Legal Reference
Privacy Policy
Last Updated
December 11, 2025
"We value your sovereignty. This document outlines exactly how we handle your data, the third parties we trust, and how you retain control over your digital footprint across all connected platforms."
Information We Collect
We collect information to provide our editorial and publishing services. This includes data you provide directly and data collected automatically via your interactions with the platform.
Account & Identity
We collect your email address, display name, and account identifiers needed to authenticate and manage your account. If you purchase a subscription, our payment processor (Stripe) collects billing details; we do not store raw credit card numbers.
Social Credentials
To publish on your behalf, we store OAuth access and refresh tokens for connected platforms. These are stored using AES-256-GCM encryption at rest and are never shared with third parties other than the platforms themselves.
Editorial Content
We process your prompts sent to AI providers and store the resulting drafts, media files, and scheduled posts to manage your content library.
Usage & Log Data
Our servers automatically record information ("Log Data") such as your IP address, browser type, referring domain, and pages visited. This helps us prevent abuse and improve platform stability.
How We Use Your Data
We process the data described above for the following purposes:
- Service
Account creation, subscription management, and providing core platform functionality.
- Publishing
Scheduling, drafting, and publishing content to connected social media platforms on your behalf.
- Payments
Processing subscription payments and managing billing via Stripe.
- Media
Storing and serving images and videos you upload for your content library.
- Improvement
Analyzing aggregated usage patterns to improve features, navigation, and platform stability.
- Support
Responding to your inquiries and providing customer support.
- Communication
Sending administrative notices about service updates, policy changes, and security alerts.
- Security
Detecting and preventing fraud, abuse, and technical issues to protect you and our platform.
Platform Integrations
Our service acts as a bridge to third-party platforms. By connecting these accounts, you acknowledge that your data is processed according to their respective policies.
YouTube & Google API Services
We use YouTube API Services to upload videos and retrieve analytics. By using this integration, you agree to be bound by the YouTube Terms of Service. Your data is processed in accordance with the Google Privacy Policy.
Revoke Access: You can remove our access via the Google Security Settings page.
Meta (Facebook & Instagram)
We access your Page IDs, usernames, and insights via the Meta Graph API to schedule posts and report performance. Please refer to the Meta Privacy Policy. You can manage app permissions in your Facebook Business Integrations.
TikTok
We access your profile information and video metrics to enable publishing and analytics. Refer to the TikTok Privacy Policy.
LinkedIn & Pinterest
We utilize OAuth tokens to post content to your profile/boards. Data handling is subject to the LinkedIn Privacy Policy and Pinterest Privacy Policy.
Data Sharing & Disclosure
We do not sell your personal data. We only share data in the following limited circumstances:
Service Providers
We share data with trusted processors necessary to operate the platform: Railway (application, database, and authentication infrastructure), Vercel (marketing website hosting), Cloudflare R2 (media storage), PostHog (analytics), Resend (transactional email), Sentry (error monitoring), and Stripe (payments). Each provider is contractually bound to process data only on our instructions.
Social Media Platforms
When you schedule or publish content, your posts and associated media are transmitted to the target platform via their official APIs. This is the core function of the service and occurs only at your direction.
Business Transfers
In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to the acquiring entity. We will provide notice before your data becomes subject to a different privacy policy.
Legal Obligations
We may disclose data where required by law, regulation, legal process, or enforceable governmental request, or where necessary to protect the rights, property, or safety of EziBreezy, our users, or the public.
Security & Retention
Data Retention
Active Accounts: We retain your content library and connection tokens as long as your account is active.
Deletion: Upon account deletion, all personal data is removed from our live databases within 30 days. Logs may be retained for up to 90 days for security auditing.
International Transfers
Our infrastructure is primarily located in the United States. By using our service, you acknowledge that your data may be transferred to and processed in the US, where data protection laws may differ from your local jurisdiction.
Children's Privacy
Our service is not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16.
If we become aware that we have collected personal data from a child under 16 without parental consent, we will take steps to delete that data promptly. If you believe a child has provided us with personal data, please contact us at support@ezibreezy.com.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. Any updates will be posted on this page with a revised "Last Updated" date. For material changes, we will notify you via email or a prominent notice within the service. We encourage you to review this page periodically.
Contact & Rights
You may request the deletion of your account and all associated data at any time via your account settings. For privacy-related questions or to exercise your rights (GDPR/CCPA/DPA), please contact our Data Protection Officer at: support@ezibreezy.com