Privacy Policy

• Account information: your name, email address, and a securely hashed password (or, if you sign in with Google, your Google profile email and name).
• Brand & configuration data: the brands, keywords, and subreddits or search queries you set up for monitoring.
• Connected-account tokens: when you connect a platform (Reddit, X, LinkedIn) via OAuth, we store the access/refresh tokens needed to act within the scopes you granted. These tokens are encrypted at rest.
• Monitored content: public posts and comments matching your keywords, and the AI-generated draft replies and your edits/approvals.

We use your information to provide the Service: to monitor platforms for your configured keywords, generate draft replies, publish content you approve to connected accounts, and to operate billing and support. We do not sell your personal information.

The Service integrates with third parties to function, including connected platforms (Reddit, X, LinkedIn), AI model providers used to generate drafts, our database/hosting infrastructure, our email provider, and our payment processor. Data shared with these providers is limited to what is necessary to deliver the Service, and is governed by their respective policies.

We keep your data for as long as your account is active. You can exercise the following controls yourself from Settings > Data & privacy, no need to contact us:

• Exportyour brand's data as a JSON file (mentions, drafts, alerts, activity, and learned rules), excluding stored credentials.
• Set a retention cutoff so mentions and activity older than a chosen window (90/180/365 days) are automatically purged. This is off by default.
• Delete a brand, your workspace, or your entire account. Deletion is immediate and permanent (it cannot be undone) and removes all associated data, including stored platform tokens and integration credentials.
• Disconnect a platform at any time, which revokes our access and removes its stored tokens.

We use industry-standard measures to protect your data, including encryption of connected-account tokens at rest and hashed passwords. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

You can update your account details, disconnect connected platforms, and request access to or deletion of your data. Where applicable law grants additional rights (such as under GDPR or CCPA), we will honor valid requests.

We may update this Policy; material changes will be reflected by the “Last updated” date. Questions or requests can be sent to contact@growthmeteor.com.