Foxus legal

Privacy Policy

Effective date: May 7, 2026

1. Who we are

Foxus is a private publishing and scheduling tool for Threads accounts. The service is operated from foxus.online. For privacy questions, contact rakacria@gmail.com.

2. Data we collect

Foxus collects only the information needed to provide the service:

• Account information you provide to Foxus, such as name and email address.
• Authentication data handled through Supabase Auth.
• Threads account identifiers returned after OAuth authorization, such as Threads user ID and username.
• Threads OAuth access tokens, stored encrypted and used only for authorized API requests.
• Post content, scheduled publication times, publication status, external post IDs, and API error logs.
• Basic technical logs needed for security, troubleshooting, and service reliability.

3. How we use data

We use data to authenticate you, connect your Threads accounts, show connected accounts, publish posts you create, run scheduled posts, maintain publication history, prevent duplicate publications, and troubleshoot failed API calls.

4. Meta and Threads data

Foxus uses the Threads API only after you explicitly authorize a Threads account. The MVP requests `threads_basic` to identify the connected account and `threads_content_publish` to publish content you create or schedule. Foxus does not sell Meta or Threads data and does not use it for advertising, profiling, surveillance, or unrelated purposes.

5. Sharing and processors

Foxus shares data only with service providers required to operate the app, including Supabase for authentication/database services, the hosting provider for the web app, and Meta when publishing content through the Threads API. These providers process data only as needed to deliver the service.

6. Data retention

Foxus keeps connected account records, encrypted tokens, posts, schedules, and publication logs while your Foxus account is active or while needed to operate the service. You may request deletion at any time through the Data Deletion page.

7. Security

Foxus stores access tokens encrypted, keeps service-role credentials server-side, and uses Supabase Row Level Security to separate user data. No security measure is perfect, but the app is designed to limit access to the minimum data required.

8. Your choices

You can disconnect Threads accounts in Foxus, revoke app access in your Meta account settings, or request deletion of Foxus data. See the Data Deletion page for instructions.

9. Changes

We may update this policy as Foxus changes. If the data collected or permissions requested change, this page will be updated before those changes are used in production.