Privacy Policy

Social Magnum ("the App") is operated by METAFLUX MEDIA LLC, a Wyoming limited liability company.

• Legal name: Muhammad Wasif Afzal Khan
• Address: 30 N Gould St, Ste 23881, Sheridan, WY 82801, United States
• Contact: wasif@metafluxmedia.com

When you connect your Facebook account through our app, we collect and store:

• Facebook Page information: Page name, page ID, category, follower count, profile picture URL
• Page access tokens: Encrypted at rest using AES-256-GCM. Used to publish content and read analytics on your behalf.
• Page insights and analytics: Impressions, engagement, video views, and monetization earnings data from the Facebook Graph API
• Content you create through the App: Captions, media files (temporarily stored for publishing), scheduled post metadata
• Account information: Your email address, name, and role within the team

We do not collect:

• Your personal Facebook profile data beyond name and profile picture
• Your Facebook friends list
• Your personal messages or Messenger conversations
• Data from pages you have not explicitly connected

• Publishing: To create, schedule, and publish posts, reels, and stories to your connected Facebook Pages
• Analytics: To display page health metrics, engagement insights, and monetization earnings within the App
• Team management: To assign page access to team members and track activity
• Token management: To detect token expiry or revocation and notify you to reconnect

We do not sell, rent, or share your data with third parties for advertising or marketing purposes.

• Database: Hosted on Supabase (PostgreSQL) with row-level security policies enforced
• Token encryption: All Facebook page access tokens are encrypted at rest using AES-256-GCM with a key stored separately from the database
• Media files: Temporarily stored on Cloudflare R2 during the publishing process and automatically deleted after successful posting
• Security headers: HSTS, X-Frame-Options, X-Content-Type-Options, and strict referrer policies are enforced on all responses
• Access control: Role-based access (CEO, Admin, Employee) restricts who can view which pages and data

• Page tokens: Stored as long as the page remains connected. Cleared on disconnect.
• Scheduled posts: Retained indefinitely for historical reference. You can delete individual posts from the calendar view.
• Analytics cache: Refreshed every 30 minutes. Old cache entries are overwritten, not accumulated.
• Media files: Deleted from cloud storage within minutes of successful posting. Failed uploads are cleaned up within 24 hours.
• Account data: Retained until you request deletion or your account is removed by an administrator.

You have the right to:

• Access the data we hold about you — contact us at wasif@metafluxmedia.com
• Delete your data — see our Data Deletion page for instructions
• Disconnect your Facebook Pages at any time through the Connected Pages screen, which stops all data collection for those pages
• Revoke our app's access entirely through Facebook Settings → Business Integrations
• Export your data upon request

Our use of information received from Facebook APIs adheres to the Meta Platform Terms and Developer Policies.

Specifically:

• We only request permissions that are necessary for the App's stated functionality
• We do not transfer or sell Facebook data to data brokers, information resellers, or any third party
• We do not use Facebook data for surveillance or to discriminate against any individual or group
• We provide a mechanism for users to request deletion of their Facebook data (see Section 6)

The App uses essential session cookies provided by Supabase Auth to maintain your login session. We do not use third-party tracking cookies, analytics scripts, or advertising pixels.

The App is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Continued use of the App after changes constitutes acceptance of the revised policy.

For privacy-related questions or data requests:

• Email: wasif@metafluxmedia.com
• Mail: METAFLUX MEDIA LLC, 30 N Gould St, Ste 23881, Sheridan, WY 82801, United States