Privacy Policy

Overview

PulseFlow is an AI-powered SaaS platform that transforms YouTube videos into social media content. This policy explains what we collect, how we use it, and how we keep it secure.

Cookies and authentication

We use essential cookies and local storage to keep you signed in and to protect your account. These session cookies are required for authentication and are managed through Supabase Auth. We do not use third-party advertising cookies.

Information we collect

• Account email and authentication data via Supabase
• YouTube URLs, generated content, credits, and optional settings (brand voice, Telegram channel)
• Payment metadata processed by Stripe (we never store full card numbers)

Data security

User data is stored in Supabase with row-level security policies. Access to your profile, credits, and generation history is restricted to your authenticated session. API keys for AI and messaging services are kept server-side and are never exposed to the browser.

Third-party services

We use Supabase (auth and database), Stripe (payments), OpenRouter (AI generation), and Telegram (optional publishing). Each provider processes data under their own policies and our data agreements.

Contact

Questions or data requests: privacy@pulseflow.app