link
Linky Posts
Log In

Privacy Policy

Last updated: April 7, 2026

This Privacy Policy describes how Linky Posts, a product operated by TV Posts, Inc., a Delaware corporation (“we,” “us,” or “our”), collects, uses, and protects your information when you use our LinkedIn content creation and scheduling service available at linkyposts.com and app.linkyposts.com (the “Service”).

TV Posts, Inc. is the data controller for the personal information we collect through the Service. For privacy questions or requests, contact us at joe@linkyposts.com.

1. Information We Collect

1.1 Account information

When you sign up, we collect your name, email address, and authentication identifiers from Google or GitHub OAuth. We use this information to create and manage your account.

1.2 LinkedIn account data

When you connect your LinkedIn account via OAuth 2.0, we receive and store the following from LinkedIn’s API:

  • Your LinkedIn member URN (a stable identifier)
  • Your name, headline, and profile picture (for display in the app)
  • An OAuth access token and refresh token, encrypted at rest using AES-256-GCM
  • Post URNs for posts you publish through Linky Posts
  • Post analytics metrics (impressions, reactions, comments, reshares, members reached) when you view your dashboard — fetched on demand and not retained beyond 48 hours

1.3 LinkedIn organization page data

If you connect a LinkedIn Company Page that you administer, we additionally collect and cache for up to 24 hours:

  • The organization’s URN, display name, and logo URL
  • Your administrative permissions on the page (read from LinkedIn’s API)

We only fetch organization data for pages where you hold administrator permissions, and we verify those permissions through LinkedIn’s organizationAuthorizations endpoint before enabling page posting features. We never post to a Company Page without your explicit, per-post selection of that page as the destination.

1.4 Content you create

We store the LinkedIn posts you draft, schedule, and publish through Linky Posts, including any AI-generated drafts, images, and post metadata (scheduled time, status, target destination).

1.5 Usage data

We collect basic usage analytics (page views, feature usage) via Microsoft Clarity to improve the Service. This data is not linked to your LinkedIn identity.

2. How We Use Your Information

  • To provide the Service: drafting, scheduling, and publishing your LinkedIn content
  • To publish posts to LinkedIn on your behalf at the times you schedule
  • To display your post performance metrics in your dashboard
  • To send you transactional emails (account confirmation, billing receipts)
  • To comply with our legal obligations and LinkedIn’s API Terms of Use

We do not sell your data. We do not share your LinkedIn data with third parties for marketing purposes. We do not train AI models on your content.

3. Data Retention

  • LinkedIn analytics data: Fetched from LinkedIn’s API on demand and not cached beyond 48 hours, in compliance with LinkedIn’s data retention policies.
  • LinkedIn profile data: Cached for up to 24 hours for UI display, then refreshed from the API.
  • LinkedIn organization page data: Cached for up to 24 hours, then refreshed from the API.
  • OAuth tokens: Stored encrypted (AES-256-GCM) and refreshed proactively per LinkedIn’s token lifecycle. Deleted immediately when you disconnect your LinkedIn account.
  • Posts and drafts: Retained for the lifetime of your account, until you delete them or close your account.

4. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate personal data
  • Delete your account and all associated data
  • Disconnect your LinkedIn account at any time from your Settings page, which immediately deletes all stored LinkedIn tokens, profile data, and organization data
  • Export your posts and drafts in a machine-readable format on request

To exercise any of these rights, contact joe@linkyposts.com. We will respond within 30 days.

5. What Happens If LinkedIn Access Is Terminated

If LinkedIn terminates our API access, we will delete all LinkedIn-derived data (member URNs, organization data, post URNs, analytics metrics, OAuth tokens) from our systems within 10 days of termination.

6. Security

We protect your data with industry-standard security measures, including:

  • AES-256-GCM encryption for all OAuth tokens and API credentials at rest
  • HTTPS/TLS for all data in transit
  • OAuth 2.0 (authorization code flow) for all third-party integrations
  • Per-user data isolation enforced at the database query layer
  • Hosted on Railway with isolated network and access controls

No method of transmission or storage is 100% secure, so we cannot guarantee absolute security. We will notify affected users without undue delay if we become aware of a data breach involving their personal information.

7. International Transfers and GDPR

Linky Posts is operated from the United States. If you are located in the European Economic Area, the United Kingdom, or other regions with data protection laws, your data will be transferred to and processed in the United States. We process personal data in accordance with the General Data Protection Regulation (GDPR) where applicable, and rely on legitimate interest and contractual necessity as our legal bases for processing.

8. Children’s Privacy

Linky Posts is not intended for users under the age of 16. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or via an in-app notice. The “Last updated” date at the top of this page will reflect the most recent revision.

10. Contact Us

For any questions about this Privacy Policy or our data practices, contact:

TV Posts, Inc.
Operating as Linky Posts
Email: joe@linkyposts.com