Privacy policy

Who we are

GoGoHype ("we", "us", "our") operates the social media scheduling platform at gogohype.com. We are the data controller for the personal data described in this policy. For any privacy question or request, contact us at [email protected].

Information we collect

Account information you give us when you sign up or invite teammates: name, email, agency name, password (stored only as a bcrypt hash, never in plaintext).

Workspace content you create or upload to GoGoHype: posts, captions, media files, notes, approvals, comments, calendars, brand guidelines.

Billing information needed to operate paid plans: workspace count, plan, subscription state. Card data is handled by Stripe directly. We never see or store full card numbers.

Connected social-account data. See the next section.

Technical data needed to run the service: IP address, browser/user agent, timestamps, request IDs, error traces.

Connected social accounts (how third-party platforms work in GoGoHype)

When you connect a social profile (Pinterest, Instagram, Facebook, TikTok, YouTube, LinkedIn, X or Threads) we run the platform’s standard OAuth flow. We store only what the integration needs to publish and read the metrics you explicitly enable.

Access tokens and refresh tokens are encrypted at rest with AES-256-GCM using a key held outside the database. The token itself is never written to logs, never shown back in the UI, and never shared with third parties beyond the platform that issued it.

You can disconnect any connected profile at any time from Settings → Integrations. Disconnecting immediately deletes the stored token on our side and revokes the access where the platform supports programmatic revocation.

You can also revoke our access directly from inside the platform’s own settings (for example, on pinterest.com under Account → Apps and websites). That revocation propagates to us on the next API call.

Pinterest data we access

When you connect a Pinterest account we request the following scopes: user_accounts:read, boards:read, boards:write, pins:read, pins:write. We use them only to: list your boards so you can pick a destination for each scheduled post; create the pins you schedule in GoGoHype; read back the basic metrics of pins we created on your behalf.

We do not read or store the followers, follows, secret-board contents or private messages of any Pinterest account. We do not use Pinterest data to train any AI model. We do not sell Pinterest data and we do not share it with other GoGoHype customers or third parties.

Pinterest data we keep: the encrypted OAuth tokens, your account ID and username (to display the connected account), and the metadata of the pins and boards used by your scheduled posts. All of this is removed when you disconnect the account or delete the workspace.

Meta, TikTok, YouTube, LinkedIn, X and Threads

For every other connected social platform we follow the same model as Pinterest: minimal scopes, encrypted tokens, no resale, immediate revocation on disconnect, and storage limited to what the integration requires to publish and report on your scheduled content.

How we use your information

To operate the product: scheduling and publishing posts, generating AI caption suggestions, routing approvals, producing analytics, sending notifications, supporting your team.

To run our business: billing, support, fraud and abuse prevention, security monitoring, audit logging of changes to tenant-owned data.

To improve the product on aggregate, non-personal usage data only. We never train AI models on your social-account data or on private workspace content.

We do not sell your personal data. We do not use it for cross-context behavioural advertising.

Legal bases (GDPR / UK GDPR)

Performance of the contract you entered into with us (running the service you signed up for).

Our legitimate interests in keeping the service reliable, secure and improving (subject to your rights).

Your consent where required (for example, optional analytics cookies).

Compliance with legal obligations (tax records, lawful disclosure orders).

How we store and protect your data

Encryption in transit: all traffic uses TLS 1.2+.

Encryption at rest: social OAuth tokens use AES-256-GCM with a key kept in environment configuration and not in the database. Refresh tokens for your GoGoHype account are stored as SHA-256 hashes only. The raw value cannot be recovered. Passwords use bcrypt at a high cost factor.

Tenant isolation: every workspace lives behind PostgreSQL Row Level Security policies and tenant-scoped queries. A request authenticated for tenant A cannot read tenant B’s data.

Access control: production access is least-privilege and audited. Application logs strip secrets. We keep an audit log of changes to tenant-owned data.

If we ever lose the encryption key, social-account tokens become unreadable and integrations have to be reconnected. Account passwords and refresh tokens are not affected.

Sub-processors (categories)

Cloud hosting and managed PostgreSQL / Redis: Hetzner Cloud (Germany / Finland).

Payments: Stripe Inc.. Handles card data directly. We only receive a customer ID and subscription metadata.

Transactional email: Resend.

Error tracking and observability: Sentry (when enabled).

AI text generation (Hype AI): Anthropic. We only send the brief and platform context you choose to include; we do not send your connected social-account credentials.

Every sub-processor is bound by a Data Processing Agreement and contractually limited to processing data only on our instructions.

Cookies

Strictly necessary: session and CSRF cookies for authentication (HttpOnly, Secure, SameSite). Without them you cannot stay signed in.

Preference cookies: your chosen language and light / dark theme.

We do not use third-party advertising or cross-site tracking cookies. We do not embed advertising pixels on the application.

Data retention

Active accounts: while your subscription is active and for the period you continue to use the service.

Deleted workspaces: a 7-day grace window for recovery, then permanently removed from primary storage. Encrypted backups roll off within 30 days.

Account deletion request: we remove your personal data within 30 days of the request, except where retention is required by law (tax records, fraud prevention).

Audit logs: 12 months.

Your rights

You have the right to access, export, correct, delete, restrict or object to processing of your personal data, and to data portability. Where processing is based on consent you can withdraw consent at any time.

Submit a request from inside the app (Settings → Account) or email [email protected]. We respond within 30 days.

California residents: you have rights under the CCPA / CPRA including the right to know, delete, correct and opt out of "sale" or "sharing" of personal information. We do not sell or share personal information as those terms are defined under the CCPA.

If you believe we have not handled your data properly, you can lodge a complaint with your local supervisory authority.

International transfers

Our primary processing happens in the European Union. When data is transferred to a sub-processor outside the EU / EEA we rely on the European Commission’s Standard Contractual Clauses or an adequacy decision, plus technical safeguards (encryption in transit and at rest, least-privilege access).

Children

GoGoHype is not intended for children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will delete it.

Changes to this policy

When we make material changes we notify you in the app and by email. The effective date at the top of this page always reflects the latest version. Continued use after the effective date constitutes acceptance of the updated policy.

Contact

Privacy questions and rights requests: [email protected]. For general questions reach us via the Contact page.