PostBlink

Privacy Policy

Last updated: November 8, 2025

Introduction

PostBlink ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Chrome browser extension and website (collectively, the "Service"). Please read this privacy policy carefully.

Information We Collect

1. Personal Information

When you sign in with Google OAuth, we collect:

  • Your email address
  • Your name
  • Your Google profile picture (optional)
  • Unique user identifier (UID) from Firebase Authentication

2. API Keys

If you use the "Bring Your Own API Key" feature (Pro Lifetime plan), your OpenRouter API key is stored locally in your browser using Chrome's encrypted storage (chrome.storage.sync). We do not have access to this key—it never leaves your device except to make API calls directly to OpenRouter from your browser.

3. Usage Data

We collect usage information to enforce quotas and improve the service:

  • Number of API requests per day and per minute
  • Number of tokens consumed
  • Timestamps of requests
  • Selected AI model and platform (LinkedIn, Twitter, etc.)
  • Error logs (if requests fail)

4. Payment Information

Payment processing is handled by Dodo Payments. We do not store your credit card information. We receive only:

  • Transaction ID
  • Payment status (succeeded, failed, refunded)
  • Subscription status (active, cancelled, expired)
  • Email address associated with the payment

5. Content Submitted for Summarization

When you click "Summarize" on a post, the text content is sent to OpenRouter's API for processing. We do not permanently store this content. OpenRouter may temporarily cache requests as described in their privacy policy.

How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service
  • Authenticate users and manage accounts
  • Enforce usage quotas and rate limits
  • Process payments and manage subscriptions
  • Send claim emails for entitlements
  • Provide customer support
  • Analyze usage patterns to improve the Service
  • Detect and prevent fraud or abuse
  • Comply with legal obligations

How We Share Your Information

We share your information with third-party service providers who help us operate the Service:

Third-Party Services

  • Firebase (Google): Authentication and database storage
  • Upstash Redis: Quota tracking and rate limiting
  • OpenRouter: AI model API for generating summaries
  • Dodo Payments: Payment processing
  • Resend: Transactional email delivery
  • Vercel: Hosting and deployment
  • PostHog (optional): Privacy-friendly analytics

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

Data Storage and Security

We implement security measures to protect your information:

  • All data transmission uses HTTPS encryption
  • API keys are stored encrypted in Chrome's secure storage
  • Firebase authentication tokens are validated server-side
  • Webhook signatures are verified (Dodo Payments)
  • Firestore security rules prevent unauthorized access
  • Rate limiting prevents abuse

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. Usage data (quotas) is stored for the current billing period and may be aggregated for analytics. If you delete your account, we will delete your personal information within 30 days, except where retention is required by law.

Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal information
  • Portability: Request a copy of your data in a machine-readable format
  • Objection: Object to processing of your personal information
  • Restriction: Request restriction of processing in certain circumstances

To exercise these rights, please contact us using the information provided in the Contact Us section below.

Cookies and Tracking

The Chrome extension does not use cookies. Our website may use cookies for authentication (Firebase) and analytics (PostHog, if enabled). You can control cookies through your browser settings.

Children's Privacy

PostBlink is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. By using the Service, you consent to the transfer of your information to the United States and other countries where our service providers operate. We ensure appropriate safeguards are in place to protect your data.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by updating the "Last updated" date at the top of this policy. Continued use of the Service after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Write to UsGo to Website