Privacy Policy

Auto Affiliate ("we", "our", "us") is a SaaS platform for automated affiliate marketing. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our services.

By using Auto Affiliate, you agree to the collection and use of information in accordance with this policy.

Account Information

• Name and email address (via Google OAuth sign-in)
• Profile picture (from your Google account)

Connected Social Accounts

• Facebook Page names, IDs, and access tokens
• Page content you publish through our platform (posts, images, videos)

Usage Data

• Content you create within the platform (product listings, AI generated content)
• Scheduling and publishing activity

• Authenticate your identity and manage your account
• Publish content to your connected Facebook Pages on your behalf
• Generate AI-powered marketing content for your products
• Schedule and automate social media posts
• Display engagement metrics from your published content
• Improve our services and user experience

Auto Affiliate integrates with the Facebook Graph API. We request the following permissions:

• pages_show_list — List Facebook Pages you manage
• pages_manage_posts — Create and publish posts to your Pages
• pages_read_engagement — Read engagement metrics on your Page posts
• pages_manage_engagement — Respond to comments and interactions
• pages_read_user_content — Read content posted by users on your Pages
• public_profile — Access your basic profile information

We only access Facebook data that is necessary to provide our services. We do not sell or share your Facebook data with third parties.

• Your data is stored in secured PostgreSQL databases with encrypted connections
• Media files (images, videos) are stored in private S3-compatible storage
• Access tokens are encrypted at rest and transmitted over HTTPS
• We implement industry-standard security measures to protect your data

• Account data is retained for as long as your account is active
• Published content history is retained to provide analytics and reporting
• Upon account deletion, all personal data is removed within 30 days
• Facebook access tokens are revoked immediately upon disconnecting a Page

You have the right to:

• Access your personal data stored in our system
• Correct inaccurate information in your account
• Delete your account and all associated data
• Disconnect Facebook Pages and revoke API access at any time
• Export your data in a portable format upon request

To exercise any of these rights, contact us at bryanphan66@gmail.com.

We use the following third-party services:

• Google OAuth — Authentication
• Facebook Graph API — Social media integration
• Google Gemini AI — Content generation

Each third-party service has its own privacy policy governing their use of your data.

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.