Legal

Privacy Policy

How cowral collects, uses, and protects your data.

Last updatedJune 1, 2025

Overview

Cowral ("we", "our", "us") is a creator analytics platform that helps you understand your social media performance and generate tailored content. This Privacy Policy explains what data we collect, how we use it, who we share it with, and the choices you have.

By creating a Cowral account or connecting a social profile, you agree to the practices described in this policy. If you do not agree, please discontinue use of the platform.

Data we collect

We collect three categories of data:

Account data — name, email address, password (hashed), and subscription tier when you register.
Social profile data — public metrics (followers, views, posts), display names, avatars, and bios fetched from platforms you explicitly connect (Instagram, YouTube, TikTok, X).
Usage data — pages visited, features used, button clicks, and session timestamps collected to improve the product.

We only ever read public data from your social profiles. We never request write access, post on your behalf, or store private messages.

How we use your data

Your data is used exclusively to deliver and improve Cowral. Specifically:

Displaying analytics dashboards and trend reports tailored to your connected accounts.
Generating AI-driven content suggestions relevant to your niche and audience.
Sending transactional emails (billing receipts, password resets, product updates).
Detecting and preventing abuse, fraud, and security incidents.
Conducting aggregated, anonymised research to improve platform features.

We do not sell your personal data, use it for third-party advertising, or build profiles for resale.

Data sharing

We share data only with the sub-processors required to run the platform. Each is bound by data processing agreements and restricted to the purpose for which data is shared.

Sub-processorPurposeRegion
StripePayment processingUS / EU
PostmarkTransactional email deliveryUS
CloudflareCDN, DDoS protectionGlobal
OpenAIAI content generationUS
Render / RailwayCloud infrastructureUS

We may disclose data if required by law, court order, or to protect the rights and safety of Cowral and its users.

Cookies & tracking

Cowral uses the following types of cookies:

Strictly necessarySession authentication tokens. These cannot be disabled without breaking the platform.
FunctionalPreferences such as active social account and dashboard layout.
AnalyticsAggregated, anonymised usage telemetry. No cross-site tracking or fingerprinting.

You can clear or block cookies via your browser settings. Blocking strictly necessary cookies will prevent login.

Data retention

We retain account and social data for as long as your account is active. After account deletion, personal data is purged within 30 days, except where we are legally required to retain it (e.g. billing records retained for 7 years per tax law).

Anonymised, aggregated analytics data may be retained indefinitely as it cannot be used to identify you.

Your rights

Depending on your jurisdiction you may have the right to:

Access a copy of the personal data we hold about you.
Correct inaccurate or incomplete data.
Request deletion of your data (right to be forgotten).
Restrict or object to certain processing activities.
Port your data to another service in a machine-readable format.
Withdraw consent where processing is based on consent.

To exercise any of these rights email privacy@cowral.com. We will respond within 30 days.

Security

We implement industry-standard security measures including TLS encryption in transit, AES-256 encryption at rest, hashed passwords (bcrypt), and regular third-party security audits. Access to production systems is restricted to authorised personnel only.

No system is 100% secure. If you discover a vulnerability please report it responsibly to security@cowral.com.

Changes to this policy

We may update this policy from time to time. When we make material changes we will notify you via email and display a banner on the platform at least 14 days before the changes take effect. Continued use after that date constitutes acceptance of the revised policy.

Contact

Questions or complaints about this policy can be directed to:

Emailprivacy@cowral.com
AddressCowral Ltd, Lagos, Nigeria