← Back to home

Privacy Policy

Last updated: April 2026

1. Introduction

Fuxux ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our social media scheduling platform at fuxux.com.

For data protection purposes, Fuxux acts as the data controller for account, billing, and product usage data described in this policy.

2. Information We Collect

We collect the following types of information:

  • Account information: Name and email address when you register.
  • Social account tokens: OAuth access tokens for the social platforms you connect. These are encrypted and stored securely.
  • Content: Posts, captions, and media files you create and schedule through our platform.
  • Usage data: Feature usage, page views, and interaction data to improve our service.
  • Payment information: Billing details are processed by Stripe and never stored on our servers.
  • Device and cookie data: Technical data such as IP address, browser type, and cookie identifiers for security, analytics, and preferences.

3. How We Use Your Information

  • To provide and operate the Fuxux service.
  • To publish content to your connected social accounts on your behalf.
  • To generate AI captions using your provided prompts (sent to OpenAI).
  • To send transactional emails (account confirmation, password reset).
  • To improve the platform and fix bugs.

4. Legal Bases (GDPR)

Where GDPR applies, we process personal data under one or more of these legal bases:

  • Contract: to provide the Service you request.
  • Legitimate interests: to secure, improve, and maintain our Service.
  • Legal obligations: for compliance with tax, accounting, or legal requests.
  • Consent: where required (for example, non-essential cookies in certain jurisdictions).

5. Third-Party Processors and Subprocessors

We use service providers (processors/subprocessors) to operate Fuxux, including:

  • Supabase — authentication, database, and storage.
  • Vercel — application hosting and infrastructure.
  • Stripe — subscription billing and payments.
  • OpenAI — AI text generation for user-requested features.
  • Resend — transactional email delivery.
  • Sentry — error monitoring and diagnostics.
  • CookieYes — consent management for cookie preferences and cookie banner controls.
  • Social platforms (for example X, LinkedIn, Meta, Google/YouTube, Pinterest, Bluesky) — publishing and account connection features.

We require these providers to process personal data under contractual safeguards and only for permitted purposes.

6. International Data Transfers

Because some providers are located outside the European Economic Area, your data may be transferred internationally (including to the United States). Where required, we rely on appropriate safeguards such as Standard Contractual Clauses and equivalent transfer mechanisms.

7. Cookies and Tracking Technologies

We use essential cookies for login, security, and core functionality. We may also use analytics or similar technologies to understand product usage and improve performance.

For users in the EEA/UK, non-essential cookies should only be set after consent, and you can withdraw consent at any time through our cookie controls when available.

You can reopen cookie preferences at any time from the "Cookie settings" link in our site footer.

8. Data Retention

We retain your data for as long as your account is active. You may delete your account at any time from the Settings page, which will permanently remove all your data from our systems. We may retain limited records where required by law (for example, tax and accounting obligations) or for legitimate security and fraud-prevention purposes.

9. Security

We use industry-standard security practices including encrypted connections (HTTPS), Row-Level Security on our database, and encrypted storage of OAuth tokens. However, no method of transmission over the internet is 100% secure.

10. Your Rights and Request Process

Depending on your location, you may have rights to access, correct, delete, restrict, port, or object to certain processing of your personal data. You can disconnect social accounts in the app and request account deletion from Settings.

To submit a rights request, email privacy@fuxux.com. We may ask for reasonable identity verification before fulfilling your request, and we generally respond within 30 days where legally required.

11. Children's Privacy

The Service is not intended for children under 13, and we do not knowingly collect personal data from children under 13.

12. US State Privacy Notices

If you are a resident of certain US states (such as California), you may have additional privacy rights. We do not sell personal information as that term is commonly defined in US state privacy laws.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through the app. Continued use of the service after changes constitutes acceptance of the updated policy.

14. Contact

If you have questions about this Privacy Policy, please contact us at privacy@fuxux.com.

Terms of ServiceBack to home