Skip to content
instafront
Connect Instagram

Privacy

Privacy Policy

Effective April 14, 2026

This policy explains what data Instafront ("Instafront," "we," "us") collects about you, why we collect it, how we use and share it, and the rights you have over it. It is written to be understandable. Legal specificity where it matters; plain language everywhere else.

Instafront is operated by [Legal Entity Name], a company registered at [Registered Address]. You can reach us at privacy@instafront.app.

1. What we collect

1.1 Information you give us directly

  • Account data. Name, email, and, if you sign up with email and password, a hashed password. If you sign up via "Continue with Instagram," we receive your Meta identity and the email address associated with your Meta account.
  • Billing data. Processed and stored by Dodo Payments (our merchant of record). We store only non-sensitive summaries: plan, renewal date, last four of the card, invoice history. We never see or store full card numbers.
  • Support correspondence. Anything you send us by email.

1.2 Information from Instagram / Meta

When you connect your Instagram account, we receive, via Meta's official Graph API and only with permissions you explicitly approved:

  • Your Instagram business or creator profile (username, bio, profile image, public contact fields).
  • Your media (posts, Reels, and Stories), including captions, timestamps, and URLs.
  • Basic metadata about the Facebook Page linked to your Instagram account.

We mirror media into our own storage on Cloudflare R2 so that Instagram's expiring URLs don't break your site. We never request private data, direct messages, follower lists, or non-public content.

1.3 Information generated by your use of Instafront

  • AI annotations. Our AI analyzes your public posts to categorize them into sections of your site. We store the annotations (not the full raw inputs and outputs) for display and improvement.
  • Your edits. Hide/pin/recategorize actions, caption overrides, and theme choices.
  • Dashboard usage. Feature-level events (e.g., "theme opened," "post pinned") so we can understand what works.

1.4 Information collected automatically

  • Traffic on our marketing site and your generated customer site. Collected via Cloudflare Web Analytics. Cookieless, GDPR-friendly, bot-filtered at Cloudflare's edge. No cross-site tracker is set.
  • Error and performance telemetry. Sentry collects exception reports; we redact PII before it leaves our servers.
  • Server logs. Request paths, timings, IPs (truncated to /24), user agents. Retained 30 days.

2. Why we collect it (lawful bases under GDPR)

  • Performance of a contract. Running your account, syncing Instagram, generating your site, processing payments. You signed up for this.
  • Legitimate interest. Security, fraud prevention, cookieless aggregate analytics, error monitoring, and product improvement. Our interest is balanced against your rights; you can object.
  • Legal obligation. Tax and accounting records we must keep (handled through Dodo Payments).
  • Consent. Where required, for example before sending non-essential marketing email. You can withdraw consent at any time.

3. How we share it

We do not sell or rent your personal data. We share only with the subprocessors we need to operate Instafront, each under a data processing agreement. The full list lives at /subprocessors and includes:

  • Railway. Compute and database hosting.
  • Cloudflare. Storage, CDN, analytics, DNS, custom domain SSL.
  • Dodo Payments. Merchant of record for billing, tax, and chargebacks.
  • Resend. Transactional email delivery.
  • Sentry. Error monitoring.
  • June.so. In-dashboard product analytics.
  • Inngest. Background job orchestration.
  • Anthropic, OpenAI, Google (one provider at a time). AI content analysis.
  • Meta Platforms, Inc. Source of the Instagram data you chose to connect.

We may disclose data to comply with a valid legal request. If that ever happens, we will push back on overbroad demands and notify you where the law allows.

4. International transfers

Our primary data residency is the European Union. Some subprocessors (for example, Anthropic, Sentry, and June.so) process data in the United States. We rely on the European Commission's Standard Contractual Clauses, the EU-U.S. Data Privacy Framework where applicable, and, where needed, supplementary measures.

5. Retention

  • Active accounts: kept while your account exists.
  • Cancelled accounts: 30 days of soft-delete (you can undelete), then hard delete.
  • Billing records: retained as required by tax and accounting law, typically 7–10 years, through Dodo.
  • Server logs: 30 days.
  • Error reports (Sentry): 90 days.

6. Your rights

If you are in the EU, the UK, or a jurisdiction with comparable law, you have the right to:

  • Access the data we hold about you.
  • Correct it if it's wrong.
  • Delete it ("right to be forgotten").
  • Restrict or object to processing.
  • Portability. Receive it in a machine-readable format.
  • Withdraw consent where processing is based on consent.
  • Lodge a complaint with your local supervisory authority.

You can exercise access, export, and deletion rights directly from your dashboard. No support ticket needed. For the others, email privacy@instafront.app. We respond within 30 days.

7. Security

We encrypt data in transit (TLS) and at rest. Instagram access tokens are stored encrypted with per-row keys. Passwords are hashed with a modern algorithm (argon2id). Production access is limited, logged, and reviewed.

8. Children

Instafront is not intended for anyone under 16. We don't knowingly collect data from children. If you believe a child has signed up, email us and we'll remove the account.

9. Changes to this policy

When we make material changes, we'll email active account holders at least 14 days before the change takes effect. Non-material updates (typo fixes, restructuring) will update the effective date without a notice.

10. Contact

privacy@instafront.app for privacy questions, requests, and complaints. We are our own data protection contact for now; a formal DPO is designated when staff count requires it.