Legal

Privacy Policy

Effective date: April 16, 2026

This policy describes how PostCooker ("PostCooker," "we," "us," or "our") handles personal information when you use this marketing website and when you use the PostCooker product and related services (together, the "Services"). If you do not agree with this policy, please do not use the Services.

1. Scope and related documents

This policy applies to information collected through our public marketing pages, contact and demo request forms, and the PostCooker web application hosted at our production domain (for example, https://studio.postcooker.com) and any subdomains we operate for the product. Our Terms of Service govern your use of the paid product; this policy focuses on privacy practices. If there is a conflict between this policy and a contract you signed with us, the contract controls for that engagement.

2. Information we collect

We collect information in the following situations:

  • Account and profile. When you register or sign in, we collect identifiers such as your name, email address, organization or workspace name, and authentication data needed to secure your account.
  • Connected social accounts. If you connect third-party platforms (for example Instagram, Facebook, or YouTube), we receive tokens and identifiers from those platforms as permitted by their authorization flows, along with profile metadata, pages or channels you select, and content you choose to publish or analyze through PostCooker. We process this information to provide scheduling, publishing, analytics, and related product features you request.
  • Content and usage. We collect information you submit in the product (draft posts, captions, media uploads, comments, approvals) and technical usage data such as IP address, device and browser type, approximate location derived from IP, timestamps, and product interaction events for security, debugging, and service improvement.
  • Billing. If you purchase a paid plan, our payment processor collects payment card or bank details. We receive limited billing information (for example customer name, billing address, subscription status, and transaction references) to manage your subscription and invoices.
  • Marketing website and communications. When you use our contact form, request a demo, subscribe to updates, or email us, we collect the information you provide (such as name, company, and message content) and correspondence history as needed to respond.
  • Cookies and similar technologies. We use cookies, local storage, pixels, and scripts to remember preferences, measure site performance, and support consent management where required. Third-party analytics may set their own cookies subject to your choices and applicable law.

3. How we use information

We use personal information to:

  • Provide, operate, maintain, and secure the Services;
  • Authenticate users, prevent fraud and abuse, and enforce our terms;
  • Process payments and communicate about billing, renewals, and account changes;
  • Deliver customer support and respond to inquiries;
  • Improve and develop features, including aggregated or de-identified analytics;
  • Send service-related notices and, where permitted, marketing communications (you may opt out of marketing as described in those messages);
  • Comply with legal obligations and defend our legal rights.

Where we rely on AI-assisted features (for example caption suggestions), inputs you provide may be processed by subprocessors described in our product documentation or in-product notices. We configure such processing to support the feature you activate and do not use your content to train public models unless we clearly disclose otherwise and obtain any consent required by law.

4. Legal bases (EEA, UK, and Switzerland)

If you are in the European Economic Area, the United Kingdom, or Switzerland, we process personal data on one or more of these bases:

  • Contract — processing necessary to perform our agreement with you or your organization;
  • Legitimate interests — for example securing our systems, improving the product, and communicating about similar services, balanced against your rights;
  • Consent — where we ask for it, such as certain cookies or optional marketing; you may withdraw consent without affecting the lawfulness of processing before withdrawal;
  • Legal obligation — where the law requires us to retain or disclose information.

5. How we share information

We do not sell your personal information. We share information only as follows:

  • Service providers. Vendors that host infrastructure, send email, process payments, provide analytics, customer support tooling, security monitoring, or AI inference, subject to confidentiality and processing terms.
  • Social platforms. When you publish or fetch data, information is shared with the platforms you connect, under their terms and privacy policies.
  • Corporate transactions. In connection with a merger, acquisition, financing, or sale of assets, personal information may transfer as part of the transaction with appropriate safeguards.
  • Legal and safety. When we believe disclosure is required by law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of PostCooker, our users, or the public.

6. International transfers

PostCooker may process and store information in countries other than where you live, including the United States. Where required, we use appropriate safeguards such as Standard Contractual Clauses approved by the European Commission or equivalent mechanisms, together with supplementary measures where appropriate.

7. Retention

We retain personal information for as long as your account is active, as needed to provide the Services, and as necessary to comply with legal obligations, resolve disputes, and enforce our agreements. Backup copies may persist for a limited period after deletion. Aggregated or de-identified data may be retained without time limit.

8. Security

We implement administrative, technical, and organizational measures designed to protect personal information, including encryption in transit, access controls, and vendor due diligence. No method of transmission or storage is completely secure; we encourage strong passwords and safeguarding your credentials.

9. Your choices and rights

Depending on where you live, you may have rights to access, correct, delete, or export your personal information; object to or restrict certain processing; withdraw consent; or lodge a complaint with a supervisory authority. California residents may have additional rights under the California Consumer Privacy Act as amended (including the right to know, delete, and correct, and to opt out of "sale" or "sharing" as those terms are defined by law — we do not sell personal information in the conventional sense and limit cross-context behavioral advertising as described in our cookie tooling where applicable).

To exercise rights, contact us using the details below. We may need to verify your request. If you are a workspace member, your organization administrator may need to approve certain actions.

10. Children

The Services are not directed to children under 16 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us and we will take appropriate steps to delete it.

11. Third-party sites

Our website may link to third-party websites or services. Their privacy practices are governed by their own policies. We encourage you to read those policies before providing information to them.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will post the revised version on this page and update the effective date. If changes are material, we will provide additional notice as required by law (for example by email or in-product banner).

13. Contact us

For privacy questions, requests, or complaints, please contact us through our contact page. Please include enough detail for us to evaluate and respond to your request.