Back to Home

    Privacy Policy

    Last Updated: November 9, 2025

    1. Introduction

    Brandly ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service at usebrandly.com.

    By using Brandly, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

    2. Information We Collect

    2.1 Information You Provide

    We collect information that you voluntarily provide when using our Service:

    • Account Information: Name, email address, and password when you create an account
    • Brand DNA Samples: Content samples, brand guidelines, and writing examples you provide for brand voice analysis
    • Generated Content: Content created through our AI tools
    • Profile Information: Company name, industry, target audience, and other workspace settings
    • Payment Information: Billing details processed through our payment processor (Stripe)

    2.2 Information from Third-Party Authentication

    When you sign in using third-party services (Google OAuth), we collect:

    • From Google: Your name, email address, and profile picture
    • We only access information necessary for authentication and do not access your Google Drive, Gmail, or other Google services without explicit permission

    2.3 Platform Integration Data

    When you connect third-party platforms (Twitter, LinkedIn, Medium, Substack), we collect:

    • OAuth Tokens: Access tokens and refresh tokens (encrypted and securely stored)
    • Platform Profile Data: Username, profile information necessary for publishing
    • Publishing Permissions: Only the permissions you explicitly grant for content publishing
    • Analytics Data: Performance metrics for content published through our Service

    2.4 Automatically Collected Information

    When you use our Service, we automatically collect:

    • Usage Data: Pages visited, features used, time spent, and interaction patterns
    • Device Information: Browser type, operating system, device type, and IP address
    • Cookies and Similar Technologies: Session cookies for authentication and functionality
    • Performance Metrics: API response times, error logs, and system performance data

    3. How We Use Your Information

    We use the collected information for the following purposes:

    • Provide the Service: Process your content, generate AI-powered outputs, and publish to connected platforms
    • Brand Voice Analysis: Analyze your brand DNA samples to create personalized content that matches your style
    • Account Management: Create and manage your account, authenticate access, and provide customer support
    • Billing: Process payments and manage subscriptions
    • Improve the Service: Analyze usage patterns to enhance features, fix bugs, and optimize performance
    • Communications: Send service updates, security alerts, and support messages (we will not send marketing emails without your consent)
    • Security: Detect and prevent fraud, abuse, and security incidents
    • Legal Compliance: Comply with legal obligations and enforce our Terms of Service

    4. How We Share Your Information

    We do not sell your personal information. We may share your information only in the following circumstances:

    4.1 Service Providers

    • AI Providers: OpenAI, Anthropic, and Google for content generation (your content is processed according to their privacy policies)
    • Payment Processor: Stripe for payment processing
    • Infrastructure: AWS for hosting and storage services
    • Analytics: Service monitoring and error tracking tools

    All service providers are bound by confidentiality agreements and only process your data as necessary to provide services.

    4.2 Publishing Platforms

    When you publish content through our Service, that content is shared with your connected platforms (Twitter, LinkedIn, Medium, Substack) according to your publishing settings.

    4.3 Legal Requirements

    We may disclose your information if required by law, court order, or to:

    • Comply with legal processes
    • Protect our rights, property, or safety
    • Prevent fraud or illegal activities
    • Protect the rights and safety of our users

    4.4 Business Transfers

    If we are involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change.

    5. Data Security

    We implement industry-standard security measures to protect your information:

    • Encryption: All data is encrypted in transit (TLS/SSL) and at rest (AES-256)
    • Authentication: Secure password hashing (bcrypt) and session management
    • Access Controls: Strict access controls and role-based permissions
    • Platform Credentials: OAuth tokens are encrypted using AES-256-GCM before storage
    • Infrastructure Security: Secure cloud infrastructure with regular security updates
    • Monitoring: Continuous monitoring for security threats and anomalies

    While we strive to protect your information, no method of transmission or storage is 100% secure. You are responsible for maintaining the security of your account credentials.

    6. Data Retention

    We retain your information for as long as your account is active or as needed to provide the Service. Specifically:

    • Account Data: Retained until you delete your account
    • Content and Brand DNA: Retained until you delete them or close your account
    • Usage Logs: Retained for 90 days for security and debugging purposes
    • Billing Records: Retained for 7 years as required by law

    After account deletion, we will delete or anonymize your personal information within 30 days, except where we are legally required to retain it.

    7. Your Privacy Rights

    Depending on your location, you may have the following rights:

    • Access: Request a copy of your personal information
    • Correction: Request correction of inaccurate information
    • Deletion: Request deletion of your information (right to be forgotten)
    • Data Portability: Request your data in a structured, machine-readable format
    • Objection: Object to processing of your information
    • Restriction: Request restriction of processing
    • Withdraw Consent: Withdraw consent for data processing (where consent is the legal basis)

    To exercise these rights, please contact us at [email protected]. We will respond to your request within 30 days.

    8. Cookies and Tracking Technologies

    We use cookies and similar technologies to:

    • Essential Cookies: Required for authentication and basic functionality
    • Functionality Cookies: Remember your preferences and settings
    • Analytics Cookies: Understand how you use the Service to improve it

    You can control cookies through your browser settings. Disabling essential cookies may affect the functionality of the Service.

    9. Third-Party Services

    Our Service integrates with third-party services, each with their own privacy policies:

    We are not responsible for the privacy practices of these third-party services. Please review their policies before using our Service.

    10. International Data Transfers

    Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy and applicable data protection laws.

    11. Children's Privacy

    Our Service is not intended for children under 13 years of age (or 16 in the European Union). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

    12. California Privacy Rights

    If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

    • Right to know what personal information we collect, use, and share
    • Right to delete your personal information
    • Right to opt-out of the sale of personal information (we do not sell your information)
    • Right to non-discrimination for exercising your privacy rights

    13. European Privacy Rights (GDPR)

    If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

    • Legal Basis: We process your data based on consent, contract performance, or legitimate interests
    • Data Protection Officer: Contact [email protected] for GDPR inquiries
    • Supervisory Authority: You have the right to lodge a complaint with your local data protection authority

    14. Changes to This Privacy Policy

    We may update this Privacy Policy from time to time. We will notify you of material changes by:

    • Email notification to your registered email address
    • Prominent notice on our Service
    • Updating the "Last Updated" date at the top of this page

    Your continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.

    15. Contact Us

    If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us:

    Email: [email protected]
    Data Protection Officer: [email protected]
    Website: https://usebrandly.com

    For privacy-related requests (access, deletion, etc.), please include "Privacy Request" in your email subject line.

    © 2025 Brandly. All rights reserved.

    Privacy Policy | Brandly | Brandly