Privacy Policy

SocialCX ("we", "us", "our") provides a social listening and analytics platform delivered as a hosted SaaS application. This policy explains what personal information we collect, why we collect it, how we use it, and the choices you have.

• Account data — name, email, hashed password, workspace membership, role.
• Social media data via Meta APIs — we ingest publicly available content (such as public posts, comments, and mentions) and data from accounts that a customer explicitly connects and authorises via Meta's OAuth flow. This includes Facebook Pages, Instagram Business accounts, and Threads profiles.
• Usage data — pages visited, features used, errors encountered, anonymous device metadata.
• Billing data — handled by our payment processor; we never store full card numbers.

We collect this data to power brand analytics, sentiment scoring, competitive insights, reporting dashboards, and alerts for the workspace that connected the relevant social account.

Data is used to render dashboards, generate scheduled reports, trigger alerts, and provide customer support. We do not use it for any purpose outside the SocialCX product features the customer subscribes to. SocialCX only uses data obtained through Meta APIs for the purpose of providing analytics, insights, and reporting within the platform, and does not use this data for any unrelated purposes.

We do not sell personal data, and we do not share customer content with third parties for their own marketing or advertising. We do not train third-party AI models on your customer content.

SocialCX integrates with Meta Platforms via the Facebook Graph API, Instagram Graph API, and Threads API. Data is accessed only after an authorised admin of the relevant Page or account grants consent through Meta's OAuth flow. Use of data obtained through these APIs is governed by Meta's Platform Terms and Developer Policies in addition to this policy. SocialCX's use and transfer of information received from Meta APIs adheres to the Meta Platform Terms and Developer Policies.

Customer content is retained while the account is active or per the data retention setting on your subscription plan (7 to 365 days). You can request deletion of your data at any time — see our Data Deletion Instructions. Verified deletion requests are completed within 7 business days, except where retention is required by law. Users can also manage or revoke SocialCX's access to their data at any time directly through their Facebook, Instagram, or Threads account settings.

Data is encrypted in transit (TLS) and at rest. Access is restricted via role-based permissions, and all administrative actions are recorded in an audit log.

Subject to applicable law you can access, rectify, or delete your personal data; restrict or object to processing; and request portability. Contact privacy@socialcx.app to exercise any right.

Data may be processed outside your country. Where we transfer EEA / UK data we rely on Standard Contractual Clauses and equivalent safeguards.

SocialCX is a B2B product and is not directed at children under 16.

We may update this policy from time to time. Material changes will be communicated to account admins by email and reflected in the "Last updated" date above.

Questions? Email privacy@socialcx.app.