SocialCopilotSocialCopilot
Obtenir l'extension

Politique de confidentialité

Dernière mise à jour : 25 mai 2026

SocialCopilot est une extension Chrome local-first développée par LuSoft. Cette politique explique quelles données sont traitées, où elles sont stockées et quels sont vos droits.

En bref

  • Your audiences, contacts, message templates, sequences, scheduled queues, and conversation logs stay on your device in chrome.storage.local.
  • LuSoft does not operate a cloud database of your audiences or messages.
  • The only cloud services involved are Firebase Authentication (sign-in + Pro entitlement) and Stripe (payment processor for Pro subscriptions). Both receive only the minimum data described below.
  • If you enable the optional BYOK draft-assist, prompts you write go directly from your browser to an AI provider you choose. LuSoft does not see, proxy, or store those prompts.

What stays on your device

  • Audience lists, imported contact files, conversation tags, and per-contact stage metadata.
  • Message templates, variations (placeholder variables and alternative phrasings), and sequence definitions.
  • Scheduler queues, daily counters, batch settings, and reply-watch lists.
  • Inbox log entries (sender handle, message body, timestamps) used for reply detection and reminders.
  • UI preferences (theme, layout, onboarding state).

If you uninstall the extension or clear extension storage, this data is permanently deleted from your device.

What touches the cloud (and only this)

Google sign-in (Firebase Authentication)

When you sign in, Firebase Authentication stores your Google account UID and email address, and the timestamp of your most recent sign-in. We use this exclusively to verify it is you across sessions and check whether your account has an active Pro entitlement. No audiences, sequences, contacts, or messages are uploaded.

Paiements (Stripe)

Les achats Pro sont traités par Stripe Payments Europe, Ltd. Stripe reçoit les données de facturation et de paiement ; LuSoft ne reçoit que l'identifiant client, le statut d'abonnement, le plan, le pays et la devise. Politique Stripe : https://stripe.com/privacy. Achats via Polar.sh : Polar est revendeur officiel ; https://polar.sh/legal/privacy.

Subscription status sync (Firebase Firestore)

We store a minimal record in Firestore so the extension can recognise your Pro status across devices: your Firebase UID, Stripe customer ID, subscription ID, current plan, status, and country, plan start/renewal/cancellation timestamps, and an email for transactional subscription notifications only. This record contains no contact data, audience lists, template content, message bodies, or conversation logs.

Optional BYOK draft-assist (your own AI provider)

If you enable draft-assist and provide an API key for a third-party AI provider, the extension sends your draft prompts directly from your browser to that provider using your key. LuSoft does not receive, proxy, or store these prompts or your API key (stored only locally). The AI provider is the data controller for those prompts. You review every draft before any message is sent — no autonomous sending from AI output.

Taxes de vente (Stripe Tax)

For purchases subject to VAT or sales tax, Stripe Tax calculates and collects applicable tax. Tax-relevant data (country, sub-region where required, tax-exempt status) is processed by Stripe; LuSoft does not store this beyond the standard subscription record in §3.3.

What we never do

  • We never sell, rent, or share your audiences or contact lists with any third party.
  • We never upload your conversations, contacts, or templates to LuSoft servers.
  • We never run automation outside your active, logged-in browser session.
  • We never use your data to train any model.
  • We never share data with social platforms beyond what your normal browser session already sends.

Cookies and analytics on the landing page

The marketing site at lusoft.dev may use a privacy-respecting analytics tool that does not set cross-site cookies or collect personal identifiers. The extension itself does not use analytics or product telemetry.

Legal basis (GDPR / UK GDPR)

  • Performance of a contract — account identification, Pro entitlement, and subscription management (Art. 6(1)(b)).
  • Legal obligation — invoicing, VAT/sales-tax records, and accounting (Art. 6(1)(c)). Tax data is processed by Stripe.
  • Legitimate interest — minimal anti-abuse measures on authentication (Art. 6(1)(f)).

Data retention

  • Local extension data: kept on your device until you delete it or uninstall the extension.
  • Authentication record: kept while your account exists. Deletable on request.
  • Subscription record: kept while active and for tax/accounting periods required (typically 7–10 years; Stripe retains transaction data per its policy).

Your rights

Droits RGPD/CCPA : accès, rectification, suppression, export local (Réglages → Exporter), retrait du consentement, réclamation auprès de votre autorité. [email protected] — 30 jours. Données de paiement : https://stripe.com/contact/privacy.

International transfers

Firebase is operated by Google Cloud (EU and US). Stripe operates globally and may transfer payment data outside the EU/UK. Transfers are protected by Standard Contractual Clauses where required.

Children

SocialCopilot is not directed at children under 16. Contact [email protected] if you believe we have processed children's data.

Changes

We update the "Last updated" date when we change this policy and notify Pro subscribers by email for material changes.

Contact

LuSoft — operator of SocialCopilot. Email: [email protected]. Postal address available on request.