Privacy Policy

1. Introduction

Easycause AI provides a software platform that allows organizations to collaborate on advocacy campaigns and measure the performance of their social media content. We take privacy, data protection, and GDPR compliance seriously.

This Privacy Policy describes how we collect, use, store, and protect personal and organizational data when users ("you") access our website or connect their social media accounts to the Easycause AI platform.

By using Easycause AI, you agree to the practices described in this Privacy Policy.

2. What Data We Collect

We only collect the minimum data required to provide our services.

2.1. Data you provide directly

• Organization name
• Your name and email address (for login, onboarding, and support)
• Campaign details (hashtags, timeframe, content guidance)

2.2. Data from connected social media platforms

When you authorize Easycause AI through OAuth, we may access:

Facebook / Instagram (Meta):

• Page or Instagram Business Account ID
• Public posts made by your Pages
• Post metrics such as impressions, reach, engagement
• Audience demographics (when provided by Meta)

LinkedIn:

• Organization Page ID
• Posts published on behalf of the organization
• Analytics and aggregated performance metrics

We DO NOT collect:

• Personal profile data
• Private messages or inbox content
• Login passwords
• Email addresses of your followers
• Individual-level user data that identifies natural persons

We only access organization-owned content and aggregated analytics, as allowed by each platform's terms.

3. How We Use Your Data

We use your data for the following purposes:

• To authenticate you and your organization
• To retrieve and display social media analytics for authorized Pages/accounts
• To generate campaign dashboards and reports
• To notify administrators when partners join a campaign
• To maintain the security and integrity of the platform
• To comply with legal and regulatory requirements

We do not use your data for advertising, profiling individuals, or selling data to third parties.

4. Legal Basis Under GDPR

We process data under the following legal bases:

• Legitimate Interest: providing analytics for advocacy campaigns
• Consent: when you authorize accounts via OAuth
• Contractual Necessity: providing the service you sign up for

You may withdraw consent at any time by disconnecting your social accounts.

5. Data Storage & Retention

• Access tokens are encrypted and stored securely.
• Analytics data is retained only as long as necessary to provide campaign reporting.
• You may request deletion of your organization's data at any time (see Section 10).

6. Data Sharing

We do not share your data with third parties except:

• Service providers who support hosting, analytics, or technical operations
• Platform APIs (Meta, LinkedIn, TikTok, X) only when you authorize them
• Legal authorities if required by law

We never sell, rent, or trade your data.

7. Security

We use industry-standard measures to protect your information, including:

• Encryption of data in transit and at rest
• Role-based access control
• Secure OAuth flows
• Regular security reviews

However, no system is 100% secure; please use strong passwords and protect your accounts.

8. International Data Transfers

Your data may be processed in countries outside the EU. We ensure appropriate safeguards under GDPR, including Standard Contractual Clauses where required.

9. Your Rights

Under GDPR, you have the right to:

• Access your data
• Correct inaccurate data
• Request deletion
• Object to processing
• Withdraw consent
• Request data portability

To exercise your rights, contact: hello@easycause.ai

10. Data Deletion

If you wish to delete your account or data, email: hello@easycause.ai

We will process deletion requests within 30 days.