Privacy Policy

Last Updated: 25 March 2025

Welcome to SociaHive (the "Service"). We respect your privacy and are committed to protecting it through our compliance with this policy. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our website, application, and/or services.

1. Scope of This Policy

This policy applies to all information we collect through our Service, including but not limited to:

  • Our website and related subdomains
  • Any mobile or desktop applications provided by us
  • All services offered through the platform

By accessing or using our Service, you agree to the collection and use of your information in accordance with this Privacy Policy. If you do not agree, please refrain from using the Service.

2. Information We Collect

Personal Information

  • Account Data: Name, email address, and username when you create an account or sign up via third-party login (e.g., Facebook, Instagram)
  • Profile Information: Business or creator profile data for scheduling and analytics
  • Access Tokens: OAuth tokens that allow us to perform operations on your behalf

Platform Data

  • Social Media Content: Messages, comments, posts, and other metadata from Instagram or other connected platforms
  • Analytics & Engagement: Information about your scheduled content, engagement metrics, etc.

Usage Data

  • Log Data: IP address, browser type, operating system, device information, and pages viewed
  • Cookies & Similar Technologies: We use cookies to remember preferences, track session data, and analyze usage

Payment Information

If you purchase a subscription, we collect payment information (through a secure third-party processor). We do not store full credit card details on our servers.

3. How We Use Your Information

  • Provide and Manage the Service: Authenticate and maintain your account, schedule content, respond to messages, and facilitate content publishing
  • Analyze and Improve: Monitor usage, perform analytics, enhance user experience, and fix technical issues
  • Communicate with You: Send service-related emails (e.g., confirmations, updates, and administrative messages)
  • Compliance and Enforcement: Enforce our Terms of Service, comply with legal obligations, and protect our rights and safety

4. Disclosure of Your Information

  • Service Providers: To trusted third parties who assist us in operating our Service, provided they adhere to confidentiality and data protection requirements
  • Legal Requirements: If required by law or subpoena, or if we believe in good faith that disclosure is necessary to protect our rights or comply with legal obligations
  • Business Transactions: In connection with a merger, acquisition, restructuring, or asset sale, your information may be transferred
  • With Your Consent: In cases where you have given explicit permission for the sharing of information

5. Cookies & Tracking Technologies

We use cookies and similar technologies to operate and improve our Service. When you first visit our website, we present a cookie consent banner allowing you to accept or reject non-essential cookies.

Types of Cookies We Use

  • Strictly Necessary Cookies: Required for the Service to function. These include authentication session cookies, CSRF protection tokens, and cookie consent preferences. These cannot be disabled.
  • Functional Cookies: Remember your preferences such as selected account, sidebar state, theme, and language settings to provide a personalized experience.
  • Analytics Cookies: Help us understand how visitors interact with our website by collecting information anonymously. We use this data to improve our Service. These are only set if you click "Accept All" on our cookie banner.

Managing Your Cookie Preferences

  • Cookie Banner: On your first visit, you can choose to "Accept All" or "Reject All" non-essential cookies. Your choice is stored in your browser and remembered for future visits.
  • Browser Settings: You can also control cookies through your browser settings. Most browsers allow you to block or delete cookies. Note that blocking all cookies may affect the functionality of the Service.
  • Clearing Consent: To change your cookie preference, clear your browser's localStorage for sociahive.com or use your browser's cookie management tools.

Third-Party Cookies

We do not use third-party advertising cookies. If we integrate third-party analytics services in the future, they will only be activated with your explicit consent via the cookie banner.

6. Data Protection & Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption in Transit: All data transmitted between your browser and our servers is encrypted using TLS/SSL (HTTPS).
  • Encryption at Rest: Sensitive data, including OAuth access tokens and API keys, is stored in encrypted databases with restricted access.
  • Access Controls: Access to user data is restricted to authorized personnel only, on a need-to-know basis. We use role-based access controls and multi-factor authentication for administrative access.
  • Third-Party Security: We use industry-leading cloud infrastructure providers (e.g., Hetzner, Cloudflare) that maintain SOC 2 compliance and follow security best practices.
  • Token Security: OAuth tokens for connected platforms (including Google/YouTube) are stored securely, never exposed to client-side code, and are revoked when you disconnect an account.
  • Regular Monitoring: We monitor our systems for vulnerabilities and perform regular security reviews of our codebase and infrastructure.

While we strive to protect your information, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security but are committed to maintaining industry-standard protections.

7. Data Retention & Deletion

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements.

Retention Periods

  • Account Data: Retained for the duration of your active account, plus 30 days after account deletion to allow for recovery.
  • Connected Platform Data (including Google/YouTube): Content metadata, analytics, and engagement data from connected platforms are retained while your account is active and the platform is connected. This data is deleted within 30 days of disconnecting the platform or deleting your account.
  • OAuth Tokens: Access and refresh tokens for connected platforms (including Google/YouTube) are stored only while the connection is active. Tokens are immediately revoked and deleted when you disconnect an account.
  • Scheduled Content: Scheduled and published post data is retained for the duration of your account. Drafts in trash are automatically deleted after 30 days.
  • Usage & Analytics Data: Aggregated, anonymized usage data may be retained indefinitely for service improvement. Identifiable usage logs are retained for up to 90 days.
  • Payment Records: Transaction records are retained as required by tax and financial regulations (typically 7 years), processed securely by our payment provider (Stripe).

Your Deletion Rights

You have the right to request deletion of your data at any time:

  • Disconnect a Platform: You can disconnect any connected account (including Google/YouTube) from Settings > Connected Accounts. This immediately revokes our access and queues the associated data for deletion within 30 days.
  • Delete Your Account: You can delete your entire account from Settings > Account > Danger Zone. This permanently removes all your data, connected accounts, flows, scheduled content, and analytics.
  • Request Data Deletion: You may also contact us at [email protected] to request deletion of specific data. We will respond within 30 days.

Google User Data

SociaHive's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We only access Google/YouTube data necessary to provide the requested functionality (uploading and scheduling videos). We do not use Google user data for advertising, and we do not sell Google user data to third parties.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data (see section 7).
  • Portability: Request your data in a machine-readable format.
  • Objection: Object to certain processing of your data.
  • Revoke Consent: Withdraw consent at any time by disconnecting accounts or deleting your account.

To exercise any of these rights, contact us at [email protected].

9. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at: [email protected]

Last updated: 25 March 2025