G
Growka

Privacy Policy

Last updated: May 2025

1. Introduction

Growka ("we", "our", or "us") operates an AI-powered marketing platform at growkalabs.com. This Privacy Policy explains how we collect, use, and protect information when you use our services.

2. Information We Collect

  • Account data: Email address, name, and authentication credentials when you register.
  • Product data: Product names, descriptions, and brand assets you upload.
  • Social media tokens: OAuth access tokens from connected channels (Facebook, Instagram, LinkedIn, X, TikTok, YouTube) — stored encrypted, never shared.
  • Content: Posts, images, and creatives generated or uploaded within the platform.
  • Usage data: Log data, IP addresses, browser type, and platform interactions for security and analytics.

3. How We Use Your Information

  • To operate and improve the Growka platform.
  • To publish content to your connected social media accounts on your behalf.
  • To send notifications and alerts via Telegram or email.
  • To analyze platform performance and provide analytics.
  • To comply with legal obligations.

4. Social Media Integrations

When you connect a social media account (Facebook, Instagram, LinkedIn, X/Twitter, TikTok, YouTube), we request permissions only for the features you use:

  • Reading your profile and pages to identify your accounts.
  • Publishing content on your behalf when you approve or enable autopilot.
  • Reading post metrics to provide analytics.

We never post without your explicit approval or a configured autopilot rule. You can revoke access at any time by disconnecting the channel in your dashboard.

5. Data Sharing

We do not sell, rent, or share your personal data with third parties except as required to operate the service (e.g., infrastructure providers like Supabase, Vercel) or as required by law. Social media tokens are never shared with other users or third parties.

6. Data Retention

We retain your data for as long as your account is active. You may request deletion of your account and associated data at any time by contacting us. Disconnecting a social media channel immediately invalidates and removes the stored access token.

7. Security

OAuth tokens and credentials are stored encrypted using AES-256. We use HTTPS for all data in transit. Access to production data is restricted to authorized personnel only.

8. Your Rights

You have the right to access, correct, or delete your personal data. To exercise these rights, contact us at the email below. For EU/EEA users, you also have the right to data portability and to lodge a complaint with your local data protection authority.

9. Cookies

We use session cookies for authentication and short-lived cookies for OAuth state management. We do not use tracking or advertising cookies.

10. Contact

For privacy-related questions or data deletion requests, contact us at: privacy@growkalabs.com

← Back to GrowkaTerms of Service →
Privacy Policy — Growka