Privacy Policy

What We Collect

We collect the minimum information necessary to operate the service:

• License validation data — your license key and a device fingerprint (hardware ID), used solely to verify your subscription status. This data is transmitted to our license server over HTTPS and is not shared with third parties.
• Email address — collected only at the time of purchase, used to deliver your license key and send renewal reminders. We do not send marketing emails without your consent.
• Crash reports — if you opt in, anonymous diagnostic information may be sent when the app crashes. No personally identifiable information is included.

We do not collect:

• Your Twitter/X credentials or OAuth tokens
• The content of your tweets, messages, or DMs
• Your Python scripts or workspace data
• Your AI provider API keys
• Any browsing activity or usage analytics

How We Use Data

Data we collect is used exclusively for:

• Verifying your license entitlement and enforcing device limits
• Delivering your license key via email after purchase
• Responding to support inquiries you initiate
• Diagnosing crashes and improving software stability (opt-in only)

We never use your data for advertising, profiling, or sale to third parties.

Local Data Storage

All operational data — including account credentials, workspace files, task scripts, Data Blocks, AI provider configurations, and Feishu tokens — is stored locally in your macOS application data directory (~/Library/Application Support/TweetPilot/).

This data never leaves your device unless you explicitly export it. Uninstalling TweetPilot removes the application but does not automatically delete this directory; you may delete it manually at any time.

Third-Party Services

TweetPilot integrates with the following third-party services at your direction:

• Twitter / X API — governed by X's own Privacy Policy. Your credentials are stored locally and sent directly to X's servers.
• TweetClaw Chrome Extension — communicates locally via WebSocket. No data is sent to external servers by the extension bridge.
• AI Providers (Anthropic, OpenAI, Ollama, etc.) — when you use the AI chat feature, your prompts are sent to the provider you have configured. Review each provider's privacy policy for details.
• Feishu / Lark — messages and reports you configure TweetPilot to send are transmitted to Feishu's servers under your account.
• Stripe — payment processing for annual licenses. We do not store your card details. Stripe's Privacy Policy applies to payment data.

Data Retention

License purchase records and associated email addresses are retained for a minimum of 3 years for accounting and legal compliance purposes. You may request deletion of your email address after your license has expired by contacting us at ribencong@gmail.com.

Device fingerprint records linked to license keys are deleted 90 days after license expiry.

Your Rights

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data (subject to legal retention requirements)
• Object to processing of your data

To exercise any of these rights, contact us at ribencong@gmail.com. We will respond within 30 days.

Children's Privacy

TweetPilot is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version on this page with a revised effective date. For material changes, we will provide notice via the TweetPilot website or in-app notification.

Contact

For privacy-related questions or requests:

• Email: ribencong@gmail.com
• Feishu / Lark: search ribencong