Privacy Policy

This Privacy Policy describes how the Youtube MultiPost service ("we", "us", or "our"), operated by an individual provider, collects, uses, and shares information about you when you use our website, applications, and services (collectively, the "Services").

By accessing or using the Services, you agree to the collection, use, and sharing of your information as described in this Privacy Policy. If you do not agree, please do not use the Services.

We collect information you provide directly to us and information we collect automatically when you use the Services.

Information You Provide:

• Account Information: When you register directly with our service (if applicable), we collect your name and email address. If password-based login is offered, your password is collected but stored only in a securely hashed format, never directly. We may also collect your phone number if you provide it.
• Subscription & Payment Information: Our Free plan does not require any payment information. When you subscribe to a paid plan, we collect information necessary to process your payment (such as billing details) through our third-party payment processor (e.g., Midtrans). We do not directly store your full credit card details.
• YouTube Account Information: When you connect your YouTube accounts via Google OAuth, we receive information associated with those accounts, such as channel IDs, channel names, profile pictures, and access tokens (stored securely encrypted) necessary to perform actions on your behalf (like uploading videos). This process does not give us access to your Google account password.
• Video Metadata: Information you provide for video uploads, such as titles, descriptions, tags, thumbnails, and scheduling details, stored in templates or during the upload process.
• Support Communications: Information you provide when you contact us for support via email, AI Chat, or Live Chat, including the content of your messages and any attachments (like images in Live Chat).

Information We Collect Automatically:

• Usage Information: Details about how you interact with the Services, such as features used, actions taken, time spent, and error logs.
• Device and Connection Information: Your IP address, browser type, operating system, device identifiers, and general location information derived from your IP address.
• Cookies and Similar Technologies: We use cookies (small text files stored on your device) and similar technologies to operate and improve the Services, authenticate users, remember preferences, and analyze usage. See the "Cookies" section for more details.

Our use of information received from YouTube API Services adheres strictly to the Google API Services User Data Policy, including the Limited Use requirements.

• Purpose: We access and use your YouTube data (channel info, video upload capabilities, analytics data if applicable) solely to provide the core functionality of the Service – enabling you to manage and upload videos to your connected channels according to your instructions.
• No Unauthorized Sharing: Information obtained via the YouTube API is not shared with third parties except as necessary to provide or improve the Service features you use, comply with applicable laws, or as part of a merger, acquisition, or sale of assets.
• User Control: You grant us access via Google's standard OAuth consent screen. You can review and revoke this access at any time through your Google Account security settings.
• Compliance: By using the Service, you also agree to YouTube's Terms of Service and Google's Privacy Policy.

• AI Assistant (Gemini): Interactions with the AI Assistant are processed by Google's Gemini models. We may log prompts and responses (excluding sensitive personal data where possible) to monitor usage and improve the assistant's helpfulness within our Service. Your use is also subject to Google's applicable terms and privacy policies regarding Gemini.
• Live Chat: Conversations between you and our administrators via Live Chat, including text messages and shared images, are stored securely to maintain a record of support interactions and for quality assurance purposes. Access is restricted to authorized personnel.

We use cookies and similar technologies (like local storage) for purposes such as:

• Authentication: Keeping you logged in.
• Preferences: Remembering your settings and preferences.
• Security: Helping detect malicious activity and violations of our terms.
• Analytics: Understanding how you use the Services so we can improve them.

You can usually configure your browser to refuse cookies or alert you when cookies are being sent. However, disabling essential cookies may prevent certain parts of the Service from functioning correctly.

We use the collected information for various purposes:

• To operate, maintain, and provide the features of the Service (e.g., processing uploads, managing accounts, enforcing plan limits).
• To process your subscription payments and manage your subscription status.
• To authenticate you and prevent unauthorized access.
• To respond to your support requests and communicate with you via email, AI Chat, or Live Chat.
• To send important administrative or service-related messages (e.g., updates, security alerts, billing notifications).
• To monitor and analyze usage trends and improve the Services' performance, usability, and features.
• To detect and prevent fraud, abuse, and security incidents.
• To comply with legal obligations.

We do not sell your personal information. We may share your information only in the following limited circumstances:

• Service Providers: With third-party vendors and service providers who need access to your information to perform services on our behalf (e.g., payment processing with Midtrans, hosting services, email delivery, API providers like Google for OAuth/YouTube/Gemini).
• Legal Requirements: If required by law, regulation, legal process, or governmental request (e.g., responding to a subpoena or court order).
• Protection of Rights: To protect the rights, property, or safety of the Youtube MultiPost service, our users, or the public, as required or permitted by law.
• Business Transfers: If the service or substantially all of its assets are acquired by a third party, user information may be one of the transferred assets. We will notify you before your information is transferred and becomes subject to a different privacy policy.
• With Your Consent: We may share information with third parties when we have your explicit consent to do so.

We implement technical and organizational measures to protect your information against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. This includes:

• Password Security: When using email/password authentication, passwords are never stored directly. Instead, they are securely hashed using industry-standard hashing algorithms designed for password protection. • OAuth Security: When connecting YouTube accounts, we never receive or store your Google password. The authentication process happens directly with Google. • Token Encryption: YouTube API access tokens are encrypted using AES-256-GCM encryption with proper initialization vectors and authentication tags before being stored in our database. • Transport Layer Security: All communications with our service use SSL/TLS encryption (HTTPS). • Rate Limiting: We employ rate limiting to protect against brute force login attempts and other potential security threats. • Input Validation: We validate all user inputs to help protect against common web vulnerabilities.

However, no internet transmission or electronic storage method is 100% secure, so we cannot guarantee absolute security.

We retain your personal information for as long as your account is active or as needed to provide you the Services. We may also retain information to comply with legal obligations, resolve disputes, enforce our agreements, and for legitimate business purposes (e.g., aggregated analytics data).

When you request account deletion, we will delete your personal information within a reasonable timeframe (e.g., 30-90 days), subject to any legal or operational retention needs.

Depending on your location, you may have certain rights regarding your personal information, such as the right to access, correct, update, or request deletion of your data. You can typically manage your account information through your profile settings within the Service.

• Account Information: You can review and update your profile information (name, email, phone) in your account settings.
• YouTube Connection: You can manage or revoke our access to your YouTube account(s) via your Google Account settings.
• Marketing Communications: You can opt-out of promotional emails by following the unsubscribe link in the email.
• Data Requests: To exercise other rights (access, deletion), please contact us using the information below. We will respond to your request in accordance with applicable laws.

The Services are not directed to individuals under the age of 13 (or a higher age if required by applicable law). We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal information without parental consent, we will take steps to delete such information.

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by posting the updated policy on this page, updating the "Last Updated" date, and potentially through other means (like email or an in-app notification) before the changes take effect. We encourage you to review this policy periodically.

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

Email: support@multipost.pro