Privacy Policy
Your privacy is our priority. We believe in transparency and honest communication about how your data is used.
Effective Date: August 29, 2025 • Last Updated: August 29, 2025
Our Privacy Philosophy
Unlike big corporations, we don't take advantage of people who don't understand technology. We believe in transparency, honest communication, and user empowerment over predatory practices.
1. Introduction
No iLLusion Software ("we," "our," or "us") operates the No iLLusion SMM social media management platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
2. Information We Collect
2.1 Authentication Data (via Auth0)
- Email address
- Name
- Auth0 user identifier
- Sign-in timestamps and IP addresses (for security)
2.2 Profile Information
- Bio and mission statement
- Skills and expertise areas
- Content mode preferences (business/influencer/personal)
- AI feature preferences and settings
2.3 Social Media Platform Data
- LinkedIn: Access tokens, profile ID, name, email, profile URL
- Facebook: Business page access tokens, page IDs, page names, and page management permissions
- Platform Content: Posts you create and publish through our Service
- Publishing Logs: Success/failure status of posts, platform responses
2.4 AI Usage Data
- Content generation requests and responses
- Multiple AI service providers (OpenAI, Anthropic, Google, etc.) for content generation
- Token usage and API costs (for transparency)
- Generated content (temporarily stored for delivery)
2.5 Subscription and Usage Data
- Subscription tier (Free, Pro, Ultimate)
- Feature usage tracking for tier limits (AI generations, posts per month)
- Payment information (handled securely via Stripe - not stored by us)
- Feature access logs for freemium model enforcement
3. How We Use Your Information
3.1 Service Provision
- Authenticate and manage your account
- Generate AI-powered social media content
- Publish content to your connected social media platforms
- Provide personalized content suggestions based on your profile
- Manage subscription tiers and enforce usage limits (freemium model)
- Process payments securely via Stripe for Pro and Ultimate tiers
3.2 Platform Integration
- Connect and maintain connections to LinkedIn, Facebook business pages, and other platforms
- Post content on your behalf with your explicit authorization
- Retrieve profile information to enhance content personalization
- Manage Facebook business page connections and publishing permissions
3.3 AI Content Generation
- Process your prompts through multiple AI providers (OpenAI, Anthropic, Google AI, etc.)
- Customize content based on your content mode and profile
- Track AI usage for cost transparency and service improvement
4. Data Sharing and Disclosure
4.1 Third-Party Services
We share data with the following trusted services for specific purposes:
🔐 Auth0
Authentication and user identity management
🤖 AI Service Providers
Multiple AI providers (OpenAI, Anthropic, Google AI, etc.) for content generation (prompts and responses)
Profile information and content posting (with your authorization)
Business page management and content posting (with your authorization)
💳 Stripe
Secure payment processing for Pro and Ultimate subscriptions
☁️ Heroku/PostgreSQL
Secure data hosting and storage
4.2 Legal Requirements
We may disclose information if required by law or to:
- Comply with legal process or government requests
- Protect our rights, property, or safety
- Investigate potential violations of our terms
4.3 No Sale of Personal Data
No Data Sales - Ever
We do NOT sell, rent, or trade your personal information to third parties. This is a core principle of our anti-predatory business philosophy.
5. Data Security
5.1 Enterprise-Grade Security Measures
Encryption at Rest
All social media access tokens and sensitive data encrypted using industry-standard AES-256 encryption
Encryption in Transit
All data transmission protected by TLS 1.3 encryption via HTTPS. No unencrypted communications, ever.
Zero-Storage Processing
Content processed in-memory only, immediately flushed after publishing. We literally cannot access your posts.
Auth0 Enterprise Security
Industry-standard authentication with multi-factor authentication (MFA) support and OAuth 2.0
Access Controls & Auditing
Strict role-based access controls with comprehensive audit logging and security monitoring
Regular Security Updates
Proactive security patches, dependency updates, and vulnerability assessments
5.2 Data Retention
- Account Data: Retained while your account is active
- Generated Content: Stored only as long as necessary for service delivery
- Access Tokens: Automatically expire and are refreshed as needed
- Logs: Security and error logs retained for 90 days maximum
6. Your Rights and Choices
6.1 Account Control
- Profile Management: Update your profile information at any time
- Platform Connections: Disconnect social media accounts whenever you want
- AI Settings: Enable/disable AI features or modify preferences
- Account Deletion: Delete your account and all associated data (view deletion instructions)
6.2 GDPR Rights (EU Residents)
- Access: Request a copy of your personal data
- Rectification: Correct inaccurate personal data
- Erasure: Request deletion of your personal data
- Portability: Export your data in a machine-readable format
- Objection: Object to processing of your personal data
6.3 CCPA Rights (California Residents)
- Right to know what personal information is collected
- Right to delete personal information
- Right to opt-out of sale (though we don't sell data)
- Right to non-discrimination for exercising these rights
7. AI and Content Generation
7.1 AI Processing
Multiple AI Service Providers
We use a combination of AI providers to offer the best content generation experience. Your prompts may be processed by:
- OpenAI: GPT models for versatile content generation
- Anthropic: Claude models for thoughtful, nuanced content
- Google AI: Gemini models for research and factual content
- Other providers: Additional specialized AI services as we expand
Important: Each AI provider may process your data according to their respective privacy policies. We select providers based on their privacy standards and data handling practices.
- Generated content is returned to you and may be temporarily stored for delivery
- You retain ownership of all content you create or generate
- You can opt out of AI features entirely if you prefer manual content creation
7.2 Content Ownership
Your Content, Your Ownership
You own all content you create or generate through our Service. We do not claim ownership of your posts, ideas, or generated content.
8. Children's Privacy
Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us, and we will take steps to remove such information.
9. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country. We ensure appropriate safeguards are in place to protect your personal information.
10. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by:
- Posting the new Privacy Policy on this page
- Updating the "Last Updated" date
- Sending email notification for significant changes
11. Contact Information
If you have questions about this Privacy Policy or our data practices, please contact us:
This privacy policy is designed to comply with GDPR, CCPA, and other applicable privacy laws. We believe in transparency and honest communication about how your data is used.