Privacy Policy

Last updated: July 2, 2026

This Privacy Policy explains what information Treplino ("we", "us", "our") collects when you use our social media content creation and scheduling platform (the "Service"), how we use it, and the choices you have. By using the Service, you agree to the collection and use of information in accordance with this policy.

1. Information we collect

  • Account information: your name, email address, password (stored as a salted hash, never in plain text), and timezone.
  • Content you create: post captions, images, carousels, scheduled comments, and related scheduling settings.
  • Connected account data: when you connect a social platform (such as Facebook, LinkedIn, or Threads), we store the OAuth access tokens and basic profile details (name, profile picture, account ID, and page/profile identifiers) needed to publish on your behalf. For Facebook, this includes data returned by the Facebook Graph API such as your Facebook name, email address (if granted), and the pages or profiles you authorize us to manage.
  • Usage data: posts created and published, plan and quota usage, and technical logs needed to operate and secure the Service.
  • Device and browser information: IP address, browser type, operating system, and referring URLs, collected automatically when you use the Service.

2. How we use your information

  • To provide the Service: creating, scheduling, and publishing your content to connected platforms (Facebook, LinkedIn, Threads, and others).
  • To generate AI content suggestions you request.
  • To enforce plan limits and prevent abuse.
  • To send transactional emails such as email verification, password resets, and account notifications.
  • To respond to support requests and improve the Service.
  • To comply with legal obligations and enforce our Terms of Service.

3. Connected social platforms — Facebook, LinkedIn & Threads

Treplino integrates with third-party social media platforms including Facebook, LinkedIn, and Threads. When you authorize Treplino to connect to these platforms via OAuth:

  • We receive and store only the access tokens and profile data (name, profile picture, account/page ID) that are necessary to publish content on your behalf.
  • For Facebook, we may access permissions such as pages_manage_posts, pages_read_engagement, and publish_to_groups (only those you explicitly grant during authorization). We do not access your Facebook friends list, private messages, or any data beyond what is required to operate the Service.
  • We do not store the content of your social media feeds or messages.
  • You can revoke Treplino's access to any connected platform at any time by disconnecting the account within Treplino's Settings, or directly through the platform's own settings (e.g., Facebook Settings → Apps and Websites, LinkedIn Settings → Permitted Services, or your Threads account settings). Revoking access removes our stored tokens and stops all future publishing to that platform.

Our use of data received from Facebook APIs complies with Meta's Platform Terms and Meta's Developer Policies, including the Facebook Platform Policy.

4. AI processing

When you use AI features, the text you provide (such as a topic, caption, or blog excerpt) is sent to our third-party AI provider to generate suggestions. We do not use your content to train our own AI models. Please avoid including sensitive personal information in AI prompts.

5. How we share information

  • Social platforms: the content you choose to publish is sent to the platforms you connect (Facebook, LinkedIn, Threads, etc.).
  • Service providers: we use trusted infrastructure providers for hosting, databases, file storage, email delivery, and AI processing. They process data only as needed to provide their services to us and are bound by confidentiality obligations.
  • Legal: we may disclose information if required by law, court order, or to protect the rights, safety, and security of our users and the Service.
  • Business transfers: in the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. We will notify you before your data is transferred and becomes subject to a different privacy policy.
  • We do not sell your personal information to third parties.

6. International data transfers

Treplino is operated from and our servers are located in data centers that may be outside your country of residence. By using the Service, you acknowledge that your information may be transferred to and processed in countries that may not have the same data protection laws as your jurisdiction. Where required by applicable law (such as the GDPR), we implement appropriate safeguards — such as Standard Contractual Clauses — to protect your data during international transfers.

7. Data retention

We retain your account data and content for as long as your account is active. If you delete your account or disconnect a social platform, we delete the associated access tokens and stop publishing on your behalf within 30 days. Some records may be retained for a limited period where required for legal, billing, or security purposes.

8. Security

All traffic to and from the Service is encrypted in transit using HTTPS/TLS. Passwords are stored using industry-standard one-way hashing. OAuth tokens are stored encrypted at rest. Access to production systems is restricted to authorized personnel only. No method of transmission or storage is completely secure, so we cannot guarantee absolute security, but we work to protect your information using reasonable technical and organizational measures.

9. Your rights and choices

  • You can access and update your profile information in Settings.
  • You can disconnect social platforms at any time, which immediately removes our stored OAuth access tokens for them.
  • You can request deletion of your account and all associated data by contacting us at [email protected]. We will process your request within 30 days.
  • Depending on your location, you may have additional rights under applicable data protection laws (such as GDPR or CCPA), including the right to access, correct, delete, restrict processing of, or receive a portable copy of your personal data. Contact us to exercise these rights.
  • If you are located in the EU/EEA and believe we have not handled your data lawfully, you have the right to lodge a complaint with your local supervisory authority.

10. Cookies and local storage

The Service uses browser local storage to keep you signed in (authentication tokens) and to remember interface preferences. We may use strictly necessary session cookies for security purposes (e.g., CSRF protection). We do not use third-party advertising or tracking cookies. If we add analytics tools in the future, we will update this policy and provide appropriate controls.

11. Children

The Service is not directed to children under the age of 13 and may not be used by anyone under 18. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such information promptly.

12. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through the Service at least 7 days before the changes take effect. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of the Service after changes take effect constitutes your acceptance of the updated policy.

13. Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: