Legal

Privacy Policy

Last updated: May 15, 2026

Your privacy matters. This policy explains exactly what data SonicPost collects, how it is used, and the rights you have over your information.

1. Overview

This Privacy Policy explains how Ali Ait Mbarek ("I", "me", or "the developer"), operating SonicPost at sonicpost.app, collects, uses, and protects your personal information when you use the Service.

By using SonicPost, you agree to the collection and use of information in accordance with this policy. I am committed to protecting your privacy and handling your data with care and transparency.

2. Information We Collect

We collect the following types of information when you use SonicPost:

  • Account information — your name and email address when you register.
  • Billing information — payment details are collected and processed directly by Paddle. We never see or store your credit card information.
  • Social account tokens — OAuth access tokens for the social media platforms you connect, used solely to publish and schedule your content.
  • Content data — text, images, and videos you upload or compose within SonicPost.
  • Usage data — basic information about how you interact with the Service, such as features used and actions taken, to help us improve the product.
  • Technical data — IP address, browser type, and device information collected automatically when you access the Service.

3. How We Use Your Information

We use the information we collect solely to provide and improve SonicPost. Specifically:

  • To create and manage your account.
  • To authenticate with connected social media platforms and publish or schedule your content on your behalf.
  • To process payments through Paddle.
  • To send you transactional emails such as receipts, renewal reminders, and account notices.
  • To respond to your support requests.
  • To monitor and improve the performance and stability of the Service.

We do not sell your personal data. We do not use your data for advertising purposes.

4. Third-Party Services

SonicPost relies on a small number of trusted third-party services to operate. Each of these services may process some of your data as necessary to provide their function:

PaddlePayment processing & Merchant of Record

Handles all billing, invoicing, and tax compliance. Paddle processes your payment information directly and is governed by their own privacy policy at paddle.com.

Social Media PlatformsInstagram, TikTok, Pinterest, and others

Connected via official OAuth APIs. We store only the access tokens required to publish on your behalf. Your use of these platforms remains subject to their own privacy policies.

SupabaseAccount authentication

Used to securely manage account sign-in. Your credentials are never stored in plain text.

We do not share your personal data with any third parties beyond those listed above, and only to the extent necessary to provide the Service.

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service.

If you cancel your subscription, your data — including connected social accounts, scheduled posts, and post history — is retained for 30 days before being permanently deleted. You may request immediate deletion at any time by contacting support@sonicpost.app.

OAuth tokens for connected social platforms are deleted immediately upon disconnection of those accounts, or upon account deletion.

6. Your Rights

You have the following rights regarding your personal data, regardless of where you are located:

  • Access — you can request a copy of the personal data we hold about you.
  • Correction — you can request that we correct inaccurate or incomplete data.
  • Deletion — you can request that we delete your personal data at any time.
  • Portability — you can request your data in a commonly used, machine-readable format.
  • Objection — you can object to how we process your data in certain circumstances.

To exercise any of these rights, contact us at support@sonicpost.app. We will respond to all requests within 30 days.

7. Cookies

SonicPost uses only essential cookies necessary for the Service to function — such as session cookies to keep you logged in. We do not use tracking cookies or advertising cookies.

You can control cookies through your browser settings, though disabling essential cookies may affect your ability to use the Service.

8. Data Security

We take reasonable technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse. This includes encrypted storage of OAuth tokens, secure HTTPS connections, and restricted access to production systems.

While we strive to protect your data, no method of transmission over the internet is 100% secure. In the event of a data breach that affects your personal information, we will notify you as required by applicable law.

9. Children's Privacy

SonicPost is not intended for use by anyone under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or by displaying a notice within the Service.

Your continued use of SonicPost after changes take effect constitutes your acceptance of the updated Privacy Policy. We encourage you to review this page periodically.

11. Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us.

Get in touch

support@sonicpost.app

Ali Ait Mbarek

Operating as SonicPost

sonicpost.app

This Privacy Policy is effective as of May 15, 2026. For any questions, contact support@sonicpost.app.