brandflare

Privacy Policy

Last updated: February 1, 2025

Overview

Brandflare LLC ("we", "our", or "us") operates an AI-powered marketing automation platform. This policy explains how we collect, use, store, and protect your information when you use our services.

Information We Collect

Account Information

Email address and password (securely hashed) when you create an account. We do not require additional personal information for registration.

Brand Data

Information you provide about your brands including company names, descriptions, target audiences, website URLs, and marketing preferences.

Content & Context

Materials you upload for content generation including LinkedIn profiles, reference posts, PDFs, text files, and images. AI-generated content created through our platform along with any edits, feedback, or status changes you make.

Social Media Connections

When you connect social media accounts (LinkedIn, Twitter/X), we store account identifiers and connection timestamps necessary for posting on your behalf.

Payment Information

Subscription tier selections and billing period preferences. Payment card details are collected and processed directly by Stripe; we do not store your card information.

Communications

If you use our SMS feature, we collect your phone number and message content to create content ideas. Contact form submissions including your name, email, and message.

Usage Data

How you interact with our platform including features used, navigation patterns, and content performance metrics.

How We Use Your Information

  • Provide AI-powered content generation tailored to your brand voice and audience
  • Schedule and publish content to your connected social media accounts
  • Process subscription payments and manage billing
  • Send transactional communications about your account and services
  • Improve our AI models and content quality based on feedback
  • Analyze platform usage to enhance features and user experience
  • Comply with legal obligations and enforce our terms

AI Processing

Our platform uses artificial intelligence to generate marketing content. When you use our AI features:

  • Your brand information, uploaded context, and content preferences are sent to AI providers to generate personalized content
  • We may analyze your website content to extract brand information with your permission
  • Generated content is stored in our database and associated with your account
  • We use web search services to find relevant topics and trends for content ideas

Third-Party Services

We integrate with the following third-party services to provide our platform:

Infrastructure: Supabase (authentication, database), Vercel (hosting)

AI Providers: Anthropic (Claude) and Google (Gemini) for content generation and analysis

Payments: Stripe for subscription billing and payment processing

Social Media: Twitter/X API, LinkedIn (via Zernio) for content publishing

Communications: Twilio (SMS), AWS SES (email delivery)

Each service has its own privacy policy. We only share data necessary for the specific service functionality.

Cookies & Local Storage

Essential Cookies: We use secure, HTTP-only cookies for authentication session management. These are required for the platform to function.

Local Storage: We store UI preferences (navigation states, filter settings) in your browser's local storage to improve your experience.

Data Security

We implement industry-standard security measures including encrypted connections (HTTPS/TLS), secure password hashing, webhook signature verification, and access controls. Your data is stored in secure cloud infrastructure with regular backups. We limit employee access to user data on a need-to-know basis.

Data Retention

We retain your data for as long as your account is active or as needed to provide services.

When you cancel a subscription, associated generated content may be automatically deleted.

When you delete your account, we remove your personal data within 30 days, except where retention is required by law or for legitimate business purposes (such as fraud prevention).

Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access and receive a copy of your personal data
  • Correct inaccurate or incomplete information
  • Request deletion of your account and associated data
  • Object to or restrict certain processing activities
  • Data portability (receive your data in a structured format)
  • Withdraw consent where processing is based on consent

To exercise these rights, contact us at the email below.

Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children. If we learn we have collected data from a child, we will delete it promptly.

International Data Transfers

Your data may be processed in the United States and other countries where our service providers operate. We ensure appropriate safeguards are in place for international transfers in compliance with applicable data protection laws.

Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by email or through the platform. The "Last updated" date at the top indicates when the policy was last revised. Continued use after changes constitutes acceptance of the updated policy.

Contact Us

For privacy-related questions or to exercise your rights, contact us at privacy@brandflare.ai