Socialfire Logo
Socialfire
Get Started

Privacy Policy

Last updated: January 2026

1. Introduction

Socialfire ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

Account Information

When you create an account, we collect:

  • Name
  • Email address
  • Password (encrypted)

Instagram Data

When you connect your Instagram account, we access:

  • Instagram user ID and username
  • Profile picture
  • Account type (Business/Creator)
  • Public media content (images, videos, captions)
  • Access tokens (encrypted and stored securely)

Usage Data

We automatically collect:

  • Feed view counts (aggregated)
  • IP addresses (hashed for privacy)
  • Browser type and version
  • Referring URLs
  • Pages visited and features used

Payment Information

For paid subscriptions, payment processing is handled by Stripe. We do not store complete credit card numbers on our servers.

3. How We Use Your Information

We use collected information to:

  • Provide and maintain the Service
  • Display your Instagram content in feeds
  • Process payments and manage subscriptions
  • Send service-related emails and notifications
  • Provide customer support
  • Monitor and analyze usage patterns
  • Improve our Service
  • Detect and prevent fraud or abuse

4. Instagram Data Usage

Your Instagram data is used exclusively to:

  • Display your posts in your configured feeds
  • Refresh feed content when cached data expires
  • Show your Instagram profile information in your dashboard

We do not:

  • Sell your Instagram data to third parties
  • Use your data for targeted advertising
  • Post or modify content on your behalf without explicit permission
  • Access private or direct messages

5. Data Security

We implement appropriate security measures including:

  • Encryption of sensitive data at rest and in transit
  • AES-256-GCM encryption for Instagram access tokens
  • HTTPS for all data transmission
  • Regular security audits and updates
  • IP address hashing to protect visitor privacy

6. Data Sharing

We may share your information with:

  • Service Providers: Third-party companies that help us operate our Service (e.g., hosting, email delivery, payment processing)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

7. Cookies and Tracking

We use cookies and similar technologies to:

  • Maintain your session and authentication state
  • Remember your preferences
  • Analyze site usage

You can control cookies through your browser settings. Disabling cookies may affect some Service functionality.

8. Data Retention

We retain your data as follows:

  • Account Data: Until you delete your account
  • Instagram Tokens: Until you disconnect your account or tokens expire
  • Feed View Data: Aggregated monthly, detailed logs retained for 90 days
  • Email Logs: Retained for 1 year

After account deletion, we may retain anonymized aggregate data for analytics purposes.

9. Your Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate personal data
  • Erasure: Request deletion of your personal data
  • Portability: Receive your data in a structured format
  • Objection: Object to certain types of processing
  • Withdraw Consent: Revoke consent at any time

To exercise these rights, contact us at privacy@socialfire.dev

10. GDPR Compliance

For users in the European Economic Area (EEA), we process personal data based on:

  • Contract: Processing necessary for service delivery
  • Consent: Where you have given explicit consent
  • Legitimate Interests: For business operations and security

11. California Privacy Rights (CCPA)

California residents have additional rights including:

  • Right to know what personal information is collected
  • Right to request deletion of personal information
  • Right to opt-out of the sale of personal information (we do not sell your data)
  • Right to non-discrimination for exercising privacy rights

12. Children's Privacy

The Service is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us immediately.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through the Service. Your continued use after changes indicates acceptance of the updated policy.

14. Contact Us

For questions about this Privacy Policy or our data practices, contact us at:

Email: privacy@socialfire.dev