacy Policy from time to time. Any changes will be notified via the announcement system in your dashboard.
For privacy-related inquiries, join our Discord server at discord.gg/jHzyFPzy9m and open a support ticket.