Privacy Policy

Scribario ("we," "us," or "our"), a product of DarkArc Technologies LLC, is the data controller responsible for your personal data. For privacy-related inquiries, contact us at privacy@scribario.com.

We process your data on the following legal bases (GDPR):

• Contract performance: Content generation, posting, OAuth management — necessary to provide the Service
• Legitimate interests: Analytics, fraud prevention, service improvement
• Legal obligation: Tax records, lawful government requests
• Consent: Marketing emails (opt-in only)

We do not sell your personal data. We do not use your content to train AI models. Our AI providers' API terms confirm that API inputs are not used for model training by default.

We share data with the following service providers to operate the Service:

Scribario's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Your use of YouTube features is also subject to Google's Privacy Policy.

• Account data: duration of your account plus 90 days
• Billing records: 7 years (tax compliance)
• LinkedIn profile data: maximum 24 hours
• LinkedIn social activity data: maximum 48 hours
• YouTube/Google API data: retained only as long as necessary to provide the Service; deleted within 30 days of account deletion or access revocation
• AI-generated content: retained while your account is active
• OAuth tokens: deleted immediately upon disconnection or account deletion

You may request deletion of your data at any time by emailing privacy@scribario.com or using the in-app deletion feature.

Meta (Facebook/Instagram) Data Deletion

We comply with Meta's Data Deletion Callback requirement. When you remove Scribario from your Meta account settings, Meta sends us an automated deletion request. We process the request, delete all associated data, and provide you with a confirmation code and a status URL at https://scribario.com/data-deletion-status where you can verify deletion progress.

YouTube/Google Data Deletion

You may revoke Scribario's access to your YouTube data at any time via Google's security settings. Upon revocation, we delete all YouTube API data within 30 days.

Deletion Timeline

GDPR: 30 days. CCPA: 45 days. Some data may be retained in anonymized form for aggregate analytics, and billing records are retained for 7 years per tax law.

GDPR Rights (EU/EEA/UK residents)

You have the right to: access, rectify, erase, restrict processing, data portability, and object to processing of your personal data.

CCPA Rights (California residents)

You have the right to: know what data we collect, request deletion, opt out of sale (we do not sell data), request correction, and non-discrimination for exercising your rights.

To exercise any of these rights, contact privacy@scribario.com. We will respond within 30 days (GDPR) or 45 days (CCPA).

You can disconnect Scribario from any connected platform at any time. Upon disconnection, we delete the associated OAuth tokens immediately.

• Facebook/Instagram: Go to Facebook Settings → Business Integrations → find Scribario → Remove
• YouTube/Google: Go to Google Account → Security → Third-party apps → find Scribario → Remove Access
• TikTok: Go to TikTok → Settings → Security → Manage App Permissions → find Scribario → Revoke
• LinkedIn: Go to LinkedIn Settings → Data Privacy → Permitted Services → find Scribario → Remove
• X (Twitter): Go to X Settings → Security → Connected Apps → find Scribario → Revoke Access
• Pinterest: Go to Pinterest → Settings → Security → Apps → find Scribario → Remove
• Bluesky: Go to Bluesky → Settings → App Passwords → revoke the password used for Scribario

We protect your data using encryption in transit (TLS) and at rest (particularly OAuth tokens). We implement access controls and follow security best practices. In the event of a data breach, we will notify the relevant supervisory authority within 72 hours as required by GDPR.

No method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

Our servers are located in the United States. If you are located outside the US, your data will be transferred to the US for processing. We rely on the EU-U.S. Data Privacy Framework and/or Standard Contractual Clauses to ensure adequate protection for international transfers.

We use only essential cookies required for the Service to function (session management, authentication). We do not use tracking cookies, advertising cookies, or third-party analytics cookies. Because we use only strictly necessary cookies, no consent banner is required under GDPR.

The Service is not directed to individuals under 18 years of age. We do not knowingly collect personal data from minors. If we discover that we have inadvertently collected data from a minor, we will delete it immediately.

Scribario uses third-party AI services for text generation, image generation, and voice synthesis. Your prompts sent via these APIs are not used to train AI models (per each provider's API terms). AI-generated content may not be copyrightable under current law. We comply with the EU AI Act Article 50 transparency requirements.

Content posted to Bluesky is public and may be replicated across servers within the AT Protocol network. Deletion of content on the decentralized network is not guaranteed, as other servers may retain copies.

Scribario uses YouTube API Services to publish video content to YouTube on your behalf. By using Scribario's YouTube integration, you agree to be bound by the YouTube Terms of Service. Your data obtained through YouTube API Services is subject to Google's Privacy Policy.

We access only the YouTube API scopes necessary to upload videos and manage your channel content. We do not access your viewing history, subscriptions, or personal YouTube data beyond what is required for publishing. You may revoke access at any time via Google's security settings, and we will delete all associated data within 30 days.

We will provide 30 days notice for material changes to this Privacy Policy via email. We retain historical versions of this policy as required by Meta.

For privacy-related questions or to exercise your rights:
DarkArc Technologies LLC
Email: privacy@scribario.com

EU residents have the right to lodge a complaint with their local supervisory authority.