Privacy Policy

Last Updated: February 17, 2026

PinLyft (“we”, “our”, or “us”) operates the PinLyft platform at https://pinlyft.space. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

1. Information We Collect

1.1 Information You Provide

• Account Information: When you sign in via Pinterest OAuth, we receive your Pinterest username, display name, and profile image.
• Website URLs: URLs you submit for scanning and pin generation.
• Pin Content: Titles, descriptions, images, and scheduling preferences you create or upload.
• Settings & Preferences: Your branding colors, scheduling preferences, and automation settings.

1.2 Information Collected Automatically

• Usage Data: Pages visited, features used, actions taken, and timestamps.
• Device Information: Browser type, operating system, and screen resolution.
• Cookies: We use essential cookies for authentication (JWT session tokens) and functionality.

1.3 Information from Third Parties

• Pinterest API: With your authorization, we access your Pinterest account data including boards, pins, and analytics through the Pinterest API. We only access the permissions you explicitly grant.

2. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain the PinLyft platform
• Authenticate your identity and manage your account
• Scan your website and generate AI-powered pin content
• Schedule and publish pins to your Pinterest account on your behalf
• Display analytics about your pin performance
• Improve and optimize our services
• Communicate with you about service updates and support
• Detect and prevent fraud or misuse

3. Pinterest API Data Usage

PinLyft integrates with the Pinterest API. We adhere to Pinterest’s Developer Data Handling Policy and Terms of Service.

• We only access Pinterest data that you explicitly authorize during the OAuth process.
• We use Pinterest data solely to provide our service — creating, scheduling, and analyzing pins.
• We do not sell your Pinterest data to third parties.
• We do not use your Pinterest data for advertising or profiling purposes unrelated to our service.
• Your Pinterest access tokens are stored securely and encrypted at rest.
• You can revoke access at any time by disconnecting PinLyft from your Pinterest account settings.

4. Data Storage & Security

Your data is stored securely using industry-standard practices:

• Database: Data is stored in a PostgreSQL database hosted on Supabase with encryption at rest.
• Authentication: Sessions are managed via httpOnly JWT cookies with secure flag in production.
• Encryption: All data in transit is encrypted using TLS/SSL (HTTPS).
• Access Control: API endpoints require authentication; users can only access their own data.

5. Data Sharing & Third-Party Services

We may share your information with:

• Pinterest: To publish pins, manage boards, and retrieve analytics on your behalf.
• AI Service Providers (Google Gemini): Website content and images may be processed by AI services to generate pin descriptions and SEO optimization. No personally identifiable information is sent.
• Hosting Providers (Vercel, Supabase): For infrastructure and data storage as necessary to operate the service.

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

6. Data Retention

• Account data is retained as long as your account is active.
• If you delete your account, we will delete your personal data within 30 days, except where retention is required by law.
• Analytics data may be retained in anonymized, aggregated form.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access: Request a copy of your personal data.
• Correction: Request that we correct inaccurate data.
• Deletion: Request deletion of your personal data.
• Data Portability: Request your data in a portable format.
• Withdraw Consent: Disconnect your Pinterest account at any time.
• Object: Object to certain data processing activities.

To exercise any of these rights, contact us at privacy@pinlyft.space.

8. Children’s Privacy

PinLyft is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected data from a child under 13, we will delete it promptly.

9. International Users

If you are accessing PinLyft from outside India, please be aware that your information may be transferred to, stored, and processed in India and other countries. By using our service, you consent to this transfer.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy on this page and updating the “Last Updated” date. Your continued use of the service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy, please contact us:

• Email: privacy@pinlyft.space
• Website: https://pinlyft.space