Privacy Policy
Last updated: June 12, 2026
Posted Once ("we", "us", "our") operates the Posted Once social media publishing service at postedonce.com (the "Service"). This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using the Service you agree to this policy.
1. Information we collect
Account information
When you create an account we collect your name, email address, and (for email signups) a securely hashed password. If you sign up with Google, we receive your name, email, and profile picture from Google.
Connected social accounts
When you connect a social media account (Facebook, Instagram, Threads, X/Twitter, LinkedIn, TikTok, YouTube, Bluesky, Pinterest, or Google Business Profile), we receive and store:
- Your profile identifier, username, display name, and avatar on that platform.
- An access token (and where applicable a refresh token) that lets us publish on your behalf. These tokens are encrypted at rest using AES-256-GCM and are only decrypted at the moment we publish a post you created.
We request only the permissions needed to publish and manage the content you choose to post. We do not read your private messages, and we do not access content beyond what is necessary to provide the Service.
Content you create
The posts, captions, schedules, and any images or videos you upload to publish through the Service.
Payment information
Subscription billing is handled by Stripe. We do not store your full card details — Stripe processes payments and we retain only a customer identifier and your plan/subscription status.
Usage data
Basic technical information such as log data and the success/failure status of your publishing actions, used to operate and debug the Service.
2. How we use your information
- To publish and schedule the content you create to the accounts you connect.
- To authenticate you and secure your account.
- To process subscriptions and provide customer support.
- To maintain, debug, and improve the Service.
- To notify you about your account, such as when a post fails to publish.
We do not sell your personal information. We do not use your content to train machine-learning models.
3. How we share information
We share information only with the service providers that make Posted Once work:
- The social platforms you connect — to publish the content you ask us to.
- Stripe — payment processing.
- Cloudflare R2 — storage of media you upload.
- Upstash — scheduling/queue infrastructure.
- Resend — transactional email.
We may also disclose information if required by law or to protect our rights and the safety of our users.
4. Data retention and deletion
We keep your information for as long as your account is active. Media you upload is automatically removed from our storage after the associated posts have published.
You can delete your account at any time from Settings → Delete account, which permanently removes your account, your connected-account tokens, your posts, and your uploaded media. You can also disconnect any individual social account at any time, which deletes the stored tokens for that account.
If you remove Posted Once from your Facebook account, Facebook notifies us and we delete the data associated with that connection. See our Data Deletion instructions for details.
5. Security
We protect your data with encryption in transit (HTTPS) and encryption at rest for all third-party access tokens. Passwords are hashed with bcrypt. No method of transmission or storage is completely secure, but we work to protect your information using industry-standard practices.
6. Your rights
You may access, correct, export, or delete your personal information. To exercise these rights, use the in-app controls or contact us at the email below.
7. Children
The Service is not directed to anyone under 16, and we do not knowingly collect information from children.
8. Changes to this policy
We may update this policy from time to time. We will post the updated version here with a new "Last updated" date.
9. Contact
Questions about this policy or your data? Email privacy@postedonce.com.