SelfSM
Back to SelfSM Last updated: May 4, 2026

Privacy Policy

SelfSM ("we", "our", "us") is committed to protecting your personal information. This policy explains what data we collect, why we collect it, and how we use it.

1. Information We Collect

We collect information you provide directly when you register, configure a brand workspace, or contact us:

  • Account data - email address, name, and password (stored as a secure hash).
  • Brand and content data - brand profiles, voice settings, knowledge assets, and drafted or published posts you create inside the product.
  • Connected channel tokens - access tokens for social media platforms you connect. Tokens are encrypted at rest and used only to publish content on your behalf.
  • Usage data - pages visited, features used, and error logs. Collected anonymously to improve the product.

2. How We Use Your Information

  • To operate the product and fulfil the service you signed up for.
  • To generate AI-assisted content drafts using your brand context.
  • To publish posts to connected social media channels at your direction.
  • To send transactional emails (account confirmation, password reset).
  • To detect and prevent fraud, abuse, or security incidents.
  • To improve the product based on aggregated, anonymised usage patterns.

We do not sell your personal data to third parties. We do not use your content to train AI models without explicit consent.

3. Data Storage and Security

Your data is stored on servers located in the European Union. We use industry-standard encryption in transit (TLS 1.2+) and at rest (AES-256). Access to production data is restricted to authorised personnel and is logged.

Social media tokens are encrypted using a server-side secret that is separate from your account credentials. If a token is no longer needed, you can revoke it from the Channels settings at any time.

4. Third-Party Services

We use a limited number of third-party processors to operate the service:

  • AI inference providers - content drafts are generated via API calls to AI providers. Your brand context and topic data are sent as part of the prompt. No data is retained by the provider beyond the duration of the request.
  • Email delivery - transactional emails are sent via a third-party email service. Only your email address is shared for this purpose.
  • Infrastructure - servers, databases, and object storage are hosted on cloud infrastructure providers operating under data processing agreements.

5. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Request deletion of your account and associated data.
  • Export your data in a portable format.
  • Object to or restrict certain processing activities.

To exercise any of these rights, contact us at privacy@selfsm.com. We will respond within 30 days.

6. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we remove your personal data within 30 days, except where we are required to retain it for legal or compliance reasons.

Published post records may be retained in anonymised form for product improvement purposes after account deletion.

7. Cookies

SelfSM uses only essential cookies required to operate the authentication session. We do not use tracking or advertising cookies. No cookie consent banner is required as no non-essential cookies are set.

8. Changes to This Policy

We may update this policy as the product evolves. If we make material changes, we will notify you by email or with a prominent notice inside the product at least 14 days before the changes take effect.

9. Contact

Questions about this policy or your data can be sent to privacy@selfsm.com.