Privacy Policy

Last updated: April 2026

This Privacy Policy explains how The Consultant ("we", "us") collects, uses, stores, and deletes information when you use the Social managed-content service at social.theconsultant.chat (the "Service").

1. Information we collect

• Account info: your name, email, business name, and billing details.
• Facebook data: when you connect your Facebook Page via Meta Login, we receive a Page Access Token, your Page ID and name, and your Facebook user ID. We request the following permissions: pages_manage_posts, pages_read_engagement, pages_show_list.
• AI provider credentials (optional): if you choose to use your own Google or OpenAI account for image generation, we store the OAuth token or API key you provide.
• Content you provide: raw text, images, and brand assets you give us so we can generate posts.
• Post analytics: reach, impressions, likes, and shares for posts we publish on your behalf, pulled from the Meta Graph API.

2. How we use your information

• To generate, schedule, and publish posts to your Facebook Page.
• To notify you by email and in-dashboard when a post is ready for approval or has been published.
• To monitor the health of your Page Access Token and request re-authorization when needed.
• To produce monthly analytics reports for your Page.
• To process subscription billing via Stripe.

We never use your Facebook data, Page access, or AI provider credentials for any purpose other than operating the Service for you. We do not sell your data.

3. How we store your information

• All access tokens (Facebook Page Access Token, Google OAuth token, OpenAI API key) are encrypted at rest using AES-256-GCM before being stored in our database.
• Data is hosted on DigitalOcean infrastructure in the EU or Asia-Pacific.
• Generated images are stored on Cloudflare R2.
• Transport is encrypted with TLS 1.2+ (Let's Encrypt certificates).

4. Third-party services

We share data with the following processors only as needed to operate the Service:

• Meta (Facebook): to publish posts and read Page analytics.
• Google / OpenAI: to generate images using your AI provider credentials.
• Cloudflare R2 & Cloudinary: to store and transform images.
• Resend: to deliver transactional emails.
• Stripe: to process subscription payments.
• Anthropic: to generate post captions (operator-side only; no customer data other than your brand tone and post subject is sent).

5. Your rights

You can at any time:

• Disconnect your Facebook Page from within the dashboard, or by removing "Social by The Consultant" from your Facebook settings under Business Integrations.
• Request deletion of all your data — see the Data Deletion page, or email privacy@theconsultant.chat.
• Export your data — email the address above and we will provide a copy of your stored data within 30 days.

6. Data retention

We retain your account data for as long as your subscription is active, and for up to 90 days after cancellation to handle billing disputes and refunds. After that, all personal data, Facebook tokens, and stored images are permanently deleted.

7. Children's privacy

The Service is not directed to individuals under 18.

8. Changes to this policy

We'll post any changes to this page and email active customers at least 14 days in advance of material changes.

9. Contact

The Consultant
Vattiyamkandi House, Manichukada Rd
Kochi, Kerala 685605, India
Email: privacy@theconsultant.chat