Privacy Policy
We respect your privacy and are committed to safeguarding your personal information. This policy explains what we collect, how we use it, and the choices you have.
Last updated: 27 August 2025
Data We Collect
Account details, connected social handles, usage analytics, and limited logs required to operate the service.
Why We Collect It
To provide and improve Warply.app, secure accounts and tokens, process payments, prevent abuse, and comply with the law.
Your Choices
Access, correct, export, or delete your data. Manage cookies and marketing communications. Contact us for privacy requests.
1. Who we are
Warply.app (“Warply”, “we”, “us”) is a social media automation platform that helps you schedule and publish content across multiple channels with a unified API and dashboard.
2. Information we collect
- Account & Profile: name, email, password (hashed), organization, role.
- Connected Social Accounts: OAuth tokens/refresh tokens, usernames, page IDs, channel metadata. Tokens are encrypted and stored to enable posting on your behalf.
- Content & Activity: scheduled posts, drafts, publishing logs, channel-level analytics we retrieve from platforms, and your in-app actions (e.g., linking accounts, using features).
- Usage & Device: IP address, device/browser type, pages visited, crash reports, performance metrics (for debugging and security).
- Billing: payment method, billing address, subscription status, invoices (processed by our payment provider; we don’t store full card details).
- Cookies & Similar Technologies: to keep you signed in, remember preferences, and measure product usage.
3. How we use your information
- Provide, maintain, and improve the service and core features.
- Authenticate you, secure accounts, and protect against fraud or abuse.
- Schedule and publish posts to connected social channels per your instructions.
- Measure performance and usage to prioritize improvements and fix issues.
- Send service communications (e.g., critical updates, billing notices).
- Comply with legal obligations and enforce our Terms of Service.
- With your consent (where required), send product updates and marketing communications.
4. Legal bases (EEA/UK)
Where GDPR/UK GDPR applies, we process data on these bases: contract performance (providing the service), legitimate interests (product security, analytics, and improvement), consent (optional marketing/ cookies), and legal obligations.
5. Retention
We retain personal data while your account is active and as needed to provide the service. After account deletion, we remove or anonymize data within a reasonable period, except where retention is required for legal, accounting, or fraud-prevention purposes. Posting logs and aggregated analytics may be retained in non-identifiable form.
6. Sharing & processors
We don’t sell your personal data. We share data with trusted service providers who help us operate Warply under data processing agreements:
- Hosting & Storage: Supabase (Postgres/Auth/Storage with RLS), Railway (containers), object/file storage providers.
- Observability: PostHog (product analytics), Sentry (error tracking).
- Payments: Stripe (billing, subscriptions, invoicing).
- Automation: n8n / workers for queued jobs and integrations.
- Social Platforms: APIs for posting and analytics retrieval (e.g., LinkedIn, X, Instagram, TikTok, YouTube, Facebook).
We may disclose information if required by law or to protect our rights, users, or the public.
7. International data transfers
Our providers may process data in countries outside your own. Where required, we rely on appropriate safeguards (e.g., Standard Contractual Clauses) to protect personal data during cross-border transfers.
8. Security
We employ administrative, technical, and organizational measures to protect data, including encrypted token storage, role-based access control, and audit logs. No method of transmission or storage is 100% secure; please use strong passwords and enable security best practices.
9. Your rights
- GDPR/UK GDPR: access, rectification, erasure, restriction, objection, portability, and withdrawal of consent (without affecting prior lawful processing).
- CCPA/CPRA (California): right to know, delete, correct, and opt-out of certain data sharing. We do not sell personal information.
- Australia: access and correction rights under the Privacy Act and APPs.
To exercise rights, contact us using the details below. We may verify your identity before responding.
10. Cookies & preferences
We use essential cookies for authentication and security. With consent (where required), we use analytics cookies to improve product performance. You can manage preferences in your browser and within the app’s cookie settings (if available). Disabling some cookies may impact functionality.
11. Children’s privacy
Warply is not directed to children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us personal data, contact us to delete it.
12. Changes to this policy
We may update this policy to reflect changes to our practices or legal requirements. If changes are material, we will provide notice (e.g., in-app banner or email). Continued use of Warply after the effective date constitutes acceptance of the updated policy.
13. Contact us
If you have questions or requests, please contact:
Email: privacy@warply.app
Postal: Warply.app Privacy, PO Box 000, Melbourne VIC 3000, Australia
For EU/UK users: you may also have the right to lodge a complaint with your local data protection authority.
14. Definitions
- Personal data: information relating to an identified or identifiable individual.
- Processor: a service provider processing personal data on our behalf.
- Controller: the entity determining the purposes and means of processing personal data (Warply for this service).
Note: This page is for general information and does not constitute legal advice. Please consult your legal counsel to tailor the policy to your specific processing activities and regional requirements.