How we collect, use, and protect your data
This policy explains how Tonimus handles your personal data, including data accessed through connected platforms such as Instagram, Facebook, YouTube, and LinkedIn. To request deletion of your data, see our Data Deletion page.
Tonimus connects to Google APIs, including the YouTube Data API and YouTube Analytics API, when you choose to connect your YouTube account. Tonimus's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
What data we access from Google/YouTube, and why:
youtube.readonly) — to display your channel information and the posts Tonimus manages on your behalf.youtube.upload) — to publish videos you create through Tonimus to your YouTube channel at your direction.youtube.force-ssl) — to read and reply to comments on your videos through the Tonimus interface.yt-analytics-monetary.readonly) — to show you estimated revenue and performance metrics for your content within the Tonimus dashboard.userinfo.profile) — to identify your connected account.How we handle this data — Limited Use commitments:
We collect and process the following categories of personal data when you use Tonimus: (1) account information you provide directly, such as your name, email address, and password; (2) connected platform data that you authorize us to access through your linked accounts (Instagram, Facebook, YouTube, LinkedIn, X, Reddit, TikTok, and others), including profile details, content, posts, comments, audience metrics, and revenue and performance analytics; and (3) usage data generated as you interact with the Tonimus dashboard, such as the content you upload and the posts you schedule.
We use your data solely to provide and improve the user-facing features you request: generating and publishing social media posts on your behalf, managing comments and engagement, displaying analytics and revenue attribution across your connected platforms, and operating your account. We do not use your data for advertising, profiling, credit determination, or any purpose unrelated to providing the Tonimus service. We do not use connected-platform data to train generalized or non-personalized AI or machine-learning models.
We do not sell your personal data or connected-platform data to third parties. We do not transfer or disclose your information to third parties except as needed to provide the service you requested. We may share data with trusted service providers (such as cloud hosting and infrastructure providers) who process it on our behalf, under contractual confidentiality obligations, and only to the extent necessary to operate Tonimus. We may also disclose data where required by law or to protect the security and integrity of our service.
We retain your personal data only for as long as needed to provide the Tonimus service and fulfill the purposes described in this policy, unless a longer retention period is required by law. When the retention period expires, or when you delete your account, we delete or anonymize your data. You may request deletion of your data at any time via our Data Deletion page; deletion requests are processed within 30 days.
We implement security procedures to protect the confidentiality and integrity of your data. Data is encrypted in transit using TLS/HTTPS and encrypted at rest. Access tokens for your connected platforms are stored securely and access to user data is restricted to authorized personnel and processes. We maintain appropriate technical and organizational safeguards against unauthorized access, disclosure, alteration, or destruction of your data.
The complete legal version of our Privacy Policy is provided below.