Privacy

Privacy Policy

This Privacy Policy explains how Elaryx and PostPilot collect and use information when you sign in with LinkedIn, create brand profiles, generate posts, schedule content, and contact support.

Last updated: June 8, 2026

PostPilot is a LinkedIn-first AI content workflow. We collect the data needed to authenticate your account, generate content, manage approvals, schedule posts, process subscriptions, and support your workspace.

1. Who we are

PostPilot, also referred to as Elaryx in the product, is an AI-powered LinkedIn content, campaign, scheduling, and image-generation platform. This policy applies to our website, application, onboarding flow, APIs, and support services.

2. Information we collect

We collect information you provide directly and information required to operate the product:

  • Account details such as name, email address, profile photo, password status, workspace, role, country, and timezone.
  • LinkedIn sign-in data such as member ID, name, email, profile image, profile URL, and company page data where available through approved scopes.
  • Brand and content data such as brand name, website, tone, audience, industry, offer descriptions, campaign details, generated posts, hashtags, prompts, schedules, images, and approval history.
  • Usage and billing data such as plan, trial status, AI credits, image generation usage, invoices, subscription actions, and feature limits.
  • Support data such as contact form messages, support ticket content, attachments you provide, and troubleshooting metadata.
  • Device and security data such as IP address, browser type, session identifiers, authentication logs, error logs, and basic analytics.

3. LinkedIn data and platform access

When you connect LinkedIn, we request only the permissions needed for authentication, profile setup, publishing, and supported platform features. Depending on LinkedIn approval and scopes, some analytics may not be available. When advanced analytics are unavailable, we may ask you to enter values manually so the product can estimate profile readiness without claiming API-provided metrics.

We do not sell your LinkedIn profile data. We do not create fake handles, scrape private LinkedIn data, or claim access to restricted metrics unless LinkedIn grants the required scopes.

4. AI generation data

When you generate posts, campaigns, strategies, images, or profile analysis, relevant inputs may be sent to AI providers such as OpenAI. This can include prompts, brand context, post drafts, campaign details, and quality-check metadata. We use this information to produce outputs, improve retry logic, and keep content aligned with your brand settings.

You should not submit sensitive personal data, regulated health data, financial account details, government IDs, confidential client data, or other highly sensitive information unless you have the legal right to do so and the information is necessary for your use of the product.

5. How we use information

  • Authenticate users and protect accounts.
  • Create and maintain workspaces, brand profiles, campaigns, schedules, and posts.
  • Generate AI-assisted content, images, profile analysis, and growth recommendations.
  • Publish or schedule approved content through connected LinkedIn accounts when enabled.
  • Track credits, usage, trial limits, subscriptions, invoices, and plan access.
  • Provide support, investigate bugs, prevent abuse, and improve product reliability.
  • Send important account, security, billing, and product updates.

6. Cookies and sessions

We use cookies and similar technologies for login sessions, CSRF protection, product preferences, analytics, and security. You can control browser cookies, but disabling them may prevent sign-in or workspace features from working correctly.

7. Sharing and subprocessors

We share information only where needed to operate the service. This may include cloud hosting providers, database providers, AI providers, payment processors, email providers, analytics tools, support tools, and LinkedIn APIs. These providers process data on our behalf or as required to deliver their services.

We may also disclose information if required by law, to enforce our Terms, prevent abuse, protect users, or complete a business transfer such as a merger or acquisition.

8. Data retention

We retain account, workspace, campaign, post, image, billing, and log data for as long as needed to provide the service, meet legal obligations, resolve disputes, and maintain audit history. You may request deletion of your account or specific data, subject to lawful retention requirements and active billing records.

9. Security

We use practical administrative, technical, and organizational safeguards to protect customer data. No internet service is completely secure, so you are responsible for using strong authentication, limiting workspace access, and keeping connected accounts secure.

10. Your choices and rights

Depending on your location, you may have rights to access, correct, export, restrict, or delete personal information. You can also disconnect LinkedIn access, update profile details, cancel a subscription, or contact support for account deletion.

11. Children

PostPilot is intended for business users and is not directed to children under 16. We do not knowingly collect personal information from children.

12. International transfers

Your information may be processed in countries where we or our service providers operate. Where required, we use appropriate safeguards for cross-border processing.

13. Changes to this policy

We may update this Privacy Policy as the product, laws, or integrations change. If a change is material, we will take reasonable steps to notify users through the product or by email.

14. Contact

For privacy questions or deletion requests, contact us through the Support page or the Contact page.