← pushingCapital

Privacy Policy

This Privacy Policy describes how Pushing Capital collects, uses, stores, and deletes data when authorized operators connect official company social accounts through the Pushing Capital platform.

Scope

This policy applies to the Pushing Capital website, operator portal, and the social connectivity features used to connect official Facebook, Instagram, TikTok, and YouTube accounts owned or administered by Pushing Capital.

Data We Collect

• Operator identity data such as name, email address, and session details.
• Social platform account metadata such as page, channel, account, or business profile IDs; account display names; usernames; account type; granted scopes; and token expiration data.
• Encrypted OAuth credentials needed to maintain an authorized connection, including access tokens and refresh tokens where the provider issues them.
• Operational logs, connection events, category checks, health-check results, and minimal security telemetry needed to maintain a reliable integration.

How We Use Data

• To connect and maintain official Pushing Capital business social accounts.
• To verify business account status, category alignment, and token health.
• To refresh credentials when a provider supports refresh-based access continuity.
• To troubleshoot authentication failures and respond to platform review requests.
• To meet legal, security, fraud-prevention, and audit obligations.

How We Store and Protect Data

Pushing Capital stores integration state in secured application infrastructure. OAuth tokens are encrypted before they are written to storage. Access is limited to authorized personnel, service providers, and infrastructure components that need the data to operate the integration.

How We Share Data

We do not sell social account data. We share data only as necessary to operate the service, such as with Meta, Google, TikTok, Cloudflare, and other infrastructure providers acting on our instructions, or when required by law.

Retention

We retain active connection records while an integration remains connected and for as long as reasonably necessary to maintain security, accounting, audit, or compliance records. When a connection is removed, we delete or deactivate active credentials and limit retention to the minimal records needed for security and legal purposes.

Your Choices

• You may disconnect an integration from the Pushing Capital operator portal.
• You may revoke access directly from the relevant provider account security settings when supported by the provider.
• You may submit a deletion request by following the instructions on the data deletion page.

Contact

Questions about this Privacy Policy or a social integration may be sent to socialmedia@pushingcap.com