Our Approach to Your Data

We take your privacy seriously. This article explains what data we collect, why we collect it, where it's stored, and what rights you have over it. If you have questions not answered here, please contact us at support@connectsafely.ai.

What Data We Collect

We only collect data necessary to provide our service:

Account Information

• Your name and email address
• Profile bio, industry, and goals (optional)
• Account creation date and onboarding progress

LinkedIn Account Data

• LinkedIn profile URLs and display names for accounts you connect
• Encrypted session cookies (required for automation)
• Connection status, error states, and usage metrics

Feature Data

• Keywords, banned words, and targeting settings you configure
• AI personas, message templates, and scheduled posts you create
• Activity logs for comments posted and posts boosted

Billing Data

• Subscription plan and payment history
• Stripe customer ID (payment details are stored securely by Stripe, not us)

Where Your Data Is Stored

We use industry-standard infrastructure providers to store your data securely:

• MongoDB Atlas — Your application data (accounts, campaigns, templates)
• AWS S3 — LinkedIn browser profile storage for automation
• Stripe — Payment information (PCI-DSS compliant)

Data is encrypted at rest and in transit using TLS 1.2+ and AES-256 encryption.

Who Can Access Your Data

Access to your data is strictly limited to:

• You — via your dashboard and data export
• Other workspace members — only data explicitly shared via workspace collaboration
• Our engineering team — only when investigating a bug or support ticket you've submitted, and only with your consent

We do not sell, rent, or share your data with third parties for marketing purposes.

How Long We Keep Your Data

• Active accounts — Data is retained while your account is active
• Deleted accounts — Soft-deleted for 30 days (grace period for restoration), then permanently deleted
• Churn feedback — Anonymized feedback from deleted accounts is retained for analytics (cannot be linked back to you)

Your Rights

You have the following rights regarding your data:

Right to Access

You can view all your data in your ConnectSafely dashboard at any time.

Right to Portability (GDPR Article 20)

You can download a complete copy of your data as a ZIP archive containing HTML and JSON formats.

Right to Erasure (GDPR Article 17 / "Right to be Forgotten")

You can permanently delete your account and all associated data at any time from your settings.

Right to Correction

You can update your profile information at any time from Settings. For corrections to data we can't edit directly, contact support.

Right to Object

You can opt out of marketing emails from your settings. Transactional emails (account notifications, billing) cannot be disabled while your account is active.

Third Parties We Use

We rely on these services to operate ConnectSafely. Each one has been selected for strong security practices:

• Stripe — Payment processing (privacy policy)
• MongoDB Atlas — Database hosting
• AWS — Cloud infrastructure and storage
• Vercel — Application hosting
• Sentry — Error monitoring (only technical errors, no personal data)

Security Practices

• All data encrypted in transit (TLS 1.2+) and at rest (AES-256)
• Passwords never stored — we use secure OAuth and magic link authentication
• LinkedIn credentials encrypted with strong symmetric encryption
• Role-based access control for workspace collaboration
• Regular security audits and dependency updates

Frequently Asked Questions

Q: Do you sell my data?

No. We never sell, rent, or share your data with third parties for marketing or advertising purposes.

Q: Are you GDPR compliant?

We follow GDPR principles and provide the rights required by the regulation (access, portability, erasure, correction). While we are not formally certified, we have implemented the practices that GDPR requires.

Q: Where is ConnectSafely based?

ConnectSafely is operated from India, serving users globally. Our infrastructure uses global cloud providers (AWS, MongoDB Atlas, Vercel, Stripe) with data centers in multiple regions.

Q: What happens to my data if ConnectSafely shuts down?

In the unlikely event of a shutdown, we would provide at least 30 days' notice and allow users to export their data before any deletion.

Q: Who do I contact about privacy concerns?

Email support@connectsafely.ai with any privacy questions or requests. We aim to respond within 48 hours.