Viilar Privacy Policy
Last updated: April 24, 2026
Viilar ("we", "us", "our") helps creators grow their social media presence. This policy explains what we collect, why, and your rights.
1. Information We Collect
Account data
- Email and authentication identifiers via Clerk.
- Display name and profile photo if you provide them.
Connected social accounts
- OAuth access tokens for TikTok, Meta (Facebook/Instagram), Google (YouTube/Ads), Twitch, and Kick — only when you choose to connect them.
- Public profile metrics: follower count, post counts, engagement metrics. We do not collect private messages.
- Ad account identifiers and campaign performance data when you launch ads through Viilar.
Usage data
- App interactions, feature usage, error logs, device type, and IP for security and reliability.
- Stripe billing data (managed by Stripe; we never store full card numbers).
2. How We Use Information
- Provide growth analytics, AI coaching, hashtag suggestions, and campaign tools you request.
- Sync follower counts and post performance from connected platforms.
- Process subscriptions and ad spend through Stripe and ad platforms.
- Detect abuse, prevent fraud, and comply with legal obligations.
3. How We Share Information
We do not sell your data. We share only with:
- Service providers — Clerk (auth), Stripe (payments), Replit (hosting), AI model providers (only the prompts you send).
- Connected platforms — when you publish content or launch ads, the relevant platform receives that content/spend per your instruction.
- Legal — when required by law or to protect rights and safety.
4. Data Retention
We retain account data while your account is active. OAuth tokens can be revoked at any time from the Connections screen inside the Viilar app. On account deletion, we remove personal data within 30 days, except records we must keep for legal/financial reasons.
5. Your Rights
- Access, correct, export, or delete your data — email us at privacy@viilar.app.
- Disconnect any social platform from the Connections screen.
- Cancel your subscription anytime from the billing portal.
6. Security
Tokens are stored encrypted at rest. All traffic is HTTPS. We follow industry-standard practices but no system is 100% secure — please use a strong password.
7. Children
Viilar is not directed to children under 13. We do not knowingly collect data from them.
8. Changes
We will post material changes to this page and update the "Last updated" date. Continued use after changes means you accept the updated policy.
9. Contact
Questions? Email privacy@viilar.app.
Terms of Service · viilar.replit.app