Privacy
Protocol.
Effective: January 01, 2026. This document outlines the technical and legal frameworks we use to protect your digital presence and authorization tokens at UNI.social.
1. Authorized Data Collection
We only collect data necessary to provide and improve our social management services. This includes OAuth tokens granted via authorized platform flows, basic account metadata, and content assets you explicitly upload to our secure DAM (Digital Asset Management) system.
2. Technical Security Standards
All social credentials and sensitive tokens are encrypted using AES-256 GCM at rest. In-transit data is protected via TLS 1.3. We perform regular third-party security audits to ensure your platform standings remain secure.
3. Third-Party Platform Terms
Our service integrates with official APIs from Meta, ByteDance, Google, and others. Your use of UNI.social is also subject to the respective Privacy Policies of these platforms. We never scrape or utilize grey-market API endpoints.
4. Data Retention & Deletion
You maintain full ownership of your data. Upon account termination, all OAuth tokens are instantly revoked and content assets are purged from our primary S3 storage within 30 days, unless required otherwise by localized data laws.
GDPR & CCPA Rights
If you are a resident of the European Economic Area (EEA) or California, you have specific data protection rights. To exercise your right to access, rectify, or delete your personal data, please contact our Data Protection Officer at dpo@uni.social.
Trust Summary
- AES-256 GCM Key Encryption
- No Data Reselling Policy
- Global GDPR/CCPA Compliance