SocialBear

Legal

Privacy Policy

Last Updated: May 17, 2026

Overview

This Privacy Policy explains what information SocialBear collects, how we use it, how we protect it, and how you can request access, correction, or deletion of your data.

By using SocialBear, you agree to the collection and use of information described in this Privacy Policy.

Data We Collect

We collect the following types of information:

Account Information

When you create an account, we may collect your name, email address, user ID, and authentication-related account information.

Connected Social Account Information

When you connect a social media account, we may collect and store OAuth access tokens, refresh tokens, token expiration times, account identifiers, usernames, page IDs, channel IDs, permissions/scopes granted, and related metadata needed to publish content on your behalf.

We do not collect or store your social media passwords.

Scheduled Content

We may collect and store content you create or upload in the app, including media files, captions, titles, hashtags, scheduled publish times, publishing status, error messages, and post history.

Usage and Technical Data

We may collect basic technical data needed to operate, debug, secure, and improve the service. This may include timestamps, request logs, error logs, device/browser information, IP address, and service activity related to scheduling or publishing content.

How We Use Your Data

We use your data to:

  • create and manage your account;
  • connect your social media accounts;
  • schedule, process, upload, and publish content on your behalf;
  • show publishing status, errors, and post history;
  • maintain, debug, secure, and improve the service;
  • detect abuse, prevent misuse, and protect the service;
  • respond to support requests;
  • comply with legal obligations.

We do not sell, rent, or trade your personal information.

We do not use your uploaded content to build advertising profiles or sell advertising data.

OAuth Tokens and Platform Access

SocialBear uses OAuth tokens granted by you to access connected third-party platforms. These tokens are used only to provide the features you request, such as scheduling and publishing content.

You can revoke SocialBear’s access through the settings of the connected platform. You may also contact us to request that stored tokens be deleted.

Revoking access may prevent scheduled posts from being published.

Third-Party Services

SocialBear uses third-party services to operate the app and publish content. These may include:

  • AWS for hosting, storage, databases, logs, and infrastructure;
  • Meta APIs for Facebook and Instagram integrations;
  • TikTok APIs for TikTok integrations;
  • Google/YouTube APIs for YouTube integrations, if enabled.

When content or account information is sent to a third-party platform, that platform’s own terms and privacy policy apply. We are not responsible for the privacy practices of third-party platforms.

You should review the privacy policies for Meta, TikTok, Google/YouTube, and any other connected services you use.

Data Sharing

We do not sell your data.

We may share data only when necessary to:

  • operate the service using infrastructure providers such as AWS;
  • send content and related information to social platforms you connect;
  • comply with legal obligations;
  • protect the rights, safety, and security of users, the service, or others;
  • investigate abuse, fraud, or security issues.

Data Storage and Security

Your data is stored using AWS infrastructure. We use reasonable technical and organizational safeguards to protect your data.

OAuth tokens are stored in encrypted form. Where supported, data is encrypted in transit and at rest.

No system is completely secure, and we cannot guarantee absolute security.

Data Retention

We retain your data only as long as needed to provide the service, maintain security, resolve disputes, comply with legal obligations, or enforce our agreements.

When you delete your account, we will delete or de-identify your account data within 30 days, unless we are required to retain certain information for legal, security, backup, or operational reasons.

Scheduled posts and stored OAuth tokens may be deleted or disabled sooner upon request.

Post history may be retained for up to 14 days after a post is published for status tracking, troubleshooting, and user visibility.

Backup copies and logs may persist for a limited period before being deleted according to our normal retention processes.

Published Content

Once content is published to a third-party platform, that content is governed by the third-party platform’s terms and privacy policy.

Deleting content from SocialBear may not delete content that has already been published to a third-party platform. You may need to delete published content directly through that platform.

Your Rights and Choices

You may request to access, correct, export, or delete your personal information by contacting us.

You may disconnect connected social accounts by revoking OAuth access through the relevant platform settings or by contacting us.

Depending on your location, you may have additional privacy rights under applicable law.

Children’s Privacy

SocialBear is not intended for children under 13. We do not knowingly collect personal information from children under 13.

If we learn that we have collected personal information from a child under 13, we will delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify users by email, in-app notice, or another reasonable method.

Continued use of the service after changes become effective means you accept the updated Privacy Policy.

Contact

Questions or privacy requests may be sent to:

support [at] mountairy [dot] tech