Privacy Policy for Content Maker

Last Updated: January 24, 2026

1. Introduction

Your privacy is a priority for Content Maker ("we", "us", "our"). This Privacy Policy explains how we collect, use, and protect your information when you use our SaaS application for content management and creation.

By using Content Maker, you agree to the practices described in this policy.

2. Data Controller

The party responsible for processing data is:

Content Maker (Julen Giacomoni)

8 rue Larralde Diusteguy, Urrugne 64122, France

Email: julen.giacomoni@gmail.com

3. Information We Collect

3.1 Data You Provide Directly

When you create an account, we collect:

  • Your email address.
  • Your full name.

3.2 Data Collected via Meta Services (Instagram & Threads)

When you connect your Instagram or Threads accounts to Content Maker, we collect the following information via the official Meta API, depending on the permissions you grant:

  • Profile Information: Username, profile picture, account ID.
  • Content: Your posts, reposts, quotes, and associated comments.
  • Engagement Metrics (Insights): Views, likes, comments, shares, follower count, reach.
  • Access Tokens: Digital keys allowing our application to interact with your accounts on your behalf.
  • Requested Scopes: threads_basic, threads_content_publish, threads_manage_insights, instagram_business_basic, instagram_business_content_publish, instagram_business_manage_insights, public_profile.

4. How We Use Your Data

We use your data exclusively for the following purposes:

  • Service Provision: To allow you to organize, create, and publish content to your social networks.
  • AI-Assisted Creation: To analyze your past performance (best hooks, high-performing captions) in order to suggest improvements and optimize your content strategy.
  • Account Management: To manage your subscription and contact you for technical support.

We never sell your personal data to third parties.

5. Data Sharing and Subprocessors

To provide our service, we use trusted third-party service providers (subprocessors) who comply with GDPR standards:

  • Supabase: Database hosting.
  • Contabo: Backend infrastructure hosting (VPS).
  • Vercel: User Interface hosting (Frontend).
  • Stripe: Secure payment and subscription management.

6. Data Retention

  • Account Data (Name, Email): Retained as long as your account is active.
  • Meta Data and Tokens: These are stored as long as your account is connected to the service.
  • Post-Activity Retention Policy: If a connection error occurs or if the subscription is paused, we retain your Meta-related data for a maximum period of 90 days. This allows you to reconnect your account without losing your history. Beyond this period, this data is permanently deleted.

7. Your Rights and Data Deletion

In accordance with GDPR and Meta's requirements, you have the right to access, rectify, and delete your data.

How to request data deletion:

  • Via the App: Use the deletion form available in your account settings (or click here).
  • By Email: Send a request to julen.giacomoni@gmail.com with the subject line "Data Deletion Request".

We are committed to processing deletion requests within 30 days. Deletion of your data will result in the immediate termination of your access to features requiring such data.

8. Security

We implement technical security measures (encryption, restricted access to Contabo/Supabase servers) to protect your data against unauthorized access.

9. Contact

For any questions regarding this policy, please contact us at: julen.giacomoni@gmail.com.