Privacy Policy

Last Updated: November 16, 2025

At EaziMarketing ("we," "our," or "us"), we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered marketing automation platform and services (collectively, the "Services").

By accessing or using our Services, you agree to this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

1. Information We Collect

1.1 Information You Provide

We collect information you provide directly to us, including:

  • Account information: Name, email address, password, business details
  • Business profile: Company name, industry, website URL, target audience, marketing goals
  • Payment information: Processed securely through third-party payment processors (PayPal)
  • Content you create: Marketing campaigns, social media posts, images, videos, media files
  • Communications: Support requests, feedback, inquiries sent to us

1.2 Information Collected Automatically

When you use our Services, we automatically collect:

  • Device information: IP address, browser type, operating system, device identifiers
  • Usage information: Pages visited, features used, time spent, click patterns
  • Log data: Access times, error logs, performance data, API calls
  • Cookies and tracking: Session cookies, analytics cookies, preference cookies

1.3 Information from Third Parties

When you connect your social media accounts or other third-party services to EaziMarketing, we collect information from those platforms in accordance with their terms of service and your privacy settings. This includes:

  • Profile information (username, profile picture, display name)
  • Account metrics (follower count, post statistics, engagement data)
  • Access tokens for posting content on your behalf
  • Public posts and content you've shared

2. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve our AI-powered marketing automation Services
  • Process your transactions and manage your subscription account
  • Generate AI-powered content, marketing recommendations, and campaign strategies
  • Post content to your connected social media accounts (with your explicit permission)
  • Analyze campaign performance and provide insights and analytics
  • Send you technical notices, updates, security alerts, and support messages
  • Respond to your comments, questions, and customer service requests
  • Monitor and analyze trends, usage, and activities to improve our Services
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations and enforce our terms of service
  • Send marketing communications (with your consent, opt-out available)

3. Social Media Platform Integration & Compliance

EaziMarketing integrates with multiple social media platforms to help you manage your marketing presence. We comply with all platform-specific policies and terms of service.

3.1 Facebook and Instagram API Usage

Our use of information received from Facebook and Instagram APIs adheres to theFacebook Platform Terms and Developer Policies.

Instagram Business Accounts Only

Important: EaziMarketing only works with Instagram Business accounts, not personal Instagram accounts. You must have an Instagram Business account connected to a Facebook Page to use our Instagram publishing features.

Permissions We Request

When you connect your Instagram account through Facebook, we request the following permissions:

  • instagram_basic: To access your Instagram Business account ID and username for identification
  • instagram_content_publish: To publish content (images, videos, captions, and hashtags) to your Instagram Business account on your behalf
  • pages_manage_posts: To manage posts on your connected Facebook Page (required for Instagram Business API)
  • pages_read_engagement: To retrieve post performance metrics and analytics data

What Instagram Data We Collect

When you connect your Instagram Business account, we collect:

  • Account Information: Instagram Business account ID, username (e.g., @yourbusiness), profile name/display name, profile picture URL, connected Facebook Page ID and name
  • Publishing Data: Content you create through our platform (captions, hashtags, images, videos), publishing timestamps and schedules, post status (draft, scheduled, published)
  • Analytics Data (Optional): Post performance metrics (likes, comments, shares, reach, impressions), engagement rates and trends, follower growth statistics, best posting times based on your audience

What We DO NOT Collect from Instagram

We explicitly do not access or collect:

  • ❌ Your Instagram followers list or follower information
  • ❌ Direct messages (DMs) or message conversations
  • ❌ Comments on posts not created through our platform
  • ❌ Instagram Stories (unless you explicitly create them in our platform)
  • ❌ Personal Instagram accounts (we only support Business accounts)
  • ❌ Tagged photos or mentions
  • ❌ Saved posts or collections
  • ❌ Shopping or product catalog data
  • ❌ Insights or analytics we haven't been granted permission to access

How We Use Instagram Data

We use your Instagram data solely to provide our Services:

  • Content Publishing: Post images, videos, and captions to your Instagram Business account; schedule posts for future publication at times you specify; publish content immediately when you click "Post Now"
  • Account Display: Show your Instagram username and profile picture in our dashboard; display connected account status and connection health; identify which Instagram account is connected
  • Analytics & Insights: Retrieve post performance data to show you how your content performs; generate reports on engagement, reach, and audience growth; provide recommendations for optimal posting times; track which content types perform best for your audience
  • Platform Functionality: Verify your Instagram Business account is properly connected; ensure we have necessary permissions to publish content; refresh access tokens automatically to maintain connection

Data Sharing and Third Parties

  • We do NOT sell your Instagram data to any third parties
  • We do NOT share your Instagram data with advertisers or marketing companies
  • We do NOT use your Instagram data to train AI models or for purposes beyond providing our Services
  • The only "sharing" is when we send content back to Instagram (Meta) on your behalf to publish posts you've created

Access Token Security

  • Access tokens are encrypted using AES-256 encryption and stored securely
  • Tokens are transmitted only over HTTPS/SSL connections
  • Tokens are never exposed in client-side code or browser storage
  • Tokens are automatically refreshed before expiration to maintain seamless service
  • Tokens are immediately deleted when you disconnect your Instagram account

Instagram Data Retention

We retain Instagram-related data according to the following schedule:

  • Access Tokens: Stored encrypted while account is connected; deleted immediately upon disconnection
  • Account Information (username, profile picture): Retained while account is connected; deleted within 30 days of disconnection
  • Published Content Metadata: Retained for 90 days after publishing for analytics purposes
  • Post Analytics Data: Retained for 90 days, then anonymized (personal identifiers removed) for aggregate reporting
  • Scheduled Posts: Deleted immediately when you disconnect Instagram or delete the scheduled post

Your Control Over Instagram Data

You have full control over your Instagram integration:

  • Disconnect at Any Time: Go to Settings → Integrations in our platform, click "Disconnect" next to Instagram, or revoke access through your Facebook Business Settings
  • When You Disconnect Instagram: Access tokens are immediately revoked and deleted from our systems; all scheduled Instagram posts are automatically canceled; your Instagram username and profile data are removed within 30 days; post analytics data is anonymized within 90 days; no further data is collected from your Instagram account
  • View Your Instagram Data: Request a data export through Settings → Privacy → Download My Data; we'll provide all Instagram-related data we have stored in JSON or CSV format; data export includes: connected account info, published post history, analytics data
  • Delete Instagram Data: Disconnect your Instagram account (data deleted per retention schedule above) or request immediate deletion by contacting us through our Contact page; we'll confirm deletion within 48 hours

Compliance with Meta Policies

We comply with all Meta/Facebook platform policies:

  • ✅ We only access data necessary for our stated business purpose
  • ✅ We respect user privacy and Instagram's terms of service
  • ✅ We do not engage in spam, automated behavior, or policy violations
  • ✅ We maintain secure infrastructure and follow security best practices
  • ✅ We respond promptly to user data deletion requests
  • ✅ We maintain transparency about data usage through this Privacy Policy

Rate Limits and API Usage

  • We respect Instagram's API rate limits to ensure service stability
  • Posts are queued if rate limits are approached
  • We do not make excessive API calls or engage in abusive behavior
  • All API usage is logged and monitored for compliance

Changes to Instagram Integration

If Meta/Facebook changes their API terms or permissions:

  • We will update this Privacy Policy accordingly
  • We will notify you via email of any material changes
  • We will request new permissions only if necessary for service functionality
  • You can review and approve any new permissions before granting them

Contact Meta Directly

You can review or revoke Instagram permissions at any time through:

Questions About Instagram Data?

If you have questions about how we use your Instagram data, please contact us through our Contact page. We're committed to transparency and will respond within 30 days.

Summary: We use Instagram data solely to help you publish marketing content to your Instagram Business account. We protect your data with industry-standard security, never sell your information, and give you full control to disconnect at any time.

3.2 Twitter/X API Usage

Our use of Twitter/X API complies with theTwitter Developer Agreement and Policy.

  • We request tweet.read, tweet.write, and users.read permissions
  • We use Twitter data to post tweets, retrieve analytics, and display your profile information
  • We do not access your direct messages or private tweets
  • You can disconnect your Twitter account at any time
  • We comply with Twitter's data retention and deletion policies

3.3 LinkedIn API Usage

Our use of LinkedIn API complies with theLinkedIn API Terms of Use.

  • We request w_member_social and r_liteprofile permissions
  • We use LinkedIn data to share posts on your behalf and retrieve basic profile information
  • We do not access your connections, messages, or private profile data
  • Posts are created according to your instructions through our platform
  • You maintain full control and can disconnect at any time

3.4 YouTube API Usage

Our use of YouTube API complies with theYouTube API Services Terms of Service andGoogle Privacy Policy.

  • We request youtube.upload and youtube.readonly permissions
  • We use YouTube data to upload videos and retrieve channel analytics
  • We do not access your private videos or subscriber information
  • You can revoke access through Google Account permissions
  • We comply with Google's data retention and deletion requirements

3.5 TikTok API Usage

Our use of TikTok API complies with theTikTok API Terms of Service.

  • We request video.upload and user.info.basic permissions
  • We use TikTok data to post videos on your behalf and retrieve basic account information
  • We do not access your private videos, messages, or following list
  • You can disconnect your TikTok account at any time from our platform
  • We comply with TikTok's content policies and data handling requirements

3.6 Pinterest API Usage

Our use of Pinterest API complies with thePinterest Developer Guidelines.

  • We request boards:read, boards:write, pins:read, and pins:write permissions
  • We use Pinterest data to create pins and boards on your behalf
  • We do not access your private boards or saved pins
  • You can disconnect your Pinterest account at any time
  • We comply with Pinterest's content policies and data requirements

3.7 WordPress Integration

For WordPress integrations, we use your WordPress credentials or API keys to publish content directly to your blog.

  • Credentials are stored securely with encryption
  • We only access your WordPress site to publish posts you create through our platform
  • We do not modify existing content or access private drafts without permission
  • You can disconnect your WordPress site at any time

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties.

We may share your information in the following circumstances:

4.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our Services, including:

  • Cloud hosting providers (Vercel, AWS)
  • Payment processing (PayPal)
  • Email delivery (Resend)
  • AI services (OpenAI for content generation)
  • Analytics providers (Google Analytics, Microsoft Clarity)

4.2 Social Media Platforms

Content you create through our platform is shared with the social media platforms you've connected, according to your explicit instructions and the posting schedules you set.

4.3 Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any change in ownership or use of your personal information.

4.4 Legal Requirements

We may disclose your information if required by law, court order, subpoena, or government regulation, or to:

  • Protect our rights, property, or safety, or that of our users or others
  • Investigate fraud, security, or technical issues
  • Enforce our terms of service or other agreements
  • Comply with legal processes or governmental requests

4.5 With Your Consent

We may share your information with third parties when you have given us explicit consent to do so.

5. Data Security

We implement industry-standard security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption: SSL/TLS encryption for data in transit, AES-256 encryption for data at rest
  • Authentication: JWT tokens, password hashing with bcrypt, multi-factor authentication support
  • Access controls: Role-based access, principle of least privilege
  • Infrastructure: Secure cloud hosting with redundancy, automated backups, disaster recovery
  • Monitoring: Real-time security monitoring, intrusion detection, audit logs
  • Regular audits: Security assessments, vulnerability scans, penetration testing
  • Employee training: Data protection and security best practices

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

6. Data Retention

We retain your personal information for as long as necessary to provide our Services, comply with legal obligations, resolve disputes, and enforce our agreements.

  • Active accounts: Data retained while your account is active
  • Account deletion: Data deleted or anonymized within 30 days of account deletion
  • Legal requirements: Some data may be retained longer if required by law
  • Backups: Backup copies deleted within 90 days
  • Social media tokens: Deleted immediately when you disconnect an integration

7. Your Rights and Choices

You have the following rights regarding your personal information:

7.1 Access and Correction

You can access and update your account information at any time through your account settings dashboard.

7.2 Data Portability

You have the right to request a copy of your personal information in a structured, commonly used, machine-readable format (JSON, CSV).

7.3 Deletion

You can request deletion of your personal information by:

  • Using the account deletion feature in your settings
  • Contacting us via our Contact page
  • Following platform-specific deletion instructions on our Data Deletion page

7.4 Marketing Communications

You can opt out of marketing emails by:

  • Clicking the "unsubscribe" link in any marketing email
  • Updating your email preferences in your account settings
  • Contacting us directly to be removed from marketing lists

7.5 Cookies and Tracking

You can control cookies through your browser settings. Note that disabling cookies may affect the functionality of our Services. Most browsers allow you to refuse cookies or delete existing cookies.

7.6 Social Media Integrations

You can disconnect any social media platform at any time from your dashboard. This will:

  • Revoke our access to your account
  • Delete stored access tokens
  • Stop all automated posting
  • Remove your profile information from our systems

8. International Data Transfers

Your information may be transferred to, stored, and processed in countries other than your country of residence, including the United States and European Union. These countries may have data protection laws that differ from the laws in your country.

By using our Services, you consent to such transfers. We take appropriate safeguards to ensure your information is protected in accordance with this Privacy Policy, including:

  • Standard Contractual Clauses approved by the European Commission
  • Data processing agreements with service providers
  • Compliance with applicable data protection regulations

9. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18 without verification of parental consent, we will take steps to delete such information promptly.

If you believe we have collected information from a child under 18, please contact us via ourContact page.

10. AI and Content Generation

Our AI services process your business information to generate marketing content:

  • Content is generated based on your business profile, campaign goals, and instructions
  • AI processing occurs on secure servers with data encryption (OpenAI API)
  • Generated content is stored in your account for your review, editing, and use
  • You maintain full ownership and control over all generated content
  • We do not train AI models on your private business data or content
  • AI-generated content can be deleted at any time

11. GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

  • Right to access: Request a copy of your personal data
  • Right to rectification: Correct inaccurate or incomplete data
  • Right to erasure: Request deletion of your data ("right to be forgotten")
  • Right to restriction: Limit how we use your data
  • Right to data portability: Receive your data in a machine-readable format
  • Right to object: Object to processing based on legitimate interests
  • Right to withdraw consent: Withdraw consent at any time
  • Right to lodge a complaint: File a complaint with your local supervisory authority

To exercise these rights, please contact us via our Contact page.

12. California Privacy Rights (CCPA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

  • Right to know: What personal information we collect, use, disclose, and sell
  • Right to delete: Request deletion of your personal information
  • Right to opt-out: Opt-out of the sale of personal information
  • Right to non-discrimination: Not be discriminated against for exercising your rights
  • Right to correct: Correct inaccurate personal information

Important: We do not sell your personal information to third parties.

To exercise your CCPA rights, contact us via our Contact page.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, Services, or for legal, regulatory, or operational reasons. When we make material changes, we will:

  • Post the updated Privacy Policy on this page
  • Update the "Last updated" date at the top of this page
  • Notify you by email (if you have an account with us)
  • Display a prominent notice on our platform

Your continued use of EaziMarketing after changes become effective constitutes acceptance of the updated policy. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us through our Contact page.

Our contact form allows you to select the appropriate department (Privacy, General Support, Legal, etc.) to ensure your inquiry reaches the right team.

We will respond to your inquiry within 30 days (or sooner as required by applicable law).

By using EaziMarketing, you acknowledge that you have read and understood this Privacy Policy.

Terms of ServiceData DeletionContact Us
FacebookTwitterInstagramLinkedIn

© 2025 EaziMarketing. All rights reserved.