Last Updated: December 2025

1. Overview

• Nimbus respects your privacy. This Privacy Policy explains how we collect, use, and protect personal and business data when you use our website or app.

2. Information We Collect

• Account Information: Name, email, business name, and payment data (via Stripe).
• Connected Platform Data: Shopify store details, product catalogs, and data from connected social platforms including Pinterest (boards, pins, analytics), Meta/Facebook/Instagram (pages, accounts, posts, insights), TikTok (business accounts, videos, analytics), and related API tokens.
• Usage Data: App interactions, session metrics, and aggregated analytics.
• Support Data: Communications with our team via email or chat.
  
  

3. How We Use Data

• Provide and maintain the Service.
• Generate AI-optimized content for marketing use.
• Process secure payments.
• Communicate product updates and support.
• Comply with legal or platform obligations.

4. Data We Access & Why
   
   

PINTEREST

We request read access to your Pinterest account info, boards, and analytics to select destinations and measure performance, and write access to create pins you approve. We do not read DMs, follower lists, or other unrelated data. You can revoke Nimbus access anytime from Pinterest. We store only the minimum tokens and metadata required to operate scheduling and analytics.

META (Facebook & Instagram)

We request access to your Meta Business accounts to enable content posting and performance tracking. Specifically, we access:

What we collect:

• Business account and Page information (name, ID, profile picture)
• Publishing permissions to create posts on your behalf
• Page and post insights/analytics to measure performance
• Instagram Business account information linked to your Facebook Page
• Media you upload through Nimbus for posting

What we do NOT access:

• Personal Facebook profiles or friend lists
• Private messages or Messenger conversations
• Personal photos or content not related to your business pages
• Ad account billing or payment information
• User data from people who interact with your posts

How we use this data:

• Schedule and publish content to your Facebook Pages and Instagram Business accounts
• Display analytics and engagement metrics within Nimbus
• Generate AI-optimized content suggestions based on your product catalog

Revocation: You can disconnect Meta from Nimbus at any time in your account settings. You can also revoke access directly from Meta: Facebook Settings → Business Integrations → Remove Nimbus.

TIKTOK

We request access to your TikTok Business account to enable content posting and performance analytics. Specifically, we access:

What we collect:

• TikTok Business account information (username, display name, avatar)
• Publishing permissions to post videos on your behalf
• Video performance analytics (views, likes, comments, shares)
• Content metadata for videos posted through Nimbus

What we do NOT access:

• Personal TikTok accounts or private videos
• Direct messages or private communications
• Follower/following lists or user data
• TikTok Shop or commerce data (unless explicitly connected)
• Content not posted through Nimbus

How we use this data:

• Schedule and publish video content to your TikTok Business account
• Display video performance metrics within Nimbus
• Optimize posting times based on engagement patterns

Revocation: You can disconnect TikTok from Nimbus at any time in your account settings. You can also revoke access directly from TikTok: Settings → Security → Manage App Permissions → Remove Nimbus.

We do not sell user data. We share limited information only with trusted processors (Shopify, Pinterest, Meta, TikTok, Stripe, Google Cloud).

YOUTUBE

When you connect your YouTube account to Nimbus Engine, we access the following data through Google's OAuth 2.0 authentication:

Data We Collect

- Your Google account email address

- YouTube channel information (channel name, description, subscriber count, video count, profile image)

- List of your YouTube videos and playlists (titles, descriptions, thumbnails, view counts, publish dates)

- Video metadata for content you choose to manage through our platform

How We Use This Data

- Display your channel information within the Nimbus Engine dashboard

- Show your video library for content management purposes

- Enable you to upload videos to your YouTube channel

- Allow you to update video metadata (titles, descriptions, tags)

- Enable video deletion when you request it

Data Storage

- YouTube access tokens are stored securely in our database

- We use refresh tokens to maintain your connection without requiring repeated authorization

- Channel and video metadata is cached to improve performance

Data Sharing

- We do NOT sell your YouTube data to third parties

- We do NOT share your YouTube data with third parties except as required to provide our services

- Your YouTube content remains on YouTube's servers; we only store references and metadata

AI Services Segregation

- Data obtained from YouTube/Google APIs is used solely for displaying your channel information and managing your videos within the Nimbus dashboard. YouTube data (including channel information, video metadata, and any content accessed through Google APIs) is NEVER sent to, processed by, or used to train any artificial intelligence or machine learning services. Our AI content generation features use only your product catalog and brand information, never data obtained from Google APIs.

Data Retention & Deletion

- When you disconnect your YouTube account, we delete your access tokens and refresh tokens immediately

- Cached channel metadata is deleted within 30 days of disconnection

- You can request complete deletion of your data by contacting legal@itsnimbus.com 

Your Rights

- You can disconnect your YouTube account at any time from the Connections page

- You can revoke Nimbus Engine's access directly from your Google Account at https://myaccount.google.com/permissions

- Upon disconnection, we revoke our tokens and delete stored credentials

Nimbus's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

No unauthorized use:

• Advertising or marketing unrelated to your service
• Credit assessment or lending decisions
• Surveillance or tracking

4. Data Retention

We retain data for as long as your account is active or required by law. Upon request, we permanently delete user data within 30 days.

5. Data Security

All data is encrypted in transit (TLS 1.3) and at rest. Storage and compute environments operate on Google Cloud Platform (U.S.) with access-controlled keys.

6. User Rights

You may:

• Request data access, correction, or deletion.
• Withdraw platform integrations at any time.
• Opt out of marketing communications.
  
  

Requests: legal@itsnimbus.com

7. International Users

Nimbus is operated in the United States. By using the Service from outside the U.S., you consent to data transfer and processing within the U.S.

8. Changes

We may revise this Privacy Policy periodically. Updates will be posted at https://www.itsnimbus.com/privacy.

Data Deletion Instructions

How to request deletion

1. Email legal@itsnimbus.com with the subject "Data Deletion Request" from the email associated with your account.
2. We'll confirm receipt within 3 business days.
3. We will permanently delete your account data - including authentication tokens and analytics - within 30 days and notify you when complete.

Third-party connections

If you connected Nimbus to other services, you can also revoke access directly:

• Pinterest: Settings → Apps → Remove access
• Meta (Facebook): Settings → Business Integrations → Remove Nimbus
• Meta (Instagram): Managed through Facebook Business Integrations
• TikTok: Settings → Security → Manage App Permissions → Remove Nimbus
• Shopify: Admin → Settings → Users and permissions → Apps and sales channels → Remove access

What we delete

Account identifiers, OAuth tokens, usage logs tied to your account, and Nimbus-stored content/metadata. We retain only what's required by law (e.g., billing records) and then purge on schedule.

Questions

Contact legal@itsnimbus.com.

Cookie Policy

Nimbus uses cookies and similar technologies to:

• Maintain user sessions and logins.
• Measure product performance.
• Improve user experience.
  
  

You can control cookies in your browser settings. Disabling cookies may limit some features.