Content Composer Content Calendar Unified Social Inbox AI Smart Replies Creative Studio Social Media Analytics RSS Automation White Label See All Products →
For Marketing Teams For Agencies For Enterprises Integrations Compare Explore All Features →
Pricing
Blog Help Center Developers Case Studies Changelog
About
Language: en es fr de ar zh pt tr hi
Log In Sign Up

Privacy Policy

Effective: March 28, 2026 Updated: March 28, 2026
SOC 2 Compliant
GDPR Ready
256-bit SSL
  1. 1. Introduction
  2. 2. Information We Collect
  3. 3. How We Use Your Information
  4. 4. How We Share Your Information
  5. 5. Data Retention
  6. 6. Your Rights and Choices
  7. 7. International Data Transfers
  8. 8. Security Measures
  9. 9. Children's Privacy
  10. 10. Third-Party Links
  11. 11. Changes to This Policy
  12. 12. Contact Us

1. Introduction

ViralDashboard (“we,” “us,” “our,” or the “Company”) operates the ViralDashboard platform, a social media management software-as-a-service application accessible at viraldashboard.com and related subdomains (the “Service”). This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you visit our website, create an account, or use our Service.

We are committed to protecting your privacy and handling your data with transparency. This Privacy Policy applies to all users of our Service, including visitors to our website, free trial users, paying subscribers, and team members added to subscriber accounts.

By accessing or using the Service, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree, please do not use our Service.

2. Information We Collect

2.1 Account Information

When you register for an account, we collect:

  • Full name
  • Email address
  • Password (stored in hashed form)
  • Company or organization name (optional)
  • Phone number (optional)
  • Billing address
  • Profile photograph (optional)
  • Role and job title (optional)
  • Timezone and language preferences

2.2 Billing and Payment Data

When you subscribe to a paid plan, we collect:

  • Payment method details (credit/debit card number, expiration date, CVC)
  • Billing name and address
  • Tax identification numbers (where applicable)

Note: Payment card details are processed and stored by our PCI-DSS compliant payment processor, Stripe. We do not store full card numbers on our servers. We retain only the last four digits and card brand for reference purposes.

2.3 Social Media Account Data

When you connect third-party social media accounts, we may collect:

  • Social media profile information (name, handle, avatar, bio)
  • Authentication tokens and access credentials
  • Posts, comments, messages, and engagement data from connected platforms
  • Audience demographics and analytics provided by the platforms
  • Media files you upload or publish through the Service

2.4 Usage Data

We automatically collect information about how you interact with our Service:

  • IP address and approximate geographic location
  • Browser type, version, and language
  • Operating system and device type
  • Pages viewed, features used, and actions taken
  • Date and time of access
  • Referring URL
  • Session duration and navigation paths
  • Feature usage frequency and patterns

2.5 Cookies and Tracking Technologies

We use cookies, web beacons, pixels, and similar technologies to collect information. Please see our Cookie Policy for full details. Categories include:

  • Essential cookies — Required for the Service to function
  • Analytics cookies — Help us understand usage patterns
  • Functional cookies — Remember your preferences
  • Marketing cookies — Used to deliver relevant advertising

2.6 Communications Data

We collect information from your communications with us, including support ticket content and attachments, chat messages with our support team, survey and feedback responses, and email correspondence.

2.7 AI and Content Generation Data

When you use our AI-powered features (content suggestions, image generation, caption writing, hashtag recommendations), we collect prompts and instructions you provide, generated content and your selections, and feedback on generated content quality.

2.8 Information from Third Parties

We may receive information from social media platforms via their APIs, business partners and resellers who refer you to our Service, publicly available sources for fraud prevention, and identity verification services.

3. How We Use Your Information

3.1 Service Delivery and Operations

  • Provide, operate, and maintain the Service
  • Process and complete transactions
  • Authenticate your identity and manage your account
  • Connect and manage your social media accounts
  • Schedule, publish, and manage your social media content
  • Generate analytics and reports
  • Power AI-driven content and image generation features
  • Provide customer support and respond to inquiries

3.2 Service Improvement

  • Analyze usage patterns and feature adoption
  • Conduct research and development
  • Develop new features and products
  • Monitor and improve Service performance, reliability, and security
  • Train and improve our AI models (using aggregated, anonymized data only — never individual customer content without explicit consent)

3.3 Communications

  • Send transactional emails (account confirmations, password resets, billing receipts)
  • Send product updates, feature announcements, and service notifications
  • Deliver marketing communications (with your consent, where required)
  • Respond to support requests

3.4 Security and Compliance

  • Detect, prevent, and investigate fraud, abuse, and security incidents
  • Enforce our Terms of Service and Acceptable Use Policy
  • Comply with legal obligations and respond to lawful requests
  • Protect the rights, property, and safety of ViralDashboard, our users, and the public

3.5 Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), United Kingdom, and Switzerland, we process personal data under the following legal bases:

PurposeLegal Basis
Service deliveryPerformance of contract (Art. 6(1)(b) GDPR)
Billing and paymentsPerformance of contract (Art. 6(1)(b) GDPR)
Security and fraud preventionLegitimate interest (Art. 6(1)(f) GDPR)
Service improvement and analyticsLegitimate interest (Art. 6(1)(f) GDPR)
Marketing communicationsConsent (Art. 6(1)(a) GDPR)
Legal complianceLegal obligation (Art. 6(1)(c) GDPR)
AI model improvementConsent (Art. 6(1)(a) GDPR)

4. How We Share Your Information

We do not sell your personal information. We share your information only in the following circumstances:

4.1 Service Providers (Sub-Processors)

We engage trusted third-party service providers who process data on our behalf to deliver the Service:

ProviderPurposeData Processed
Amazon Web Services (AWS)Cloud infrastructure and hostingAll service data
StripePayment processingPayment and billing data
Postmark / AWS SESTransactional email deliveryEmail addresses, message content
OpenAIAI content generationPrompts and generated content
CloudflareCDN, DDoS protection, DNSIP addresses, traffic data
SentryError monitoring and reportingError logs, device info
Google AnalyticsWebsite analyticsUsage data, anonymized IP
IntercomCustomer support and chatName, email, support messages

A complete and up-to-date list of sub-processors is maintained on our GDPR Compliance page.

4.2 Social Media Platforms

When you use the Service to publish content, manage inboxes, or retrieve analytics, we transmit data to and receive data from the social media platforms you have connected. This sharing is necessary to deliver the Service and is governed by each platform's own privacy policy and API terms.

4.3 With Your Consent

We may share your information with third parties when you explicitly consent, such as when you authorize an integration with a third-party tool.

4.4 Legal Obligations

We may disclose your information when required by law, regulation, legal process, or enforceable governmental request, including court orders and subpoenas, regulatory investigations, law enforcement requests, and tax and audit requirements.

4.5 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will notify you via email or prominent notice on our website before your information becomes subject to a different privacy policy.

4.6 Aggregated and De-identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you.

5. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes described in this Privacy Policy:

Data TypeRetention Period
Account informationDuration of account + 30 days after deletion request
Billing and payment records7 years (tax and legal compliance)
Social media content and analyticsDuration of account + 30 days after deletion
Usage and analytics data26 months
Server and access logs90 days
Support tickets3 years after resolution
Marketing consent recordsDuration of consent + 3 years
AI prompts and generated contentDuration of account + 30 days after deletion
CookiesSee Cookie Policy for specific durations

When you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law or for legitimate business purposes.

6. Your Rights and Choices

6.1 Rights Under GDPR (EEA, UK, Switzerland)

  • Right of Access (Art. 15) — Request a copy of the personal data we hold about you.
  • Right to Rectification (Art. 16) — Request correction of inaccurate or incomplete data.
  • Right to Erasure (Art. 17) — Request deletion of your personal data (“right to be forgotten”).
  • Right to Restriction (Art. 18) — Request restriction of processing in certain circumstances.
  • Right to Data Portability (Art. 20) — Receive your data in a structured, commonly used, machine-readable format.
  • Right to Object (Art. 21) — Object to processing based on legitimate interests or for direct marketing.
  • Right to Withdraw Consent (Art. 7(3)) — Withdraw consent at any time where processing is based on consent.
  • Right Not to Be Subject to Automated Decision-Making (Art. 22) — Object to decisions based solely on automated processing.

To exercise these rights, contact us at privacy@viraldashboard.com. We will respond within 30 days.

6.2 Rights Under CCPA/CPRA (California Residents)

  • Right to Know — Request disclosure of the categories and specific pieces of personal information we have collected.
  • Right to Delete — Request deletion of your personal information.
  • Right to Correct — Request correction of inaccurate personal information.
  • Right to Opt-Out of Sale/Sharing — We do not sell your personal information.
  • Right to Non-Discrimination — We will not discriminate against you for exercising your rights.

6.3 Other Jurisdictions

We respect the privacy rights granted by applicable law in your jurisdiction. If you are located in Brazil (LGPD), Canada (PIPEDA), Australia (Privacy Act), or another jurisdiction with privacy legislation, please contact us and we will honor your applicable rights.

6.4 Marketing Communications

You may opt out of marketing communications at any time by clicking the “unsubscribe” link in any marketing email, updating your preferences in your account settings, or contacting us at privacy@viraldashboard.com.

6.5 Account Data Export

You may export your data at any time through the Service by navigating to Settings > Account > Export Data. The export includes your account information, content, analytics, and connected account data in standard formats (CSV, JSON).

7. International Data Transfers

ViralDashboard is operated from servers located in the United States and the European Union. For transfers from the EEA, UK, or Switzerland to countries without an adequacy decision, we rely on:

  • Standard Contractual Clauses (SCCs) — EU Commission-approved contractual clauses
  • UK International Data Transfer Addendum — For transfers from the UK
  • Data Processing Agreements — With all sub-processors, incorporating SCCs where required

You may request a copy of the applicable transfer safeguards by contacting privacy@viraldashboard.com.

8. Security Measures

We implement appropriate technical and organizational measures to protect your personal information, including:

  • Encryption at rest using AES-256 for all stored data
  • Encryption in transit using TLS 1.3 for all data transmissions
  • Access controls with role-based permissions and multi-factor authentication for staff
  • Regular security assessments including penetration testing and vulnerability scanning
  • Incident response procedures with defined escalation paths
  • Employee training on data protection and security practices
  • Database backups with encryption and tested restoration procedures
  • Audit logging of access to personal data

For more detail, please see our Security page.

9. Children's Privacy

Our Service is not directed to children under the age of 16. We do not knowingly collect personal information from children. If we learn that we have collected personal data from a child without appropriate parental consent, we will delete that information promptly.

Our Service may contain links to third-party websites, services, or integrations. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party service you access through our platform.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website with a new “Last Updated” date, sending an email notification to your registered email address, and displaying a prominent notice within the Service.

12. Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or our data practices, please contact us:

ViralDashboard — Privacy Team
Email: privacy@viraldashboard.com
Website: viraldashboard.com/contact

Data Protection Officer
Email: dpo@viraldashboard.com

ViralDashboard EU Representative
Email: eu-privacy@viraldashboard.com

This Privacy Policy is effective as of March 28, 2026.