Privacy Policy

Last updated: 14 April 2026

🔒 Your privacy matters. PilotPost does not sell your data, does not use your content to train AI models, and collects only what is necessary to deliver the service.

1. Who We Are

PilotPost ("PilotPost", "we", "us", "our") is an AI-powered personal brand content platform operated as a sole trader based in Australia. We are subject to the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

2. What Data We Collect

We collect only the data necessary to provide and improve the PilotPost service:

2.1 Account Information

Email address — collected via Google OAuth when you sign in. Used to identify your account, send weekly post summaries, and communicate important service updates.
Name and profile picture — optionally provided by Google OAuth for display purposes within the app.

2.2 LinkedIn Connection Data

LinkedIn OAuth tokens — encrypted and stored per-user to enable posting to your LinkedIn profile on your behalf. We request only the minimum permissions required for content publishing.
LinkedIn profile ID — used to identify the correct account when posting content.

2.3 Content Data

Interview responses — your answers to PilotPost's structured voice interview, used to build your Brand Voice Profile and generate content.
Generated posts — AI-generated content produced on your behalf, stored for scheduling, review, and publication history.
Brand Voice Profile — a structured representation of your communication style, tone, vocabulary, and content preferences derived from your interview responses.

2.4 Usage and Analytics Data

Plausible Analytics — we use Plausible Analytics for privacy-friendly website analytics. Plausible does not use cookies, does not collect personal data, and does not track you across websites. See plausible.io/privacy for details.
Application logs — server-side logs may include IP addresses and request data for security and debugging purposes. These are retained for a limited period and are not used for marketing.

3. How We Use Your Data

We use the data we collect for the following purposes:

Providing the service — generating AI-powered LinkedIn content that reflects your authentic voice and publishing it on your behalf via the LinkedIn API.
Weekly summaries — sending you a weekly email summary of posts published, scheduled, and pending review.
Account management — managing your subscription, billing (via Stripe), and account preferences.
Security — detecting and preventing unauthorised access, fraud, and abuse.
Service improvement — understanding how the product is used in aggregate (via anonymised analytics) to guide feature development.
Legal compliance — meeting our obligations under Australian law.

We do not use your data for advertising, profiling, or sale to third parties.

4. Third-Party Services

PilotPost integrates with the following third-party services to deliver its functionality:

4.1 Anthropic (Claude AI)

We use Anthropic's Claude API to generate content based on your Brand Voice Profile and interview responses. Your content data is transmitted to Anthropic's API for this purpose. Anthropic does not use API inputs to train their models by default. See Anthropic's Privacy Policy for details.

4.2 LinkedIn API

PilotPost publishes content to LinkedIn on your behalf using LinkedIn's official Marketing Developer Platform API. By connecting your LinkedIn account, you authorise PilotPost to post content using your credentials. LinkedIn's own Privacy Policy governs data processed by LinkedIn.

4.3 Google OAuth

We use Google OAuth for sign-in. Google provides us with your email address and basic profile information. PilotPost does not request access to your Gmail, Google Drive, or any other Google services beyond authentication. See Google's Privacy Policy for details.

4.4 Stripe

Subscription billing is handled by Stripe. PilotPost never sees, stores, or processes your payment card details — all card data is handled entirely by Stripe on their PCI-DSS compliant infrastructure. We receive only a Stripe customer ID and subscription status. See Stripe's Privacy Policy for details.

4.5 Plausible Analytics

We use Plausible Analytics for privacy-first website analytics. Plausible is cookieless, collects no personal data, and is fully GDPR-compliant. No data is shared with advertising networks. See Plausible's Privacy Policy for details.

4.6 Railway (Hosting)

PilotPost is hosted on Railway's cloud infrastructure. Your data is stored on Railway's servers. Railway maintains its own security and compliance standards. See Railway's Privacy Policy for details.

5. Data Storage and Security

We take reasonable technical and organisational measures to protect your data:

LinkedIn OAuth tokens are encrypted at rest using industry-standard encryption before being stored in our database.
Data in transit is protected by TLS/HTTPS encryption.
Access controls — access to production data is restricted to authorised personnel only.
Hosting — your data is stored on Railway's infrastructure. Railway maintains SOC 2 compliance and modern security practices.

While we take security seriously, no system is completely immune to breaches. If we become aware of a data breach that is likely to result in serious harm, we will notify affected users and the Office of the Australian Information Commissioner (OAIC) as required under the Notifiable Data Breaches (NDB) scheme.

PilotPost operates in compliance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles.

6. Your Rights

Under the Australian Privacy Act, you have the right to:

Access — request a copy of the personal data PilotPost holds about you.
Correction — request that inaccurate or outdated data be corrected.
Deletion — request that your account and all associated data be permanently deleted. You can also delete your account directly via Account settings.
Data export — request an export of your data (interview responses, generated posts, Brand Voice Profile) in a portable format.
Revoke LinkedIn access — disconnect your LinkedIn account at any time via Account settings or directly through LinkedIn's security settings. Disconnecting will stop PilotPost from posting on your behalf and remove stored tokens.

To exercise any of these rights, email us at hello@pilotpost.ai. We will respond within 30 days.

7. LinkedIn Data Usage

When you connect your LinkedIn account to PilotPost:

We request only the minimum permissions necessary for content publishing — specifically, the ability to create posts on your profile.
We do not read your LinkedIn messages, connections, feed, or any other data beyond what is required for posting.
Your LinkedIn OAuth tokens are stored encrypted in our database and are never shared with third parties (except LinkedIn itself when making API calls on your behalf).
You can revoke access at any time by disconnecting LinkedIn in your PilotPost Account settings, or by revoking the PilotPost application directly in your LinkedIn security settings at linkedin.com/psettings/permitted-services.
Upon revocation or account deletion, your LinkedIn tokens are immediately deleted from our systems.

PilotPost's use of LinkedIn data complies with the LinkedIn API Terms of Use and the LinkedIn Community Management API usage policies.

8. AI-Generated Content

PilotPost uses Anthropic's Claude AI to generate content on your behalf. Regarding your data and AI:

We do not use your interview responses, Brand Voice Profile, or generated posts to train any AI models — ours or Anthropic's.
Your content data is sent to Anthropic's API solely for the purpose of generating content in your voice. Anthropic does not use API inputs for model training by default under their API usage policy.
Generated content belongs to you. PilotPost claims no intellectual property rights over AI-generated content produced on your behalf.
You are responsible for reviewing and approving content before it is published to your LinkedIn profile.

9. Data Retention

We retain your data for as long as your account is active or as necessary to provide the service. Specifically:

Account data (email, profile) — retained until you delete your account.
LinkedIn tokens — retained until you disconnect LinkedIn or delete your account, at which point they are immediately deleted.
Interview responses and generated posts — retained until you delete your account. You may also delete individual posts or reset your Brand Voice Profile via Account settings.
Billing records — retained for 7 years as required by Australian tax law, even after account deletion. These records are limited to transaction metadata (amounts, dates) and do not include payment card details.
Server logs — retained for up to 90 days for security and debugging purposes.

10. Children's Privacy

PilotPost is not directed at children under the age of 18. We do not knowingly collect personal data from anyone under 18. If you believe a minor has provided us with personal data, please contact us at hello@pilotpost.ai and we will promptly delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and update the "Last updated" date at the top of this page. Your continued use of PilotPost after notification constitutes acceptance of the updated policy.

12. Contact Us

For any privacy-related questions, requests, or complaints, please contact us:

Email: hello@pilotpost.ai
Website: pilotpost.ai
Jurisdiction: Australia (sole trader, subject to the Privacy Act 1988 (Cth))

If you are not satisfied with our response to a privacy complaint, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

This Privacy Policy is effective as of 14 April 2026. PilotPost is operated as a sole trader based in Australia.