Effective Date: October 28, 2025
Last Updated: October 28, 2025
1. Introduction
Naviro Inc. and its affiliates (collectively "Naviro," "we," "us," or "our") are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our social media analytics and content strategy platform (the "Service").
Data Controller:
United States: Naviro Inc., 68 Richardson Street, Brooklyn, New York, 11211
United Kingdom and EEA: Naviro Ltd (UK entity)
For privacy inquiries, contact us at support@naviro.ai
2. Information We Collect
We collect information that you provide directly to us, information we obtain automatically when you use our Service, and information from third-party sources.
2.1 Information You Provide
Account Information: Name, email address, and password when you create an account
Profile Information: Organization name, team details, and preferences
Social Media Account Credentials: Usernames and authentication tokens for connected social media accounts (Instagram, TikTok, X/Twitter, LinkedIn)
Payment Information: Billing details processed through our payment processor Stripe (we do not store full credit card numbers)
Communications: Messages you send to us through support channels, chat, or email
User-Generated Content: Content drafts, strategies, and other materials you create using our Service
2.2 Social Media Data We Collect
When you connect your social media accounts, we collect and analyze:
Profile Data: Username, display name, bio, profile picture, follower/following counts, verification status
Content Data: Posts, captions, hashtags, mentions, media (images, videos), publication dates, engagement metrics (likes, comments, shares, views)
Audience Data: Publicly available information about your followers and commenters, including usernames, profile data, and engagement patterns
Analytics Data: Engagement rates, reach, impressions, audience demographics, and performance metrics
We only collect publicly available data or data you authorize us to access through official platform APIs. We do not access private messages or non-public content.
2.3 Information Collected Automatically
Usage Data: Pages viewed, features used, time spent on the Service, navigation paths
Device Information: IP address, browser type and version, operating system, device identifiers
Log Data: Access times, error logs, and system activity
Cookies and Similar Technologies: Authentication cookies and essential session management (see Section 11 for details)
3. How We Use Your Information
We use the information we collect for the following purposes:
3.1 Service Provision
Providing and maintaining the Service
Analyzing social media accounts, posts, and audience engagement
Generating AI-powered insights, content strategies, and recommendations
Creating collaboration reports and growth blueprints
Scheduling and publishing content to connected social media accounts
Providing customer support and responding to inquiries
3.2 Business Operations
Processing payments and managing subscriptions
Sending transactional emails and service notifications
Detecting and preventing fraud, abuse, and security threats
Complying with legal obligations and enforcing our Terms of Service
3.3 Service Improvement
Analyzing usage patterns to improve features and functionality
Conducting research and development for new features
Monitoring and analyzing Service performance and reliability
Understanding user preferences and optimizing user experience
3.4 Communications
Sending product updates, feature announcements, and educational content
Providing customer support through chat and email
Sending referral program communications (if you participate)
3.5 Legal Basis (GDPR)
For users in the UK and EEA, we process your personal data based on:
Contract Performance: Processing necessary to provide the Service you requested
Legitimate Interests: Improving our Service, preventing fraud, and ensuring security
Consent: Where you have provided explicit consent (e.g., marketing communications)
Legal Obligations: Compliance with applicable laws and regulations
4. AI and Machine Learning
Our Service uses artificial intelligence and machine learning to analyze your social media data and generate insights, content strategies, and recommendations.
4.1 AI Service Providers
We use the following third-party AI providers:
OpenAI (GPT models)
Anthropic (Claude models)
Google (Gemini models)
Important: These AI providers operate on a zero-retention basis for API requests. Your data is not used to train their models, and they do not retain your content after processing.
4.2 Our Use of AI
We do not use your content or data to fine-tune our own AI models. All AI processing is performed in real-time through secure API connections with zero data retention by the AI providers.
5. Information Sharing and Disclosure
We do not sell, rent, or trade your personal information. We share your information only in the following circumstances:
5.1 Service Providers
We share information with third-party service providers who perform services on our behalf:
Authentication: Clerk (user authentication and identity management)
Payment Processing: Stripe (subscription billing and payment processing)
Cloud Infrastructure: Amazon Web Services (hosting, storage, database, and computing services)
Social Media Data: Phyllo/InsightIQ (social media data collection and analytics)
Social Media Publishing: Ayrshare (content scheduling and posting)
Customer Support: Intercom (live chat and support messaging)
Email Communications: Customer.io (transactional and marketing emails)
Analytics: PostHog (product analytics and usage tracking)
Error Monitoring: Sentry (error tracking and performance monitoring)
Referral Program: First Promoter (referral tracking and management)
AI Services: OpenAI, Anthropic, Google (AI-powered content generation and analysis)
These service providers are contractually obligated to protect your information and use it only for the purposes we specify.
5.2 Legal Requirements
We may disclose your information if required by law, court order, or governmental request, or to protect our rights, property, or safety, or that of our users or the public.
5.3 Business Transfers
If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and the choices you may have.
5.4 With Your Consent
We may share your information with third parties when you explicitly consent to such sharing.
6. Data Security
We implement appropriate technical and organizational security measures to protect your personal information:
Encryption: Data is encrypted in transit using TLS/SSL and at rest using industry-standard encryption
Access Controls: Strict access controls and authentication requirements for our systems
Secure Infrastructure: Hosting on AWS with enterprise-grade security features
Regular Monitoring: Continuous monitoring for security threats and vulnerabilities
Incident Response: Established procedures for detecting and responding to security incidents
While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but will notify you promptly of any data breach as required by law.
7. Data Retention
We retain your personal information for as long as necessary to provide the Service and fulfill the purposes described in this Privacy Policy.
7.1 Active Accounts
While your account is active, we retain all data associated with your account, including social media analytics, generated reports, content drafts, and usage logs.
7.2 Account Deletion
When you delete your account, we will delete your personal information within 30 days, except where we are required to retain it for legal, regulatory, tax, audit, or security purposes. This includes:
Billing records (retained for 7 years for tax and accounting purposes)
Security logs (retained for up to 1 year for fraud prevention and security investigations)
Legal compliance records (retained as required by applicable law or regulation)
7.3 Backup Data
Deleted data may persist in backup systems for up to 90 days before being permanently removed.
8. Your Rights and Choices
You have certain rights regarding your personal information. The availability of these rights may depend on your location.
8.1 Rights for All Users
Access: Request access to the personal information we hold about you
Correction: Request correction of inaccurate or incomplete information
Deletion: Request deletion of your personal information
Data Portability: Request a copy of your data in a machine-readable format
8.2 Additional Rights for UK and EEA Users (GDPR)
If you are located in the UK or EEA, you have additional rights under GDPR:
Restriction of Processing: Request restriction of processing in certain circumstances
Object to Processing: Object to processing based on legitimate interests
Withdraw Consent: Withdraw consent at any time where processing is based on consent
Lodge a Complaint: Lodge a complaint with your local data protection authority
8.3 How to Exercise Your Rights
To exercise any of these rights, please contact us at:
Email: support@naviro.ai
Subject Line: "Data Deletion Request" or "Privacy Rights Request"
We will respond to your request within 30 days (or as required by applicable law). We may need to verify your identity before processing your request.
8.4 Account Settings
You can update your account information, manage connected social media accounts, and adjust notification preferences directly through your account settings in the Service.
9. International Data Transfers
Your information may be transferred to and processed in the United States and other countries where our service providers operate. These countries may have different data protection laws than your country of residence.
9.1 Data Storage Locations
Primary Infrastructure: AWS US East (Virginia) region
Database: Neon (PostgreSQL) hosted in US East region
9.2 Safeguards for UK and EEA Users
For users in the UK and EEA, we ensure appropriate safeguards are in place for international data transfers, including relying on adequacy decisions where available and implementing appropriate contractual protections with our service providers.
10. Children's Privacy
Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from anyone under 18 years of age.
If we become aware that we have collected personal information from someone under 18 without parental consent, we will take steps to delete that information as quickly as possible. If you believe we have collected information from someone under 18, please contact us at support@naviro.ai.
11. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to provide and improve our Service.
11.1 Types of Cookies We Use
Essential Cookies: Required for authentication, security, and basic functionality of the Service. These cannot be disabled.
Analytics Cookies: Help us understand how users interact with our Service (PostHog)
Support Cookies: Enable customer support features (Intercom)
Referral Cookies: Track referral program participation (First Promoter)
11.2 Cookie Consent
For users in the UK and EEA, we will request your consent before placing non-essential cookies on your device. You can manage your cookie preferences through our cookie consent banner or by contacting us.
11.3 Browser Controls
Most web browsers allow you to control cookies through their settings. However, disabling essential cookies may affect the functionality of our Service.
12. Third-Party Links and Services
Our Service may contain links to third-party websites and services, including social media platforms. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.
When we make material changes, we will:
Update the "Last Updated" date at the top of this policy
Notify you via email or through a prominent notice in the Service
For UK and EEA users, obtain your consent where required by law for material changes
We encourage you to review this Privacy Policy periodically. Your continued use of the Service after changes are posted constitutes your acceptance of the updated policy.
14. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:
Naviro Inc.
68 Richardson Street
Brooklyn, New York, 11211
United States
Email: support@naviro.ai
For UK and EEA users:
Naviro Ltd (UK entity)
Email: support@naviro.ai
15. Supervisory Authority
If you are located in the UK or EEA and believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with your local data protection authority:
UK: Information Commissioner's Office (ICO) - ico.org.uk
EEA: Your national data protection authority
Effective Date: October 28, 2025
Last Updated: October 28, 2025
1. Introduction
Naviro Inc. and its affiliates (collectively "Naviro," "we," "us," or "our") are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our social media analytics and content strategy platform (the "Service").
Data Controller:
United States: Naviro Inc., 68 Richardson Street, Brooklyn, New York, 11211
United Kingdom and EEA: Naviro Ltd (UK entity)
For privacy inquiries, contact us at support@naviro.ai
2. Information We Collect
We collect information that you provide directly to us, information we obtain automatically when you use our Service, and information from third-party sources.
2.1 Information You Provide
Account Information: Name, email address, and password when you create an account
Profile Information: Organization name, team details, and preferences
Social Media Account Credentials: Usernames and authentication tokens for connected social media accounts (Instagram, TikTok, X/Twitter, LinkedIn)
Payment Information: Billing details processed through our payment processor Stripe (we do not store full credit card numbers)
Communications: Messages you send to us through support channels, chat, or email
User-Generated Content: Content drafts, strategies, and other materials you create using our Service
2.2 Social Media Data We Collect
When you connect your social media accounts, we collect and analyze:
Profile Data: Username, display name, bio, profile picture, follower/following counts, verification status
Content Data: Posts, captions, hashtags, mentions, media (images, videos), publication dates, engagement metrics (likes, comments, shares, views)
Audience Data: Publicly available information about your followers and commenters, including usernames, profile data, and engagement patterns
Analytics Data: Engagement rates, reach, impressions, audience demographics, and performance metrics
We only collect publicly available data or data you authorize us to access through official platform APIs. We do not access private messages or non-public content.
2.3 Information Collected Automatically
Usage Data: Pages viewed, features used, time spent on the Service, navigation paths
Device Information: IP address, browser type and version, operating system, device identifiers
Log Data: Access times, error logs, and system activity
Cookies and Similar Technologies: Authentication cookies and essential session management (see Section 11 for details)
3. How We Use Your Information
We use the information we collect for the following purposes:
3.1 Service Provision
Providing and maintaining the Service
Analyzing social media accounts, posts, and audience engagement
Generating AI-powered insights, content strategies, and recommendations
Creating collaboration reports and growth blueprints
Scheduling and publishing content to connected social media accounts
Providing customer support and responding to inquiries
3.2 Business Operations
Processing payments and managing subscriptions
Sending transactional emails and service notifications
Detecting and preventing fraud, abuse, and security threats
Complying with legal obligations and enforcing our Terms of Service
3.3 Service Improvement
Analyzing usage patterns to improve features and functionality
Conducting research and development for new features
Monitoring and analyzing Service performance and reliability
Understanding user preferences and optimizing user experience
3.4 Communications
Sending product updates, feature announcements, and educational content
Providing customer support through chat and email
Sending referral program communications (if you participate)
3.5 Legal Basis (GDPR)
For users in the UK and EEA, we process your personal data based on:
Contract Performance: Processing necessary to provide the Service you requested
Legitimate Interests: Improving our Service, preventing fraud, and ensuring security
Consent: Where you have provided explicit consent (e.g., marketing communications)
Legal Obligations: Compliance with applicable laws and regulations
4. AI and Machine Learning
Our Service uses artificial intelligence and machine learning to analyze your social media data and generate insights, content strategies, and recommendations.
4.1 AI Service Providers
We use the following third-party AI providers:
OpenAI (GPT models)
Anthropic (Claude models)
Google (Gemini models)
Important: These AI providers operate on a zero-retention basis for API requests. Your data is not used to train their models, and they do not retain your content after processing.
4.2 Our Use of AI
We do not use your content or data to fine-tune our own AI models. All AI processing is performed in real-time through secure API connections with zero data retention by the AI providers.
5. Information Sharing and Disclosure
We do not sell, rent, or trade your personal information. We share your information only in the following circumstances:
5.1 Service Providers
We share information with third-party service providers who perform services on our behalf:
Authentication: Clerk (user authentication and identity management)
Payment Processing: Stripe (subscription billing and payment processing)
Cloud Infrastructure: Amazon Web Services (hosting, storage, database, and computing services)
Social Media Data: Phyllo/InsightIQ (social media data collection and analytics)
Social Media Publishing: Ayrshare (content scheduling and posting)
Customer Support: Intercom (live chat and support messaging)
Email Communications: Customer.io (transactional and marketing emails)
Analytics: PostHog (product analytics and usage tracking)
Error Monitoring: Sentry (error tracking and performance monitoring)
Referral Program: First Promoter (referral tracking and management)
AI Services: OpenAI, Anthropic, Google (AI-powered content generation and analysis)
These service providers are contractually obligated to protect your information and use it only for the purposes we specify.
5.2 Legal Requirements
We may disclose your information if required by law, court order, or governmental request, or to protect our rights, property, or safety, or that of our users or the public.
5.3 Business Transfers
If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and the choices you may have.
5.4 With Your Consent
We may share your information with third parties when you explicitly consent to such sharing.
6. Data Security
We implement appropriate technical and organizational security measures to protect your personal information:
Encryption: Data is encrypted in transit using TLS/SSL and at rest using industry-standard encryption
Access Controls: Strict access controls and authentication requirements for our systems
Secure Infrastructure: Hosting on AWS with enterprise-grade security features
Regular Monitoring: Continuous monitoring for security threats and vulnerabilities
Incident Response: Established procedures for detecting and responding to security incidents
While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but will notify you promptly of any data breach as required by law.
7. Data Retention
We retain your personal information for as long as necessary to provide the Service and fulfill the purposes described in this Privacy Policy.
7.1 Active Accounts
While your account is active, we retain all data associated with your account, including social media analytics, generated reports, content drafts, and usage logs.
7.2 Account Deletion
When you delete your account, we will delete your personal information within 30 days, except where we are required to retain it for legal, regulatory, tax, audit, or security purposes. This includes:
Billing records (retained for 7 years for tax and accounting purposes)
Security logs (retained for up to 1 year for fraud prevention and security investigations)
Legal compliance records (retained as required by applicable law or regulation)
7.3 Backup Data
Deleted data may persist in backup systems for up to 90 days before being permanently removed.
8. Your Rights and Choices
You have certain rights regarding your personal information. The availability of these rights may depend on your location.
8.1 Rights for All Users
Access: Request access to the personal information we hold about you
Correction: Request correction of inaccurate or incomplete information
Deletion: Request deletion of your personal information
Data Portability: Request a copy of your data in a machine-readable format
8.2 Additional Rights for UK and EEA Users (GDPR)
If you are located in the UK or EEA, you have additional rights under GDPR:
Restriction of Processing: Request restriction of processing in certain circumstances
Object to Processing: Object to processing based on legitimate interests
Withdraw Consent: Withdraw consent at any time where processing is based on consent
Lodge a Complaint: Lodge a complaint with your local data protection authority
8.3 How to Exercise Your Rights
To exercise any of these rights, please contact us at:
Email: support@naviro.ai
Subject Line: "Data Deletion Request" or "Privacy Rights Request"
We will respond to your request within 30 days (or as required by applicable law). We may need to verify your identity before processing your request.
8.4 Account Settings
You can update your account information, manage connected social media accounts, and adjust notification preferences directly through your account settings in the Service.
9. International Data Transfers
Your information may be transferred to and processed in the United States and other countries where our service providers operate. These countries may have different data protection laws than your country of residence.
9.1 Data Storage Locations
Primary Infrastructure: AWS US East (Virginia) region
Database: Neon (PostgreSQL) hosted in US East region
9.2 Safeguards for UK and EEA Users
For users in the UK and EEA, we ensure appropriate safeguards are in place for international data transfers, including relying on adequacy decisions where available and implementing appropriate contractual protections with our service providers.
10. Children's Privacy
Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from anyone under 18 years of age.
If we become aware that we have collected personal information from someone under 18 without parental consent, we will take steps to delete that information as quickly as possible. If you believe we have collected information from someone under 18, please contact us at support@naviro.ai.
11. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to provide and improve our Service.
11.1 Types of Cookies We Use
Essential Cookies: Required for authentication, security, and basic functionality of the Service. These cannot be disabled.
Analytics Cookies: Help us understand how users interact with our Service (PostHog)
Support Cookies: Enable customer support features (Intercom)
Referral Cookies: Track referral program participation (First Promoter)
11.2 Cookie Consent
For users in the UK and EEA, we will request your consent before placing non-essential cookies on your device. You can manage your cookie preferences through our cookie consent banner or by contacting us.
11.3 Browser Controls
Most web browsers allow you to control cookies through their settings. However, disabling essential cookies may affect the functionality of our Service.
12. Third-Party Links and Services
Our Service may contain links to third-party websites and services, including social media platforms. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.
When we make material changes, we will:
Update the "Last Updated" date at the top of this policy
Notify you via email or through a prominent notice in the Service
For UK and EEA users, obtain your consent where required by law for material changes
We encourage you to review this Privacy Policy periodically. Your continued use of the Service after changes are posted constitutes your acceptance of the updated policy.
14. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:
Naviro Inc.
68 Richardson Street
Brooklyn, New York, 11211
United States
Email: support@naviro.ai
For UK and EEA users:
Naviro Ltd (UK entity)
Email: support@naviro.ai
15. Supervisory Authority
If you are located in the UK or EEA and believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with your local data protection authority:
UK: Information Commissioner's Office (ICO) - ico.org.uk
EEA: Your national data protection authority