Privacy Policy

This Privacy Policy explains how Postia ("Postia", "we", "us", "our") collects, uses, and protects your information when you use our website at https://www.getpostia.com and our related services, including our Pinterest pin generation and scheduling tools (collectively, the "Service").

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

1. Who We Are

Postia is a software-as-a-service (SaaS) platform that helps Etsy and digital-product sellers create and schedule Pinterest content.

2. Information We Collect

We collect the following types of information:

2.1 Information You Provide Directly

• Account information – name, email address, password, and any other details you provide when creating an account
• Profile information – shop details, niche, and preferences you choose to share
• Content information – product titles, descriptions, URLs, images, pin text, blog post text, and any other content you upload or generate using the Service
• Support communications – messages you send to us via email or support forms

2.2 Information from Pinterest (and other platforms)

When you connect your Pinterest account, we use Pinterest OAuth 2.0. We never see your Pinterest password.

With your explicit permission, we may receive:

• Pinterest user ID
• Username and basic profile information
• List of boards you own or manage (board IDs and names)
• Pins we create on your behalf
• Access token required to create pins and schedule them

We do not access your Pinterest analytics or any data that is not necessary to provide the Service.

2.3 Automatically Collected Information

We may automatically collect:

• Usage data (pages visited, features used, time on site)
• Device information (browser type, operating system)
• IP address and general location (city/country level)
• Cookies and similar technologies to remember preferences and improve the Service

3. How We Use Your Information

We use your information to:

• Provide, operate, and maintain the Service
• Generate pin titles, descriptions, and blog posts based on your inputs
• Allow you to schedule pins and post them to Pinterest on the dates and times you choose
• Display your connected Pinterest account and boards
• Communicate with you about your account, updates, and support requests
• Improve and optimize the Service, including testing and analytics
• Detect, prevent, and address technical or security issues
• Comply with legal obligations

4. Legal Bases (for UK/EU Users)

If you are in the UK or EU, our legal bases for processing your data include:

• Performance of a contract – to provide the Service you sign up for
• Consent – for optional features (e.g., marketing emails, connecting Pinterest)
• Legitimate interests – improving the Service, preventing abuse, and ensuring security
• Legal obligation – where we must retain certain records

5. Sharing Your Information

We do not sell your personal information.

We may share information with:

• Service providers who help us operate the Service (hosting providers, email providers, analytics tools), all under appropriate data protection agreements
• Pinterest, when you ask us to create or schedule pins on your behalf
• Professional advisors (lawyers, accountants) where necessary
• Authorities if required by law or to protect our rights, safety, or property
• Business transfers – if we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction

6. Pinterest Integration

• We use Pinterest's official OAuth 2.0 flow
• You choose whether to connect your Pinterest account
• You can disconnect Pinterest at any time inside the app
• We only request permissions required to read your boards and create pins (boards:read, pins:write, user_account:read)
• We use your access token only to create and schedule pins that you approve
• We never post without your explicit scheduling or confirmation

7. Data Retention

We retain your information only for as long as necessary to:

• Provide the Service
• Comply with legal and accounting obligations
• Resolve disputes and enforce agreements

If you close your account, we may keep limited information as required by law or for legitimate business purposes (e.g., fraud prevention, record keeping).

8. Security

We use reasonable technical and organisational measures to protect your information, including:

• Encryption of access tokens
• Limited access to production databases
• HTTPS for data in transit

However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

9. Your Rights (UK/EU)

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Correct inaccurate or incomplete data
• Request deletion of your data
• Restrict or object to processing
• Request data portability
• Withdraw consent (where processing is based on consent)

To exercise any of these rights, contact us at support@getpostia.com.

10. Children's Privacy

The Service is not directed to children under 18, and we do not knowingly collect personal information from children. If we learn that a child under 18 has provided us with personal data, we will delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be posted on this page with a new "Last Updated" date. Your continued use of the Service after changes takes effect constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions about this Privacy Policy or your data, contact: