SocialWhisper

Privacy Policy

Last updated: April 28, 2026

1. Introduction

SocialWhisper ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered content platform, which helps you draft, schedule, and publish content to supported social networks (currently LinkedIn, with additional platforms planned).

By using SocialWhisper, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

  • Name and email address
  • Profile picture (if provided via OAuth)
  • Authentication credentials

2.2 Brand Profile Data

  • Brand/project name and description
  • Content topics and topics to avoid
  • Voice samples and tone preferences
  • Account type (individual or business)
  • Timezone settings

2.3 Connected Social Account Data

When you connect a supported social network (currently LinkedIn) via OAuth, we receive and store the minimum data required to publish on your behalf:

  • Your account identifier on the connected platform (e.g. LinkedIn member URN or organization URN)
  • Your display name and profile picture URL on the connected platform
  • Company/organization page names and IDs for pages you manage
  • OAuth access tokens and refresh tokens (stored encrypted), used solely to publish content you have approved
  • Post URLs and engagement metrics (reactions, comments, shares) for posts you have published through SocialWhisper

We do not scrape connected platforms, crawl profiles, read private messages, access your connections/followers list, or automate engagement (likes, comments, follows, connection requests). We only interact with a platform's APIs in response to an explicit user action (connecting an account, approving a post, or scheduling a post).

2.4 Content Data

  • Content you create or generate using our AI
  • Images and media uploaded or generated
  • Prompts and inputs provided to our AI
  • Published posts and their performance metrics
  • Scheduling preferences and history

2.5 Usage Data

  • Feature usage patterns
  • AI generation history and preferences

Note: We do not collect log data such as IP addresses, browser type, or pages visited.

3. How We Use Your Information

We use the collected information for:

  • Service Delivery: To provide and maintain our AI content generation and social media publishing services
  • AI Training Context: Your brand profile is used to personalize AI-generated content to match your voice and style
  • Publishing: To publish content to your connected social media accounts on your behalf
  • Analytics: To provide insights about your content performance
  • Improvements: To improve our AI models and service quality
  • Communication: To send service-related notifications and updates
  • Support: To respond to your inquiries and provide customer support

4. AI Processing

SocialWhisper uses artificial intelligence to generate content. When you use our AI features:

  • Your prompts and brand context are sent to third-party AI providers for processing
  • AI providers may process your data according to their own privacy policies
  • We do not use your content to train AI models without your explicit consent
  • Generated content is stored in your account and belongs to you

5. Third-Party Services

We integrate with the following third-party services:

5.1 Social Platforms

SocialWhisper integrates with supported social networks (currently LinkedIn, with additional platforms planned) through their official APIs. We access platform data only with your explicit OAuth authorization, and only use it to publish content you have reviewed and approved. Each connected platform has its own privacy policy and terms that govern data on their service; you remain bound by those terms when using SocialWhisper to publish to that platform.

You can revoke SocialWhisper's access to a connected platform at any time, either from the platform's own settings or by disconnecting the account in the SocialWhisper dashboard. Disconnecting immediately revokes the OAuth tokens and removes stored authentication data for that account.

5.2 Publishing Partner (PostForMe)

We use PostForMe as our authorized publishing partner for social networks. PostForMe handles OAuth token exchange, token refresh, and publishing requests to platform APIs. Your OAuth tokens are managed by PostForMe in accordance with their own privacy policy and the connected platform's terms.

5.3 AI Providers

We use a multi-model architecture with various AI providers for text generation and image creation. Your prompts and brand context may be processed by these services. We do not send LinkedIn profile data, LinkedIn connections, or LinkedIn engagement data to AI providers — only the content you are drafting.

5.4 Payment Processing

We use Stripe for payment processing. We do not store your full credit card information; it is handled directly by Stripe in accordance with their privacy policy.

5.5 Authentication

We support OAuth authentication through various providers (Google, etc.). These providers share limited profile information with us as described in section 2.1.

6. Data Storage and Security

  • Your data is stored on secure cloud infrastructure
  • We use encryption for data in transit and at rest
  • OAuth tokens for connected social accounts are stored encrypted and used solely for authorized publishing on your behalf
  • Access tokens and refresh tokens are revoked automatically when you disconnect an account from the SocialWhisper dashboard
  • We implement industry-standard security measures to protect your information
  • Regular security audits and updates are performed

7. Platform-Specific Data Usage & Compliance

Across all supported social networks, SocialWhisper commits to the following principles:

  • Explicit user action only: We only publish when you have reviewed and approved the content (or pre-approved the rules of an autonomous workflow). We never publish without user consent.
  • No automation of engagement: We do not automate likes, comments, follows, connection requests, or messages on any connected platform.
  • No scraping or crawling: We only access platform data through official platform APIs with proper OAuth authorization.
  • No resale or sharing: We do not sell, lease, or share platform data with third parties for marketing or advertising purposes.
  • Deletion on request: You can disconnect any connected account at any time, which revokes the OAuth tokens and removes stored platform data associated with that connection.
  • Data minimization: We only collect and retain the minimum data necessary to provide publishing, scheduling, and basic engagement reporting for posts published through SocialWhisper.

7.1 LinkedIn

SocialWhisper's use and transfer of information received from LinkedIn APIs adhere to LinkedIn's API Terms of Use, and your use of LinkedIn through SocialWhisper is also governed by LinkedIn's Privacy Policy and User Agreement. We access LinkedIn through the Community Management API and Share on LinkedIn API, and only use this access to publish content you have reviewed and approved.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide services. You can request deletion of your account and associated data at any time. Some data may be retained for legal or legitimate business purposes.

8. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate or incomplete data
  • Delete your account and associated data
  • Export your data in a portable format
  • Withdraw consent for data processing
  • Object to certain types of processing
  • Lodge a complaint with a supervisory authority

To exercise these rights, please contact us at the email address provided below.

9. Cookies and Tracking

We use essential cookies to maintain your session and preferences. We may use analytics tools to understand how our service is used. You can control cookie settings through your browser.

10. Children's Privacy

SocialWhisper is not intended for users under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers in compliance with applicable laws.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of SocialWhisper after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please email us at hi@socialwhisper.app.