Privacy Policy

Posting Machine helps founders turn Slack threads into LinkedIn posts. To do that we store what you connect (Slack workspace, LinkedIn account), what you capture (approved threads), and what we generate (drafts, research results). We do not sell your data. We do not train models on your private content.

• Account basics: your name, email, and sign-in identity from GitHub or Google.
• Slack connection: workspace name, your member ID, the OAuth tokens we use to read the threads you capture with your chosen emoji. We never read messages outside a thread you explicitly captured.
• LinkedIn connection: your profile URL, display name, avatar, and the OAuth tokens we use to publish on your behalf when you approve a draft.
• Captured content: threads you marked with the capture emoji, the drafts we generated from them, and the publish history after you approved them.
• Research artifacts: the company context, voice style guide, and source citations the research pipeline produced from your LinkedIn profile and company domain.
• Product usage: feature events (which buttons you clicked, which drafts you approved) via PostHog. Scoped to your account.

• Generate drafts that sound like you and reference your company.
• Publish to LinkedIn when you approve a draft.
• Diagnose bugs and improve the product.

We do not sell, rent, or share your data with third parties for advertising. We do not use your captured threads or generated drafts to train public AI models.

• Convex — application database.
• OpenRouter — LLM inference provider for draft generation and research. Prompts sent to OpenRouter are governed by its provider policies.
• BrightData — LinkedIn profile and company data scraping. Only your public profile URL is sent.
• Stripe — billing (when we reintroduce subscription plans).
• PostHog — product analytics.

• Disconnect Slack or LinkedIn at any time from the Settings page — the OAuth tokens and related data are deleted.
• Email us to delete your account entirely. We remove every row keyed to your user ID within 30 days.
• Request a copy of your data by emailing us.

Active accounts keep their data indefinitely. Disconnected integrations have their tokens wiped immediately. Account deletion purges all user-scoped data within 30 days.

Questions, deletion requests, or data-access requests: founders@postingmachine.ai.

We'll note any material change to this policy at the top of the page with a new “last updated” date.