Privacy Policy

Last updated: 2/5/2026

1. Introduction

At Redact.social ("we", "our", or "us"), we take your privacy more seriously than any other feature of our product. We understand that the data you entrust to us—your social media history—is sensitive and personal. This Privacy Policy explains how we collect, use, and most importantly, protect and delete your information.

2. Our Core Privacy Promise

We are not in the business of selling data. We are a security compliance tool. Our business model is simple: you pay us to scan your profile, and we provide a report. We do not monetize your personal information in any way, shape, or form.

3. Information We Collect

We only collect information necessary to provide our service:

  • Account Information: Email address and authentication details (handled via Auth0).
  • Social Media Data: Read-only access to your social media posts, captions, and metadata solely for the purpose of analysis.
  • Payment Information: Processed securely by our payment provider (Stripe). We never store your full credit card details.

4. How We Use Your Information

Your social media data is used for one purpose only: to generate your Risk Assessment Report.

Our automated system scans your content against our risk database. Once the analysis is complete and the report is generated, the raw social media data is permanently deleted from our processing servers.

5. Data Retention & Deletion

We adhere to a strict "Zero-Knowledge" retention policy for social media content:

  • Raw Data: Deleted immediately after analysis.
  • Report Data: Stored in an encrypted format only as long as you keep your account active, or until you manually delete the report.
  • Deletion: You can request full account deletion at any time, which wipes all your data from our systems instantly.

6. Data Sharing

We do not share your data with third parties.

We will never voluntarily disclose your data to:

  • Advertisers or marketing agencies.
  • Data brokers.
  • Government agencies (including DHS, USCIS, or State Department), unless compelled by a valid court order from a jurisdiction we recognize (see Security page for jurisdiction details).

7. International Data Transfers

Your data is processed in secure data centers located in Iceland. By using our service, you acknowledge that your data will be transferred to and processed in this jurisdiction, which offers some of the world's strongest privacy protections.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by email or through a prominent notice on our website.

9. Contact Us

If you have any questions about this Privacy Policy, please contact us at [email protected].