Privacy Policy

Last updated: April 2026

EasyJoy Technologies ("Company", "we", "us", or "our") operates OmniFire at omnifire.app ("Service"). This Privacy Policy explains how we collect, use, share, and protect your personal information when you use our Service.

1. Information We Collect

1.1 Account Information

When you create an account through our authentication provider (Logto SSO), we collect your name and email address. We do not store your authentication passwords — these are managed by our SSO provider.

1.2 Social Media Account Connections

When you connect social media platforms to OmniFire, we collect and store:

OAuth access tokens and refresh tokens (encrypted at rest)
Platform-specific user IDs and profile information
Account names and display names

1.3 Content Data

We store the content you create and manage through the Service, including:

Posts, drafts, and scheduled content (text and metadata)
Media files (images, videos, audio) uploaded to the Service
Publishing history and status of published content

1.4 Usage Data

We automatically collect information about how you use the Service:

Publishing history and activity logs
Feature usage patterns
Interaction with the Service interface

1.5 Payment Information

Payment processing is handled by Stripe. We do not store your complete credit card numbers, CVV codes, or other sensitive payment data. Stripe may share with us:

Last four digits of your card number
Card expiration date
Billing address
Transaction history and subscription status

1.6 Technical Data

We collect technical information including:

IP addresses
Browser type and version
Device type and operating system
Referring URLs and pages visited
Date and time of access

2. How We Use Your Information

We use the information we collect to:

Provide the Service: Manage your account, publish content to connected platforms, and store your drafts and media
Process Payments: Handle subscription billing and manage your account status
AI Content Polishing: When you use AI polish features, your content may be sent to third-party AI providers (such as OpenAI) for processing. This data is used solely to generate content suggestions and is not used to train AI models by OmniFire
Send Notifications: Deliver transactional emails such as account confirmations, subscription updates, and service announcements
Improve the Service: Analyze usage patterns to fix bugs, improve performance, and develop new features
Ensure Security: Detect and prevent fraud, abuse, and unauthorized access

3. How We Share Your Information

We do not sell, rent, or trade your personal information. We share data only with the following categories of service providers, as necessary to operate the Service:

3.1 Social Media Platforms

When you publish content through OmniFire, your content and relevant account information are transmitted to the social media platforms you have connected (e.g., Twitter/X, Facebook, Instagram, LinkedIn, YouTube, TikTok, Weibo, Bilibili, WeChat). Each platform processes this data according to its own privacy policy.

3.2 Stripe (Payment Processing)

Your payment information is processed by Stripe, Inc. Stripe's handling of your data is governed by Stripe's Privacy Policy.

3.3 OpenAI (AI Features)

When you use AI content polishing features, your content is sent to OpenAI for processing. We only send the specific content you submit for polishing. OpenAI's handling of this data is governed by their privacy policy.

3.4 Cloudflare (Media Storage and CDN)

Media files you upload are stored on Cloudflare R2. Cloudflare may also provide CDN and security services. Data handling is governed by Cloudflare's Privacy Policy.

3.5 Resend (Email Delivery)

Transactional emails are delivered through Resend. Your email address and message content are shared with Resend solely for email delivery purposes.

3.6 Legal Requirements

We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

4. Data Retention

Account Data: Retained for as long as your account is active. You may request deletion at any time.
Content Data: Retained until you delete it or close your account.
Usage Data: Aggregated usage data may be retained for analytics purposes after anonymization.
Deleted Accounts: When you delete your account, all personal data, content, and connected accounts are permanently removed within 30 days. Some data may be retained longer if required by law.

5. Data Security

We implement appropriate technical and organizational measures to protect your data:

All data transmitted between your browser and our servers is encrypted using HTTPS/TLS
OAuth tokens for connected platforms are encrypted at rest
Our infrastructure is hosted on secure, professionally managed servers
Access to user data is restricted to authorized personnel only
We regularly review and update our security practices

While we take reasonable measures to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

Access: Request a copy of the personal data we hold about you
Correction: Request correction of inaccurate or incomplete data
Deletion: Request deletion of your personal data
Data Export: Request a portable copy of your data in a standard format
Withdraw Consent: Withdraw consent for data processing where consent is the legal basis
Restriction: Request restriction of processing in certain circumstances
Objection: Object to processing based on legitimate interests

6.1 For EU/EEA Residents (GDPR)

If you are located in the European Union or European Economic Area, you have rights under the General Data Protection Regulation (GDPR). Our legal bases for processing your data include contract performance, legitimate interests, and consent. You may lodge a complaint with your local data protection authority.

6.2 For Canadian Residents (PIPEDA)

If you are a Canadian resident, your personal information is handled in accordance with the Personal Information Protection and Electronic Documents Act (PIPEDA). You have the right to access and correct your personal information and to file a complaint with the Office of the Privacy Commissioner of Canada.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.

7. Cookies

We use a minimal set of cookies:

Session Cookies: Essential cookies for authentication and maintaining your logged-in session
Preference Cookies: Store your language and theme preferences

We do not use advertising cookies, tracking cookies, or third-party analytics cookies. We do not participate in ad networks or cross-site tracking.

8. Children's Privacy

The Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected data from a child under 16, we will take steps to delete that information promptly. If you believe a child under 16 has provided us with personal information, please contact us at [email protected].

9. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. Our servers and service providers may be located in various jurisdictions. We ensure that appropriate safeguards are in place when transferring data internationally, including standard contractual clauses where applicable.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on the Service with a new "Last updated" date and, where appropriate, by email. Your continued use of the Service after changes become effective constitutes acceptance of the revised policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: [email protected]
Company: EasyJoy Technologies
Location: Alberta, Canada