Privacy Policy
Last updated: May 31, 2025
Learn how we collect, use, disclose, and safeguard your personal information when you use our services.
1. Who We Are
Amelia Vibe ("Amelia Vibe", "we", "our" or "us") is a sole-proprietorship operating under a registered business name. We help professionals maintain a consistent LinkedIn presence by generating, scheduling, and publishing posts they approve. We operate globally.
2. Scope
This Policy explains how we collect, use, disclose, and safeguard personal information when you:
- visit ameliavibe.com or any sub-domain,
- create an account or otherwise use our application ("Services"), or
- interact with us via support, email, social media, or marketing.
3. What Data We Collect
| Category | Examples | Legal Basis (GDPR) / Purpose |
|---|---|---|
| Account Data | Name, email address, password-less auth token | Contract: create & secure your account |
| LinkedIn OAuth Data | Access & refresh tokens, profile ID, posts you approve | Contract & Consent: generate, schedule, publish content you approve |
| Content & Usage Data | Topics you select, AI-generated posts, approvals/skips, credit usage, log files, device/browser info | Legitimate interests: operate, improve, secure, and bill for the Services |
| Payment Data | Stripe customer ID, plan tier, last 4 of card (we never store full card numbers) | Contract & Legal obligation: process payments, prevent fraud |
| Marketing Data (optional) | Newsletter opt-in, survey responses, referral info | Consent: send product updates or marketing you've opted into |
We do not request or store your LinkedIn password.
3.1 Google Sign-In Data
When you choose "Continue with Google," we request only the openid, email, and profile scopes. We use the resulting Google ID token to (a) create your Amelia Vibe account, and (b) let you log in-out securely. We do not access any other Google data.
4. How We Use Your Data
- Provide, maintain, and improve the Services
- Authenticate you and secure your account
- Generate, schedule, and publish posts you approve
- Track usage to enforce plan limits and bill correctly
- Communicate product updates, security alerts, or marketing (if opted in)
- Detect and prevent abuse or violations of our Terms
- Comply with legal obligations (tax, accounting, fraud prevention)
5. How & Why We Share Data
We never sell your information. We share data only with the third parties listed below and only as needed to operate the Service.
The use of information received from Google APIs will adhere to the Google API Services User Data Policy, including its Limited Use requirements.
| Recipient | Reason | Safeguards |
|---|---|---|
| LinkedIn Corp. | Publish posts you approve | OAuth 2.0; minimal scopes requested |
| Stripe Inc. | Payment processing & invoicing | PCI-DSS compliant; tokenised payments |
| Supabase Ltd. | Managed Postgres DB, auth, storage | Data encrypted in transit & at rest |
| Service providers | Operate or improve the Services | Bound by confidentiality & DPAs |
| Authorities (when required) | Legal compliance or to protect rights & safety | Only where strictly necessary |
We do not sell your personal information.
6. International Transfers
We host data in the United States and Canada. When information is transferred outside your jurisdiction, we rely on:
- Standard Contractual Clauses (SCCs) approved by the European Commission, or
- Comparable contractual or organisational safeguards.
7. Security
- HTTPS/TLS encryption in transit
- AES-256 encryption at rest
- Role-based access controls & least-privilege principles
- Routine security monitoring, logging, and backups
No internet transmission is 100% secure; if a data breach affects you, we will notify you as required by law.
8. Data Retention
- Account & LinkedIn tokens — retained while you have an active account or until you revoke LinkedIn permissions.
- Generated content & usage logs — retained for 24 months unless you request earlier deletion.
- Billing records — retained for at least 7 years to meet tax and accounting obligations.
You may delete your account at any time from the app or by emailing amelia@ameliavibe.com.
9. Your Rights
| Region | Rights |
|---|---|
| EU/UK (GDPR) | Access, rectification, erasure, restriction, portability, objection, automated-decision review |
| California (CCPA/CPRA) | Know, delete, correct, opt-out of "sale"/"sharing", non-discrimination |
| Canada (PIPEDA) | Access, correction, withdraw consent |
| Other jurisdictions | We extend comparable rights wherever feasible |
To exercise any right, email amelia@ameliavibe.com. We respond within 30 days (or as required by law).
- Disconnect Google: you can revoke Amelia Vibe's access at any time in Google Account → Security → Third-party apps with account access or by e-mailing amelia@ameliavibe.com.
10. Cookies & Tracking
We use first-party and limited third-party cookies for authentication, analytics, and remembering preferences. Most browsers let you refuse or delete cookies; doing so may affect functionality.
11. Children
Amelia Vibe is not directed at children under 16, and we do not knowingly collect their personal information.
12. Changes to This Policy
If we make material changes, we will notify you by email or in-app banner and update the "Last updated" date. Continued use of the Services constitutes acceptance of the revised policy.
13. Contact Us
Have questions about this policy? Contact us at amelia@ameliavibe.com
Amelia Vibe Inc.
777 Brickell Ave, Suite 500 PMB 1083
Miami, FL 33131, United States