Threadytics
Back to Home

Privacy Policy

Effective: February 7, 2026

Threadytics ("Service") values user privacy and complies with applicable data protection laws. This policy describes the personal information we collect, how we use it, and how long we retain it.

1. Personal Information Collected

a. Upon Registration

  • Email address (authenticated via Supabase Auth)

b. When Connecting Threads Account

  • Threads user ID and username
  • Threads post data (content, posting time, engagement metrics)
  • OAuth authentication tokens (stored encrypted)

c. When Connecting External Services (Google Sheets, Notion)

  • OAuth authentication tokens (AES-256-CBC encrypted)
  • Integration settings (spreadsheet ID, database ID, etc.)

d. Beta Signup

  • Email address
  • Threads username (optional)

2. Purpose of Use

  • Service delivery: Threads data sync, analytics, external service export
  • Account management: User authentication and service access
  • Service improvement: Usage pattern analysis and feature enhancement
  • Notifications: Service updates and beta invitations

3. Retention Period

  • Personal data is deleted promptly upon account deletion.
  • OAuth tokens are immediately deleted when external services are disconnected.
  • Synced post data is deleted when Threads connection is removed.

4. Third-Party Sharing

We do not share personal information with third parties. Data export to external services (Google Sheets, Notion) that you connect is performed only with your explicit consent.

5. Security Measures

  • OAuth tokens: AES-256-CBC encryption with scrypt key derivation
  • Communications: HTTPS/TLS encryption
  • Database: Supabase Row Level Security (RLS)
  • Authentication: HMAC-SHA256 signature-based CSRF protection

6. Your Rights

You may request the following at any time:

  • Access, correction, or deletion of personal information
  • Threads disconnection and data deletion
  • External service disconnection
  • Account deletion

You can manage these directly from the Settings page or contact us below.

7. Cookies

We only use essential cookies for session management and OAuth CSRF protection. We do not use marketing or tracking cookies.

8. Contact

  • Service: Threadytics
  • Email: hmpglab@gmail.com

9. Policy Changes

Changes to this policy will be announced within the Service at least 7 days before they take effect.