Legal

Privacy Policy

Last updated: May 31, 2026

This Privacy Policy explains how LinkedIn Timed Posting processes personal data when you visit the website, create an account, connect LinkedIn, schedule or publish posts, use billing, or contact support.

Controller

The controller is: G. Brown IT & Photography, Langgartenweg 8, 8280 Kreuzlingen, Switzerland. You can contact the controller at [email protected].

Personal Data We Process

• Account data: name, email address, password hash, email verification status, account settings, and notification preferences.
• Authentication and security data: session identifiers, IP address, user agent, remember-me tokens, passkeys, two-factor authentication data, and password reset tokens.
• LinkedIn integration data: LinkedIn member identifier, LinkedIn profile name, email address, avatar URL, OAuth access and refresh tokens, token expiry dates, scopes, connection status, token refresh history, and connection errors.
• Content data: post drafts, titles, notes, attachments, scheduling data, publishing status, published post identifiers, failure reasons, and publishing attempt records.
• Billing data: Stripe customer identifiers, subscriptions, plan, payment method type, payment method last four digits, subscription status, invoice records, and billing portal activity.
• Email and support data: transactional email records, support messages, and replies.
• Technical data: application logs, error records, device/browser data, and timestamps needed to operate, secure, and debug the service.

Why We Process Personal Data

• To provide and maintain the LinkedIn content workspace.
• To authenticate users, protect accounts, and prevent abuse.
• To connect to LinkedIn and publish or track posts when you request it.
• To process subscriptions and payments through Stripe.
• To send transactional emails such as verification, password reset, and publishing notifications.
• To diagnose bugs, maintain security, enforce terms, and comply with legal obligations.

Legal Bases

Where the GDPR applies, processing is based on performance of a contract, legitimate interests in operating and securing the service, compliance with legal obligations, and consent where a feature specifically asks for consent. Under the Swiss Federal Act on Data Protection, we process personal data transparently, proportionately, and for the purposes described in this policy.

Recipients and Processors

We share personal data only where needed to provide the service, comply with law, or protect the service. Recipients may include hosting and database providers, Stripe for billing, LinkedIn/Microsoft for OAuth and publishing, Mailgun or another configured mail provider for transactional email, and operational service providers such as error logging or support tools if enabled.

International Transfers

Service providers may process personal data in Switzerland, the EEA, the United Kingdom, the United States, or other countries. Where required, we rely on adequacy decisions, standard contractual clauses, data processing agreements, or equivalent safeguards.

Retention

• Account and workspace data is retained while your account is active.
• LinkedIn tokens are retained until you disconnect LinkedIn or delete your account.
• Billing records are retained as required for accounting, tax, fraud prevention, and legal obligations.
• Session records expire according to the configured session lifetime and cleanup schedule.
• Logs are retained only as long as needed for security, debugging, abuse prevention, and legal obligations.

Your Rights

Depending on your location, you may have rights to access, correct, delete, restrict, object to processing, receive a copy of your data, and withdraw consent where processing is based on consent. You may also complain to a supervisory authority, including the Swiss Federal Data Protection and Information Commissioner where Swiss law applies.

Cookies

The service currently uses necessary cookies and similar storage for login, security, fraud prevention, and interface operation. It does not use analytics cookies, advertising cookies, retargeting pixels, or social media tracking pixels. See the Cookie Policy for details.

Changes

We may update this Privacy Policy when the service, legal requirements, or processors change. The updated version will be posted on this page with a new effective date.