IP
FluxSocial.ai
Back to home

Privacy Policy

Last updated: December 8, 2025

Flux is committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights as a user.

We don't sell your data

Your personal information is never sold to third parties — ever.

Encrypted & secure

Data encrypted in transit (TLS) and at rest, with secure OAuth token storage.

You're in control

Export, correct, or delete your data at any time by contacting us.

Minimal collection

We only collect what's necessary to provide and improve the Service.

Last Updated: December 8, 2025

1. Introduction

Flux ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share information when you use our service.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Name and email address
  • Authentication credentials (via Clerk)
  • Profile information you provide
  • Business information (if applicable)

2.2 Social Media Connection Data

When you connect social media accounts, we collect:

  • OAuth access tokens (encrypted and securely stored)
  • Account identifiers and usernames
  • Profile information from connected platforms
  • Permission grants you authorize

2.3 Content Data

We collect and process:

  • Content you create through the Service
  • AI generation prompts and inputs
  • Published content metadata
  • Engagement metrics from connected platforms

2.4 Usage Data

We automatically collect:

  • Device information (browser, OS, device type)
  • IP address and general location
  • Service usage patterns and features used
  • Error logs and diagnostic information

2.5 Cookies and Tracking

We use cookies and similar technologies for:

  • Authentication and session management
  • Preferences and settings
  • Analytics and performance monitoring
  • Security and fraud prevention

You can control cookies through your browser settings.

3. How We Use Your Information

3.1 Provide and Improve Service

We use your information to:

  • Operate and maintain the Service
  • Generate AI-powered content suggestions
  • Connect and interact with your social media accounts
  • Analyze your content performance
  • Improve features and user experience
  • Provide customer support

3.2 Communication

We use your contact information to:

  • Send service-related notifications
  • Respond to your inquiries
  • Share product updates and features
  • Send marketing communications (with your consent)

You can opt out of marketing emails at any time.

3.3 Security and Compliance

We use your information to:

  • Ensure platform security
  • Prevent fraud and abuse
  • Comply with legal obligations
  • Enforce our Terms of Service

4. How We Share Your Information

4.1 Social Media Platforms

We share information with Social Platforms when you:

  • Connect your accounts (via official OAuth)
  • Publish content to platforms
  • Request content analysis or insights

We only share information necessary to provide the Service and as authorized by you.

4.2 Service Providers

We share information with trusted third-party service providers who help us:

  • Clerk: Authentication and user management
  • Vercel: Hosting and infrastructure
  • Google AI: Content generation services
  • Vercel Blob: Media storage
  • PostgreSQL (Neon): Database services

These providers are contractually bound to protect your information.

4.3 Legal Requirements

We may disclose information if required to:

  • Comply with legal obligations or court orders
  • Protect our rights or property
  • Prevent fraud or security issues
  • Protect user safety

4.4 Business Transfers

If we undergo a merger, acquisition, or sale, your information may be transferred to the new entity. We will notify you of any such change.

4.5 No Data Sales

We do not sell your personal information to third parties.

5. Data Retention

5.1 Active Accounts

We retain your information while your account is active and as necessary to provide the Service.

5.2 Deleted Accounts

When you delete your account:

  • Personal data is permanently deleted within 30 days
  • Backup copies are deleted within 90 days
  • Some data may be retained to comply with legal obligations

5.3 Legal Requirements

We may retain information longer if required by law, to resolve disputes, or enforce our agreements.

6. Data Security

6.1 Security Measures

We implement technical and organizational measures to protect your information:

  • Encryption: Data encrypted in transit (TLS) and at rest
  • Access Controls: Limited access to personal data
  • OAuth Tokens: Encrypted storage with secure key management
  • Regular Audits: Security reviews and updates
  • Secure Infrastructure: Hosting with enterprise-grade providers

6.2 No Guarantee

While we implement strong security measures, no system is 100% secure. We cannot guarantee absolute security of your information.

6.3 Your Responsibility

You are responsible for:

  • Keeping your account credentials secure
  • Protecting access to your devices
  • Notifying us of any suspected security breaches

7. Your Rights and Choices

7.1 Access and Portability

You have the right to:

  • Access your personal data
  • Export your data in a portable format
  • Request a copy of your information

Contact us at privacy@fluxsocial.ai to exercise these rights.

7.2 Correction and Deletion

You can:

  • Update your account information in settings
  • Correct inaccurate information
  • Request deletion of your account and data

7.3 Withdraw Consent

You can:

  • Disconnect social media accounts at any time
  • Revoke OAuth permissions
  • Opt out of marketing communications
  • Delete your account

7.4 Data Deletion via Social Platforms

You can also initiate a data deletion request by removing the Flux app from your settings on social media platforms (e.g., Facebook or Instagram). This will verify your request and you will be provided with a link to track the status of your deletion.

7.5 Do Not Track

We currently do not respond to "Do Not Track" browser signals, as there is no industry standard for compliance.

8. Regional Privacy Rights

8.1 European Economic Area (EEA) - GDPR

If you are in the EEA, you have additional rights:

Legal Basis for Processing:

  • Consent: When you authorize platform connections
  • Contract: To provide the Service
  • Legitimate Interest: To improve and secure the Service

Your Rights:

  • Right to access your data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent

Data Controller: Flux is the data controller for your personal information.

Complaints: You have the right to lodge a complaint with your local data protection authority.

8.2 California Residents - CCPA

If you are a California resident, you have rights under the California Consumer Privacy Act:

Categories of Personal Information Collected:

  • Identifiers (name, email, IP address)
  • Account credentials
  • OAuth tokens
  • Content and usage data
  • Device and browser information

Purpose of Collection:

  • Provide and improve the Service
  • Communicate with you
  • Ensure security and compliance

Categories of Third Parties:

  • Service providers (hosting, authentication, AI services)
  • Social media platforms (when you authorize)
  • Legal authorities (when required)

Your CCPA Rights:

  • Right to Know: Request disclosure of information collected
  • Right to Delete: Request deletion of your information
  • Right to Opt-Out: We do not sell your data
  • Non-Discrimination: We will not discriminate for exercising rights

How to Exercise Rights: Email us at privacy@fluxsocial.ai with your request. We will verify your identity and respond within 45 days.

8.3 Other Jurisdictions

If you reside in other jurisdictions with privacy laws, you may have similar rights. Contact us to learn more.

9. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we learn we have collected information from a child, we will delete it immediately.

If you believe we have collected information from a child, contact us at privacy@fluxsocial.ai.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (for EEA transfers)
  • Adequate protection per applicable laws
  • Service provider contractual obligations

11. Third-Party Links

The Service may contain links to third-party websites or social media platforms. We are not responsible for the privacy practices of these third parties. Please review their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the updated policy with a new "Last Updated" date
  • Sending an email notification (for significant changes)
  • Displaying a notice in the Service

Your continued use after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: privacy@fluxsocial.ai Website: https://fluxsocial.ai Mailing Address: N/A

For GDPR Inquiries: privacy@fluxsocial.ai For CCPA Inquiries: privacy@fluxsocial.ai

14. Data Protection Officer

For EEA residents, you can contact our Data Protection Officer at: dpo@fluxsocial.ai

By using Flux, you acknowledge that you have read and understood this Privacy Policy.

Questions about this policy?

Reach out at privacy@fluxsocial.ai — we're happy to help.