Privacy Policy

Last Updated: 23-03-2026

1. Introduction

The Social Butterfly ("we", "our", "us") is a social media management platform that allows users to connect and manage their social media accounts (such as YouTube, Facebook, Instagram, and LinkedIn) using secure OAuth authentication.

We are committed to protecting your privacy and handling your data in a transparent and secure manner.

2. Data Security & Protection

Encryption in Transit and at Rest

All data transmitted between our servers and third-party APIs is protected using HTTPS/TLS 1.2+ encryption. Sensitive credentials such as OAuth tokens are stored using AES-256 encryption at rest.

Restricted Access Controls

Access to user data is limited to authorized personnel and automated systems. We use role-based access control (RBAC) and multi-factor authentication.

Secure OAuth Token Handling

OAuth tokens are used only to perform actions you trigger and are never shared. Tokens are invalidated when accounts are disconnected.

No Human Access to User Data

  • Only with your explicit consent
  • For security purposes (debugging/fraud prevention)
  • When required by law

3. Data Storage & Retention

  • Purpose-Limited Storage: Stored only as needed for functionality
  • Immediate Revocation: Tokens deleted on disconnect
  • Minimal Storage: No content stored after publishing

Data Retention Timeline:

  • OAuth tokens: Deleted immediately
  • User metadata: Deleted within 7 days

4. Google API Services User Data Policy

  • Used only for user-facing features
  • No advertising usage
  • No unauthorized data transfer

Learn more:Google API Policy

5. OAuth Permissions (Scopes)

Google (YouTube APIs)

  • youtube.upload — Upload videos
  • youtube.readonly — View info

Meta (Facebook & Instagram APIs)

  • pages_show_list - Page List
  • pages_manage_posts — Publish posts
  • pages_read_engagement — Engagement data
  • instagram_basic — Account info
  • instagram_content_publish — Publish content

6. Cookies & Tracking

  • Google Analytics
  • Meta Pixel

Users can disable cookies via browser settings.

7. No Data Sharing

We do not sell, rent, or share user data with advertisers or third parties.

8. Data Deletion & Rights

  • Disconnect accounts anytime
  • Email: help@thesocialbutterfly.ai
  • Data deleted within 7 days

9. Third-Party APIs

10. Data Storage Location

Data is stored securely using cloud providers such as AWS in India.

11. Children’s Privacy

Our services are not intended for individuals under 18. We do not knowingly collect such data.

12. User Control

  • Review permissions
  • Revoke access anytime
  • Request full deletion

13. Contact

help@thesocialbutterfly.ai

14. Changes

We may update this Privacy Policy from time to time. Changes will be reflected with an updated date.