This Privacy Policy explains how Autogram collects, uses, and safeguards information when you use our application.
Information We Collect
- Account information such as the email address you provide during registration or sign-in.
- Operational data needed to run automations and deliver content to your channels.
- Technical information like browser type and usage metrics to improve the service.
- Campaign attribution (UTM parameters and the landing page URL) captured when you sign up after arriving from an ad or tracked link, stored with your account.
How We Use Information
- To provide and maintain the application and its features.
- To secure accounts, prevent abuse, and monitor reliability.
- To improve user experience and develop new capabilities.
Cookies and Tracking Technologies
We use cookies and similar technologies to operate the service, understand how it is used, and improve it. You choose which non-essential categories to allow via the consent banner on your first visit. Before you decide, Google may receive cookieless, consent-aware signals (Google Consent Mode); no analytics or advertising cookies are set without your consent.
Cookie Categories
- Essential (always on) — cookies and similar browser storage required for sign-in (authentication tokens), security, language selection, and error monitoring. Cannot be disabled.
- Analytics (requires consent) — Google Analytics 4 (including Google signals for cross-device and aggregate demographic reporting from signed-in Google users), Google Tag Manager, and Microsoft Clarity. Used for aggregate usage statistics, session replay, and performance diagnostics.
- Advertising (requires consent) — Google Ads conversion tracking and the Meta (Facebook) Pixel, used to measure ad conversions and for remarketing. To match conversions more accurately (Enhanced Conversions), a hashed, irreversible version of your email address may be shared with Google and Meta. These load only after you grant advertising consent.
- Functional — UI preferences such as theme are stored locally on your device and are never transmitted to us or to third parties.
Third-Party Services
The following third-party services may receive data from your browser or from our servers when you use Autogram. Each link points to the vendor's own privacy policy.
- Google Tag Manager — loads other analytics scripts based on your consent choices.
- Google Analytics 4 — aggregate usage analytics, loaded via Google Tag Manager when you accept analytics cookies.
- Microsoft Clarity — session replay and heatmaps, loaded via Google Tag Manager when you accept analytics cookies.
- Sentry — error monitoring. Does not use tracking cookies; runs under the essential-cookie category.
- Google OAuth — authentication, used only if you click Sign in with Google.
- Stripe — payment processing, active only during checkout and subscription management.
- WayForPay — payment processing for Ukrainian payment methods, active only during checkout.
- MailerSend — delivers our transactional and newsletter emails; receives your email address and message content.
- Cloudflare — bot protection (Turnstile) on the sign-up form and network delivery for the whole site; may process your IP address. Runs under the essential category.
- OpenAI / Anthropic / Google AI — process the content and instructions you submit for AI generation on our servers; they do not receive data from your browser.
Data Retention
We retain account data for as long as your account exists and delete or anonymize it when the account is deleted. Analytics data in Google Analytics is retained for 14 months. Payment records are retained as long as required by tax and accounting law.
Your Choices
- You can request deletion of your account data subject to legal or operational requirements.
- You can withdraw or change your cookie consent at any time by clicking 'Reject All' or 'Customize' in the banner, or by clearing the autogram_consent_state value from your browser's local storage.
- You can contact us if you have questions about this policy or your data.
Your Data Rights
You have the right to access, correct, export, or request deletion of your personal data, and to withdraw consent for processing. To exercise any of these rights, email us from the address associated with your account. We respond within one month as required by applicable data-protection law. You also have the right to lodge a complaint with your local data-protection supervisory authority. [email protected]
Under GDPR Articles 17 and 20, you can request deletion or a full export of your data — answered within 30 days — by emailing [email protected].
Contact
If you have any questions about this Privacy Policy, please contact the Autogram team.