Privacy Policy

1. Information We Collect

Bleet collects information necessary to provide our social media intelligence services:

• Social Media Data: Posts, engagement metrics, and public profile information from connected social media accounts
• Usage Data: How you interact with our platform, features used, and engagement patterns
• Account Information: Email address, name, and authentication credentials
• Email Address: We collect your email address when you authenticate with X (Twitter) using OAuth. This is required for account creation, communication, and account recovery.
• Analytics Data: Aggregated, anonymized data to improve our services
• Voice Recordings (iOS App): Audio recordings captured through the Bleet iOS app microphone feature, used solely for transcription into text content
• Device Information (iOS App): Device type, operating system version, and app version for troubleshooting and compatibility purposes

2. How We Use Your Information

We use your information to:

• Analyze your social media behavior and preferences
• Generate personalized engagement suggestions
• Improve our AI algorithms and recommendation engine
• Provide customer support and respond to inquiries
• Ensure platform security and prevent abuse
• Email Address Use: Your email address is used for account creation and verification, sending important service notifications, product updates, account recovery, and customer support communications. We do not use your email address for marketing purposes without your explicit consent.
• Voice Recording Processing: Audio recorded through the iOS app is transmitted to our servers and processed using OpenAI's Whisper speech-to-text service for transcription. The resulting text is saved as a source for generating social media content.

3. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share information only in these limited circumstances:

• Service Providers: Trusted third-party services that help us operate our platform (hosting, analytics, etc.)
• Legal Requirements: When required by law or to protect our rights and safety
• Consent: When you explicitly authorize us to share specific information

4. Data Security

We implement industry-standard security measures to protect your information:

• Encryption of data in transit and at rest
• Regular security audits and updates
• Access controls and authentication requirements
• Secure data centers and infrastructure

5. Your Rights and Choices

You have the right to:

• Access and download your personal data
• Correct inaccurate information
• Delete your account and associated data
• Opt out of certain data processing activities
• Withdraw consent for data collection

6. Data Retention

We retain your information only as long as necessary to provide our services and comply with legal obligations. When you delete your account, we will delete your personal data within 30 days, except where retention is required by law.

7. Third-Party Services and Authentication

Our platform integrates with social media and productivity services. Below we describe how we handle data from each integration:

X (Twitter)

When you authenticate with X using OAuth:

• X/Twitter provides us with your email address as part of the OAuth authentication process
• We request access to your email address to create and manage your account
• X/Twitter's privacy policy governs their collection and use of your information. You can review X/Twitter's privacy policy at https://twitter.com/privacy
• We only access data you explicitly authorize us to access during the OAuth flow
• Your email address is stored securely and used only as described in this privacy policy

Zoom

When you connect your Zoom account:

• Data Collected: We access your Zoom cloud recording transcripts when you authorize our app. We collect meeting transcript text, meeting titles, and participant names (if included in the transcript).
• How We Use It: Transcript content is analyzed by our AI to generate social media post suggestions based on your meeting discussions.
• Data Storage: Zoom OAuth tokens (access and refresh tokens) are stored encrypted at rest in our database. Transcript content is stored to enable content generation.
• Webhook Events: We receive notifications from Zoom when new recordings with transcripts are available. All webhook communications are verified using cryptographic signatures.
• Your Control: You can disconnect your Zoom account at any time from your Bleet settings. Disconnecting removes your Zoom OAuth tokens. You can delete individual transcript sources or your entire account to remove transcript content.
• Zoom's privacy policy governs their collection and use of your information. You can review Zoom's privacy policy at https://zoom.us/privacy

Bleet iOS App

When you use the Bleet iOS app:

• Microphone Access: The app requests access to your device's microphone to record voice notes. Audio is recorded in AAC format at high quality. You can revoke microphone access at any time through your device's Settings.
• Audio Recording and Transcription: Voice recordings are uploaded to our servers and transcribed using OpenAI's Whisper API. The audio data is transmitted securely over HTTPS. OpenAI processes the audio solely for transcription and does not retain it beyond the processing request. The resulting transcript text is stored as a source in your Bleet account.
• Background Audio: The app may continue recording audio when it is in the background, so you can switch to other apps without interrupting a recording session. Background recording only occurs when you have actively started a recording.
• On-Device Storage: Your authentication token and API configuration are stored securely in the iOS Keychain, which provides hardware-level encryption. Recording files are stored temporarily on your device and may be deleted after successful upload and transcription.
• Network Communication: The app communicates with our servers at app.getbleet.com over HTTPS for authentication, source management, post generation, and queue management. No data is shared with third parties other than OpenAI for transcription purposes.
• No Tracking or Analytics SDKs: The Bleet iOS app does not include any third-party analytics, advertising, or tracking SDKs. We do not collect device identifiers for advertising purposes.
• OAuth Authentication: If you sign in using LinkedIn or X (Twitter), the app uses Apple's ASWebAuthenticationSession to securely handle the OAuth flow within a system-managed browser session. Your social media credentials are never accessed or stored by the app.

8. Children's Privacy

Our services are not intended for children under 13. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will delete the information immediately.

9. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the new policy on our website and updating the "Last updated" date. Your continued use of our services constitutes acceptance of the updated policy.

10. Links to Privacy Policy and Terms of Service

This privacy policy is available at: https://www.getbleet.com/privacy

Our Terms of Service are available at: https://www.getbleet.com/terms

By authenticating with X (Twitter) and providing your email address, you acknowledge that you have read and agree to both our Privacy Policy and Terms of Service.

11. Contact Us

If you have questions about this privacy policy or our data practices, including how we collect and use your email address, please contact us at: