Privacy Policy
Last updated: 6 July 2026
Who we are
Soltyx ("we", "us") is a content management and publishing platform at soltyx.app. It lets businesses manage their website content, bookings, courses, offers and social media publishing from one dashboard. For any privacy question, contact dmisi98@gmail.com.
What we collect
- Account data: your name, email address and a hashed password (or your Google account identifier if you sign in with Google).
- Content you create: blog posts, pages, images, videos, courses, offers, quizzes and social media posts you compose or schedule.
- Connected account data: when you connect a third-party account (Google Calendar, Stripe, Facebook, Instagram, X, TikTok), we store the account's name, handle, avatar and the access tokens the platform issues. We receive only what you authorise on the platform's own consent screen.
- Your customers' data: if you use bookings, payments, courses or forms, we store the details your customers submit (name, email, booking times, purchases) on your behalf.
How we use it
Solely to provide the service: authenticating you, storing and serving your content, publishing posts to social networks you have connected at the times you choose, processing bookings and payments, and sending transactional email (confirmations, receipts, password resets). We do not sell personal data, use it for advertising, or share it with third parties beyond the service providers listed below.
Social publishing specifically
When you connect a Facebook Page, Instagram account, X account or TikTok account, we store the OAuth tokens the platform issues - encrypted at rest (AES-256-GCM) - and use them for exactly one purpose: publishing the posts you compose, when you tell us to. We do not read your messages, followers, feeds or analytics. You can disconnect any account at any time from the dashboard (Social > Connections), which deletes its tokens immediately; you can also revoke Soltyx's access from the platform's own settings.
Service providers
We rely on a small set of processors to run the service: Vercel (hosting), Neon (database), Stripe (payments), Resend (transactional email), and the platforms you choose to connect (Google, Meta, X, TikTok). Each receives only the data needed for its function.
Retention and security
We keep data while your account is active. OAuth tokens and passwords are encrypted or hashed at rest; access to production systems is restricted; all traffic is TLS-encrypted. Disconnecting an integration deletes its tokens at once; published-post history (without tokens) is kept so your records remain intact.
Data deletion
You can delete your data as follows:
- A connected social account: dashboard > Social > Connections > Disconnect - tokens are deleted immediately.
- Individual content: delete it in the dashboard.
- Your entire account and all associated data: email dmisi98@gmail.com from your account's email address with the subject "Delete my account". We action deletion requests within 30 days and confirm when complete.
Your rights
Depending on where you live (including under UK and EU GDPR), you may have rights to access, correct, export, restrict or delete your personal data. Contact us at the address above and we will help.
Cookies
We use only essential cookies: a session cookie to keep you signed in, and short-lived security cookies during account-connection flows. No advertising or cross-site tracking cookies.
Changes
If this policy changes materially we will update this page and the date above. Continued use of the service after a change means you accept the updated policy.