Privacy Policy

Last updated: January 25, 2026

1

Overview

AutoReach AI ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our automated marketing services.

By using AutoReach AI, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our services.

2

Information We Collect

Account Information:

  • Email address (for account creation and communication)
  • Business name and industry
  • Billing information (processed securely through Stripe - we do not store payment card details)

Social Media Account Access:

  • OAuth tokens for connected social media platforms (Instagram, Facebook, Twitter/X, LinkedIn)
  • Profile information from connected accounts (username, profile picture, follower counts)
  • Posting history and engagement metrics

Business Information You Provide:

  • Brand voice preferences and content guidelines
  • Target audience descriptions
  • Business goals and marketing objectives
  • Product/service descriptions and promotional materials

Usage Data:

  • Log data (IP address, browser type, pages visited, time spent)
  • Service usage patterns and feature interactions
  • Performance analytics and error reports

Website Audit Data:

  • URLs you submit for SEO analysis
  • Website content, metadata, and technical information retrieved during audits
3

How We Use Your Data

We use the information we collect to:

  • Provide Our Services: Generate and schedule social media content, manage your social media accounts, perform website audits, and operate AI chatbot features
  • Improve Service Quality: Train and refine our AI models to create better content tailored to your industry and brand voice
  • Communicate With You: Send service updates, billing notifications, marketing materials (with your consent), and respond to your inquiries
  • Analytics & Reporting: Provide you with performance metrics, engagement analytics, and insights about your social media presence
  • Compliance & Security: Detect and prevent fraud, enforce our Terms of Service, comply with legal obligations, and protect our systems
  • Product Development: Analyze usage patterns to develop new features and improve existing functionality

AI Training: Your business information and content preferences may be used to improve our AI models. We do not share identifiable business data with third parties for their marketing purposes.

4

Data Sharing & Disclosure

We may share your information in the following circumstances:

Service Providers:

  • Stripe: Payment processing (billing information)
  • Social Media Platforms: Posting content to your connected accounts (content and OAuth tokens)
  • Cloud Infrastructure Providers: Hosting and database services (all user data)
  • AI/ML Providers: Anthropic Claude API for content generation (business descriptions, prompts - not personally identifiable information)

Legal Requirements:

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, subpoenas, government investigations).

Business Transfers:

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. You will be notified via email of any such change in ownership.

With Your Consent:

We may share your information for other purposes with your explicit consent.

What We Do NOT Do:

  • We do not sell your personal data or business information to third parties
  • We do not share your social media passwords (we only use OAuth tokens)
  • We do not use your data for advertising purposes outside of managing your own advertising campaigns
5

Social Media Access

To provide our automated social media management services, AutoReach AI requires full posting and management access to your connected social media accounts. This access is granted through OAuth (a secure third-party authorization protocol) and includes:

  • Create Posts: Publish text, images, and videos to your connected accounts
  • Schedule Content: Queue posts for future publication at optimal times
  • Read Analytics: Retrieve engagement metrics (likes, comments, shares, reach)
  • Manage Comments: Respond to comments and messages (if applicable to your plan)
  • Update Profile: Modify profile information if you enable this feature

Important: We never store your social media passwords. Access is granted via OAuth tokens that you can revoke at any time by disconnecting your accounts from AutoReach AI or by revoking access directly in your social media platform's security settings.

You can disconnect any social media account at any time through your AutoReach AI dashboard. Disconnecting an account will immediately stop all automated posting to that platform.

6

Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: All data transmitted between your browser and our servers is encrypted using TLS/SSL. Sensitive data at rest (such as OAuth tokens) is encrypted using AES-256 encryption.
  • Access Controls: Access to your data is restricted to authorized personnel only and is granted on a need-to-know basis.
  • Authentication: Account access is protected by secure password hashing (bcrypt) and JWT-based session management.
  • Infrastructure Security: Our hosting infrastructure is managed by certified cloud providers with SOC 2 Type II compliance.
  • Regular Audits: We conduct regular security reviews and vulnerability assessments.

No system is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials.

7

Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data (subject to legal retention requirements)
  • Data Portability: Request export of your data in a machine-readable format
  • Objection: Object to processing of your data for certain purposes
  • Restriction: Request restriction of processing under certain circumstances
  • Withdraw Consent: Revoke consent for data processing at any time (e.g., disconnect social media accounts)

To exercise any of these rights, please contact us at privacy@autoreach-ai.polsia.app. We will respond to your request within 30 days.

California Residents (CCPA):

California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete personal information, and the right to opt-out of the sale of personal information. We do not sell your personal information.

EU Residents (GDPR):

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR). Our legal basis for processing your data is typically contractual necessity (to provide services you've purchased) or legitimate interest (to improve our services).

8

Cookies & Tracking

AutoReach AI uses cookies and similar tracking technologies to enhance your experience and analyze service usage. For detailed information about the cookies we use, please see our Cookie Policy.

Types of Cookies We Use:

  • Essential Cookies: Required for authentication and core service functionality
  • Analytics Cookies: Help us understand how you use our service (anonymized)
  • Preference Cookies: Remember your settings and preferences

You can control cookies through your browser settings. Note that disabling essential cookies may affect your ability to use certain features of our service.

9

Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

  • Active Accounts: Data is retained for the duration of your subscription plus 90 days after cancellation
  • Cancelled Accounts: Account data is deleted 90 days after cancellation, except for billing records (retained for 7 years for tax purposes)
  • Social Media OAuth Tokens: Deleted immediately upon account disconnection or cancellation
  • Posted Content Records: Retained for 12 months for analytics and support purposes, then anonymized

You may request early deletion of your data by contacting us at privacy@autoreach-ai.polsia.app. We will fulfill your request within 30 days, subject to legal retention requirements.

10

Policy Changes

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

We will notify you of any material changes by:

  • Posting the updated policy on this page with a new "Last updated" date
  • Sending an email notification to your registered email address
  • Displaying a prominent notice in your dashboard

Your continued use of AutoReach AI after the effective date of the updated Privacy Policy constitutes your acceptance of the changes.

11

Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

AutoReach AI
A product of LW Technologies