Privacy Policy

1. Introduction

Welcome to Fenloz ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, including our website, mobile applications, and services (collectively, the "Service").

By using Fenloz, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide Directly

• Account Information: Name, email address, password, phone number, business name, and profile information
• Payment Information: Billing address, payment method details (processed securely by third-party payment processors)
• Content: Lead magnets, forms, pages, and other content you create using our Service
• Communications: Messages, feedback, and support requests you send to us

2.2 Information from Social Media Platforms

When you connect your Instagram, Facebook, or other social media accounts to Fenloz, we collect and process the following information in accordance with the respective platform's permissions:

• Instagram Data:
  • Profile information (username, profile picture, bio)
  • Published posts, stories, and reels
  • Comments on your posts
  • Direct messages sent to your business account
  • Insights and analytics data
  • Follower and engagement metrics
  • @Mentions and hashtag data
• Facebook Data:
  • Page information and settings
  • Page posts and engagement
  • Messenger conversations with your page
  • Page insights and analytics

Important: We only access data from Instagram Professional (Business or Creator) accounts and Facebook Pages that you explicitly authorize. We do not access personal Instagram or Facebook profiles.

2.3 Automatically Collected Information

• Usage Data: Pages visited, features used, time spent, click patterns
• Device Information: IP address, browser type, operating system, device identifiers
• Cookies and Tracking: We use cookies, pixels, and similar technologies (see Section 8)
• Log Data: Server logs, error reports, and performance data

2.4 Information from Third Parties

• Analytics providers (Google Analytics, Mixpanel)
• Payment processors (Stripe)
• Marketing platforms
• API service providers

3. How We Use Your Information

We use the collected information for the following purposes:

• Service Delivery: To provide, maintain, and improve our platform and features
• Social Media Management: To manage your Instagram and Facebook content, messages, and interactions
• AI-Powered Features: To provide chatbot responses, content suggestions, and automation
• Analytics: To generate insights about your social media performance
• Account Management: To create and manage your account, authenticate users
• Communication: To send service updates, notifications, and respond to inquiries
• Payment Processing: To process transactions and manage subscriptions
• Security: To detect, prevent, and address fraud, abuse, and security issues
• Compliance: To comply with legal obligations and enforce our terms
• Improvement: To understand usage patterns and enhance user experience
• Marketing: To send promotional materials (with your consent, where required)

4. Instagram and Facebook Data Processing

4.1 Data Access and Permissions

When you connect your Instagram or Facebook account, you grant Fenloz specific permissions to access your data through Meta's official APIs. You can review and revoke these permissions at any time through:

• Your Fenloz account settings
• Instagram Settings → Security → Apps and Websites
• Facebook Settings → Business Integrations

4.2 Data Usage for Social Media Features

• Message Management: We access and store messages to provide inbox management and chatbot functionality
• Content Publishing: We use your permissions to schedule and publish content on your behalf
• Comment Moderation: We access comments to provide moderation and auto-response features
• Analytics: We retrieve and display your account insights and performance metrics

4.3 Chatbot and AI Processing

When using our AI-powered chatbot features:

• Messages are processed by our AI engine to generate relevant responses
• Conversation context is maintained to improve response quality
• All automated responses comply with Meta's platform policies
• Users are informed when interacting with automated systems (where required by law)
• Human escalation is available when automated responses are insufficient

4.4 Data Minimization

We only request and access the minimum data necessary to provide our services. We do not:

• Access personal Instagram or Facebook profiles (only Professional accounts)
• Collect data from users who interact with your account without their knowledge
• Use your social media data for purposes outside of providing our services
• Sell your data to third parties

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

5.1 Service Providers

We share data with trusted third-party service providers who assist us in operating our platform:

• Cloud Hosting: AWS, Azure, or Google Cloud for infrastructure
• Payment Processing: Stripe for secure payment handling
• Email Services: SendGrid, Mailgun for transactional emails
• Analytics: Google Analytics, Mixpanel for usage analytics
• AI Services: OpenAI for chatbot and AI features
• Customer Support: Help desk and support tools

All service providers are bound by confidentiality agreements and only process data as instructed by us.

5.2 Social Media Platforms

We interact with Meta's Instagram and Facebook APIs to provide social media management features. Data is transmitted to these platforms only:

• When you initiate actions (posting content, sending messages)
• To retrieve data you've authorized us to access
• In compliance with Meta's Platform Terms and Policies

5.3 Legal Requirements

We may disclose your information if required by law or in response to:

• Valid legal processes (subpoenas, court orders)
• Government or regulatory requests
• Protection of our legal rights or property
• Prevention of fraud or security threats
• Protection of public safety or user safety

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity. We will notify you before your information is transferred and becomes subject to a different privacy policy.

6. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy:

• Account Data: Retained while your account is active and for 90 days after account deletion
• Instagram/Facebook Data: Stored for the duration of your connected account authorization and deleted within 30 days of disconnection
• Messages: Retained for up to 90 days to provide service features, unless deleted by you
• Analytics Data: Aggregated and anonymized data may be retained indefinitely
• Legal Records: Financial and legal records retained as required by law (typically 7 years)
• Backup Data: Deleted from backups within 90 days of primary deletion

7. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: Data encrypted in transit (TLS/SSL) and at rest (AES-256)
• Access Controls: Role-based access and multi-factor authentication
• Secure Infrastructure: Hosted on secure cloud platforms with regular security audits
• Token Protection: Social media access tokens encrypted and securely stored
• Monitoring: 24/7 security monitoring and intrusion detection
• Regular Updates: Security patches and updates applied promptly
• Employee Training: Staff trained on data protection and security best practices
• Incident Response: Comprehensive incident response plan in place

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience:

8.1 Types of Cookies We Use

• Essential Cookies: Required for the website to function (login, security)
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Help us understand how you use our service
• Marketing Cookies: Track advertising effectiveness (with your consent)

8.2 Managing Cookies

You can control cookies through:

• Your browser settings (most browsers allow you to refuse cookies)
• Our cookie consent banner (when you first visit our site)
• Opt-out tools provided by advertising networks

Note: Disabling essential cookies may affect website functionality.

9. Your Rights and Choices

Depending on your location, you may have the following rights:

9.1 Access and Portability

• Request a copy of your personal data
• Download your data in a machine-readable format
• View what data we have collected about you

9.2 Correction and Update

• Update your account information at any time
• Correct inaccurate or incomplete data

9.3 Deletion

• Request deletion of your account and associated data
• Delete specific content or messages
• Disconnect social media accounts

9.4 Opt-Out and Withdrawal

• Unsubscribe from marketing emails
• Opt out of non-essential cookies
• Revoke social media permissions
• Disable chatbot automation

9.5 Object and Restrict

• Object to certain data processing activities
• Request restriction of processing

9.6 Exercising Your Rights

To exercise any of these rights, please:

• Email us at: admin@fenloz.com
• Use your account settings dashboard
• Contact our support team

We will respond to your request within 30 days.

10. International Data Transfers

Fenloz operates globally, and your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

When we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Standard contractual clauses approved by the European Commission
• Adequacy decisions by relevant data protection authorities
• Privacy Shield certification (where applicable)
• Other legally approved transfer mechanisms

11. Children's Privacy

Fenloz is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at admin@fenloz.com, and we will delete such information.

12. Regional Privacy Rights

12.1 European Economic Area (EEA) and UK - GDPR

If you are located in the EEA or UK, you have additional rights under the General Data Protection Regulation (GDPR):

• Legal Basis for Processing: We process your data based on:
  • Your consent (social media integrations, marketing)
  • Contract performance (providing our services)
  • Legitimate interests (improving our services, fraud prevention)
  • Legal obligations (compliance with laws)
• Data Protection Officer: Contact our DPO at admin@fenloz.com
• Supervisory Authority: You have the right to lodge a complaint with your local data protection authority

12.2 California - CCPA/CPRA

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

• Right to know what personal information we collect, use, and disclose
• Right to delete your personal information
• Right to opt-out of the sale of personal information (we do not sell your information)
• Right to non-discrimination for exercising your privacy rights
• Right to correct inaccurate personal information
• Right to limit use of sensitive personal information

To exercise these rights, contact us at admin@fenloz.com or call us at 1-800-FENLOZ (if toll-free number is available).

12.3 Other Jurisdictions

We comply with applicable data protection laws in other jurisdictions where we operate, including Australia, Canada, Brazil, and others. Contact us for information specific to your region.

13. Third-Party Links and Services

Our Service may contain links to third-party websites, applications, or services that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access.

This includes:

• Instagram and Facebook (governed by Meta's Privacy Policy)
• Payment processors (governed by their respective privacy policies)
• Analytics and marketing services
• Any other third-party integrations you enable

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

• Posting the updated policy on this page
• Updating the "Last Updated" date at the top of this policy
• Sending you an email notification (for significant changes)
• Displaying a prominent notice on our website or app

We encourage you to review this Privacy Policy periodically. Your continued use of our Service after changes are posted constitutes your acceptance of the updated policy.

15. Data Breach Notification

In the event of a data breach that affects your personal information, we will:

• Notify you within 72 hours of discovering the breach (as required by law)
• Provide details about the nature of the breach and affected data
• Inform you of steps we're taking to address the breach
• Provide guidance on how to protect yourself
• Notify relevant authorities as required by applicable laws

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to your inquiries within 30 days.

17. Acceptance of This Policy

By using Fenloz, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with this policy, please discontinue use of our Service immediately.