Privacy Policy

Last updated: 2026

Plain language summary: We collect the brand information and weekly updates you send us so we can write social media posts for you. We don't sell your data. We use OpenAI to generate posts, Buffer to schedule them, and SendGrid to email you. You can ask us to delete everything at any time.

Who we are

RootedPost is a product of Watchlight Interactive LLC, based in Madison, Wisconsin. References to "we," "us," and "our" mean Watchlight Interactive LLC.

What we collect

Brand profile — business name, contact email, description, target audience, tone, content pillars, platforms, and topics to avoid. Provided by you during onboarding.
Weekly intake answers — what you tell us is happening at your business each week, including any photo links you share.
Generated posts — the social media drafts we produce from your inputs, plus your approvals, edits, and rejection notes.
Account activity — timestamps for intakes, approvals, scheduled posts, and basic logs needed to operate the service.

How we use it

Generate weekly social media drafts using OpenAI's GPT-4o model.
Review drafts against your brand profile (also via OpenAI).
Schedule approved posts on your connected social accounts via Buffer.
Email you when drafts are ready, when posts are scheduled, and to send service reminders.

Third parties we share data with

To run the service, we share necessary portions of your data with:

OpenAI — your brand profile and weekly answers are sent as part of the prompts that generate posts.
Buffer — approved posts (copy, hashtags, image URLs, schedule) are sent for posting on your behalf.
SendGrid — your email address and notification content are sent to deliver emails.
Google Cloud / Firebase — our infrastructure provider. Data is stored in Firestore in the United States.

We do not sell your data. We do not share it with advertisers.

How long we keep it

We keep your brand profile and post history for as long as your account is active. If you cancel, we retain your data for 60 days so you can reactivate, then delete it on request.

Your rights

You can ask us to:

Export all your data in a portable format.
Correct anything inaccurate in your profile.
Delete your account and all associated content.

Email support@watchlightinteractive.com with your request. We respond within seven business days.

Security

All data is encrypted in transit (HTTPS) and at rest (Google Cloud default encryption). Access credentials for your connected social accounts are stored in Google Secret Manager, not in our database.

Contact

Questions? support@watchlightinteractive.com

← Back to RootedPost