Back to PostCraft AI

Privacy Policy

Last updated: 7/9/2025

1. Introduction

PostCraft AI ("we," "us," or "our") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered LinkedIn content generation service.

By using our service, you consent to the data practices described in this Privacy Policy.

2. Information We Collect

2.1 Personal Information

We collect personal information you provide directly to us:

  • Email address (required for account creation)
  • Name and profile information
  • Password and authentication credentials
  • Billing information (processed securely through third-party processors)
  • Communication preferences and settings

2.2 Content Information

  • Input prompts and content generation requests
  • Generated LinkedIn posts and content
  • Saved posts and user-created content
  • Usage patterns and content preferences
  • Template selections and customizations

2.3 Technical Information

  • IP address and location data
  • Browser type and version
  • Device information and operating system
  • Session data and cookies
  • Usage analytics and performance metrics

2.4 Billing and Transaction Data

  • Payment history and transaction records
  • Customer ID and payment methods
  • Usage patterns and service consumption
  • Billing address and tax information
  • Invoice and receipt information

3. How We Use Your Information

3.1 Service Provision

  • Generate AI-powered LinkedIn content using your prompts
  • Manage your account and subscription
  • Process payments and billing
  • Provide customer support and assistance
  • Maintain and improve our AI models and templates

3.2 Communication

  • Send service-related notifications and updates
  • Provide customer support responses
  • Share important account and billing information
  • Notify about service changes or improvements
  • Send marketing communications (with your consent)

3.3 Service Improvement

  • Analyze usage patterns to improve our AI models
  • Optimize content generation quality and speed
  • Develop new features and templates
  • Enhance user experience and interface
  • Ensure service security and reliability

4. Information Sharing and Disclosure

4.1 Third-Party Service Providers

We share information with trusted third-party providers for:

  • AI content generation services (subject to providers' privacy policies)
  • Payment processing and billing information
  • Secure database hosting and authentication
  • Analytics and performance monitoring

4.2 Legal Requirements

We may disclose your information when required by law:

  • To comply with legal obligations and court orders
  • To protect our rights and intellectual property
  • To prevent fraud and ensure service security
  • To protect user safety and prevent harm
  • In connection with business transfers or mergers

4.3 Data We Never Share

We will never sell, rent, or share:

  • Your personal information for marketing purposes
  • Your generated content with unauthorized parties
  • Your account credentials or authentication data
  • Your private communications and messages

5. Data Security and Protection

5.1 Security Measures

  • End-to-end encryption for data transmission
  • Encrypted storage of sensitive information
  • Advanced access controls and database security
  • Regular security audits and penetration testing
  • Secure authentication and session management

5.2 Access Controls

  • Multi-factor authentication for admin access
  • Role-based access control systems
  • Regular access reviews and audits
  • Secure development and deployment practices
  • Employee training on data privacy and security

5.3 Incident Response

In case of a data breach:

  • Immediate containment and assessment procedures
  • Notification to affected users within 72 hours
  • Coordination with relevant authorities
  • Transparent communication about incident details
  • Implementation of additional security measures

6. Data Retention and Deletion

6.1 Retention Periods

Account Data

Retained while account is active, deleted within 30 days of account closure

Generated Content

Retained for 1 year after account closure for potential recovery

Billing Records

Retained for 7 years as required by tax and accounting regulations

Analytics Data

Aggregated anonymized data retained for 2 years for service improvement

6.2 Data Deletion

  • Secure deletion using industry-standard practices
  • Overwriting sensitive data before hardware disposal
  • Automatic deletion based on retention schedules
  • Manual deletion upon user request
  • Verification of deletion completion

7. Your Privacy Rights

7.1 Access and Control

You have the right to:

  • Access your personal information and generated content
  • Correct inaccurate or incomplete data
  • Delete your account and associated data
  • Export your data in a portable format
  • Restrict processing of your personal information

7.2 Communication Preferences

  • Opt out of marketing communications at any time
  • Customize notification preferences in your account settings
  • Unsubscribe from promotional emails using provided links
  • Contact us to update your communication preferences
  • Note: Essential service communications cannot be disabled

7.3 Exercising Your Rights

To exercise your privacy rights:

  • Contact us at mauriciovoto@gmail.com
  • Use the privacy controls in your account dashboard
  • Provide verification of your identity for security
  • Specify which rights you wish to exercise
  • Allow up to 30 days for processing your request

8. International Data Transfers

8.1 Data Processing Locations

Your information may be processed in:

  • United States (primary data centers)
  • European Union (for EU users under GDPR)
  • Other jurisdictions where our service providers operate
  • Locations necessary for service delivery and support

8.2 Transfer Safeguards

  • Standard Contractual Clauses (SCCs) for international transfers
  • Adequacy decisions for transfers to approved countries
  • Binding Corporate Rules where applicable
  • Encryption and security measures for data in transit
  • Regular assessment of transfer mechanisms

9. Cookies and Tracking

9.1 Cookie Usage

Essential Cookies

Required for authentication, security, and basic functionality

Analytics Cookies

Help us understand usage patterns and improve our service

Preference Cookies

Remember your settings and preferences

9.2 Cookie Management

  • Configure cookie preferences in your browser settings
  • Use our cookie consent banner to control non-essential cookies
  • Clear cookies and browsing data as needed
  • Note: Disabling essential cookies may affect functionality
  • Contact us for assistance with cookie-related questions

10. Children's Privacy

Our service is not intended for children under the age of majority in their jurisdiction.

  • We do not knowingly collect personal information from children
  • If we learn that we have collected such information, we will delete it promptly
  • Parents or guardians should contact us if they believe their child has provided information
  • We encourage parents to monitor their children's online activities

11. Regional Privacy Rights

11.1 GDPR (European Union)

If you are in the EU, you have additional rights under GDPR:

  • Right to be informed about data processing
  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights related to automated decision-making

11.2 CCPA (California)

If you are a California resident, you have rights under CCPA:

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of the sale of personal information
  • Right to delete personal information
  • Right to non-discrimination for exercising privacy rights

11.3 Data Protection Officer

For data protection inquiries, contact our Data Protection Officer:

  • Email: mauriciovoto@gmail.com
  • Response Time: Within 30 days

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will:

  • Notify users of material changes via email or service notification
  • Update the "Last updated" date at the top of this policy
  • Provide a summary of key changes where appropriate
  • Maintain previous versions for reference
  • Give users time to review changes before they take effect

13. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

General Privacy Questions

  • Email: mauriciovoto@gmail.com
  • Website: https://postcraft-ai.com

By using PostCraft AI, you acknowledge that you have read, understood, and agree to this Privacy Policy.