Privacy Policy
Last updated: 2026
Who we are
RootedPost is a product of Watchlight Interactive LLC, based in Madison, Wisconsin, United States. References to "we," "us," and "our" mean Watchlight Interactive LLC. References to "you" mean the business owner or authorized representative using RootedPost.
What we collect
- Account information — your name, email address, and any payment details you provide for billing (handled by Stripe; we never see card numbers).
- Brand profile — business name, description, target audience, tone, content pillars, platforms you publish to, topics to avoid. Provided during onboarding.
- Weekly intake answers — what you tell us is happening at your business each week, plus any photos you upload.
- Generated posts — the social media drafts we produce from your inputs, your approvals, edits, rejection notes, and the resulting platform post IDs and URLs.
- OAuth tokens — when you connect a social platform, we store the access and refresh tokens needed to post on your behalf. These are stored in our database, encrypted at rest, and never exposed to your browser.
- Connected-account identity — your platform user ID and handle/name (e.g. Facebook Page name, X username) so we can show you what's connected and so platforms like Meta can identify which connection a deletion request applies to.
- Account activity — timestamps for intakes, approvals, scheduled posts, and operational logs (request volumes, error rates) needed to run the service.
How we use it
- Generate weekly social media drafts using OpenAI's GPT-4o model.
- Review drafts against your brand profile (a second OpenAI call against the same model).
- Generate accompanying images using OpenAI's gpt-image-1 model.
- Publish approved posts directly to your connected social accounts via each platform's official API (Meta Graph API for Instagram/Facebook/Threads, X API v2, LinkedIn API).
- Email you when drafts are ready, when something failed to publish, and to send service reminders.
- Operate, secure, and improve the service (error monitoring, fraud prevention, capacity planning).
We do not use your data, your brand profile, or your generated posts to train any machine-learning model. OpenAI's API tier we use also does not train on customer inputs by default.
Third parties we share data with
To run the service, we share specific data with these processors:
- OpenAI (United States) — your brand profile and weekly intake answers are sent as part of the prompts that generate posts and images. OpenAI's API tier we use does not retain prompts for training.
- Meta Platforms (United States) — when you connect your Instagram or Facebook account, we send the user-approved post content (text, hashtags, image URLs) to the Meta Graph API to publish on your behalf.
- X Corp. (United States) — when you connect your X account, we send approved tweet content + images to the X API v2 to publish on your behalf.
- LinkedIn Corp. (United States) — when you connect your LinkedIn account, we send approved post content + images to the LinkedIn UGC Posts API.
- Threads (Meta) — same flow as Instagram/Facebook, via the Threads Graph API.
- Stripe (United States) — payment processing. We never see your card number; Stripe handles all PCI-scope data.
- SendGrid (Twilio) (United States) — email delivery. Your email address and notification content are sent to deliver emails.
- Google Cloud / Firebase (United States) — our infrastructure provider. Application data is stored in Firestore in the United States; images in Cloud Storage; secrets in Google Secret Manager.
We do not sell your data. We do not share it with advertisers. We do not share it with any party outside the processors listed above. We do not make your data available to government entities except where required by valid legal process.
Cookies and trackers
We use a minimal set of first-party cookies and localStorage entries to keep you signed in (Firebase Auth session) and remember preferences (e.g. selected billing cycle, referral attribution). We do not use third-party advertising trackers or session-replay tools.
Connected-account disconnection
You can disconnect any social platform at any time from your dashboard at rootedpost.com/c/. Disconnecting deletes the OAuth tokens and connected-account identity for that platform from our database.
Meta users can also remove RootedPost from Facebook → Settings → Apps and Websites. When you do, Meta notifies us via a deauthorization webhook and we delete the corresponding tokens within minutes — no action needed from you on our side.
Account and data deletion
You can request deletion of your entire account and all associated data by:
- Emailing support@watchlightinteractive.com from your account email, or
- Using Meta's data-deletion flow at Facebook → Settings → Apps and Websites → RootedPost → Data Removal. Meta forwards us your request; we delete your client record, every intake you submitted, every post we generated, and every connection token.
Deletion is permanent and irreversible. You can also export a copy of all your data first by emailing the same address — we respond within 7 business days.
How long we keep data
- Active accounts: We keep your brand profile, intakes, and posts for as long as your account is active.
- Canceled accounts: We retain your data for 60 days in case you reactivate, then delete it unless you ask for immediate deletion.
- Operational logs: Error logs and request metadata are retained for up to 12 months for security and debugging, then deleted.
- Billing records: Retained for 7 years per US tax-record requirements.
Your rights
Regardless of where you live, you can ask us to:
- Tell you what personal data we hold about you.
- Export your data in a portable format (JSON).
- Correct anything inaccurate.
- Delete your account and all associated content.
- Restrict how we use your data while a request is being processed.
- Withdraw consent (note: this typically means we can't continue providing the service).
California residents (CCPA): You have the right to know what personal information we collect, to delete it, and to opt out of any sale (we don't sell data — but the right still applies). Email us to exercise these rights; we do not discriminate against users who do.
European residents (GDPR): We process data on the legal basis of contract performance (delivering the service you signed up for) and legitimate interests (security, service operation). You may lodge a complaint with your local supervisory authority.
Security
All data is encrypted in transit (HTTPS / TLS 1.2+) and at rest (Google Cloud default encryption). OAuth access tokens for connected platforms are stored in Firestore with Firebase's standard server-side encryption; application-level secrets (API keys, app secrets) are stored in Google Secret Manager. We follow the principle of least privilege across all internal access. We are a small team; we will notify affected users within 72 hours of confirming any breach involving their personal data.
Children
RootedPost is a B2B service for businesses. The service is not directed to children under 13 and we do not knowingly collect personal data from anyone under 13. If you believe we have, contact us and we will delete it.
International transfers
Our infrastructure is hosted in the United States. If you access the service from outside the US, you understand and consent that your data will be transferred to and processed in the United States.
Changes to this policy
We may update this Privacy Policy from time to time. If the changes are material, we will email you at least 14 days before they take effect. The "last updated" date at the top of this page always reflects the most recent revision.
Contact
Questions, requests, or concerns? support@watchlightinteractive.com
Watchlight Interactive LLC
Madison, Wisconsin, United States