Privacy Policy

Last updated: May 12, 2026

This Privacy Policy explains how Open Assistant ("the App", "we", "our", or "us") collects, uses, stores, and protects information when it is used to create, schedule, publish, edit, and manage posts for Facebook Pages.

The App is intended for Page administrators, editors, or authorized team members who connect a Facebook Page for content publishing and post management.

Information We Collect

Depending on how the App is configured and used, we may process the following information:

• Basic Facebook profile information available through public_profile, such as the app-scoped user ID, name, and profile picture, to identify the authorized user who connects the App.
• Facebook Page identifiers, Page names, Page access tokens, and Page permission information required to show available Pages, connect a selected Page, and publish or manage Page content.
• Post content created through the App, including text, media references, captions, scheduling details, post status, post IDs, and basic publishing history.
• Page post engagement information, such as comments, reactions, shares, and engagement counts, when needed to display, moderate, or manage posts for a connected Page.
• Operational logs such as request time, success or error status, and diagnostic information needed to maintain the App.

How We Use Information

We use the information described above only to:

• Create, schedule, publish, edit, or delete posts on connected Facebook Pages.
• Display and manage posts that were created or managed through the App.
• Verify that the connected user has permission to manage the selected Page.
• Read post engagement so Page administrators can review post activity inside the App.
• Manage Page engagement, such as replying to, hiding, or deleting comments, when requested by an authorized Page user.
• Maintain security, prevent unauthorized use, troubleshoot issues, and improve reliability.
• Comply with applicable platform requirements, including Meta Platform Terms and policies.

Facebook Permissions

The App requests only the Facebook permissions needed for Page post creation, Page post management, Page selection, Page metadata access, and Page engagement management. These permissions are used only for features requested by an authorized Page user and are not used to access unrelated personal information.

• public_profile: Used to identify the Facebook user who signs in and connects the App, including the user's app-scoped ID and basic profile information.
• pages_show_list: Used to access the list of Facebook Pages that the user can manage so the user can choose which Page to connect to the App.
• pages_manage_metadata: Used to read and manage metadata for the connected Page, maintain the Page connection, and support Page integration features such as webhook or subscription setup when enabled.
• pages_manage_posts: Used to create, publish, schedule, edit, or delete posts on the connected Facebook Page at the request of an authorized Page user.
• pages_read_engagement: Used to read Page content and engagement information, including post details, comments, reactions, shares, and engagement counts, so the App can display and manage Page posts.
• pages_manage_engagement: Used to manage engagement on Page content, such as replying to comments, hiding comments, deleting comments, or performing other moderation actions requested by an authorized Page user.

Sharing of Information

We do not sell personal information. We do not share Facebook user or Page data with third parties for advertising, profiling, or unrelated marketing purposes. Information may be shared only with service providers that help operate the App, when required by law, or when necessary to protect the App, users, or connected Pages.

Data Storage and Security

We use reasonable administrative, technical, and organizational safeguards to protect information processed by the App. Access tokens and Page data should be stored only for as long as needed to provide the App's publishing and management features. No method of electronic storage or transmission is completely secure, so we cannot guarantee absolute security.

Data Retention

We retain connected Page data, post records, and operational logs only for as long as reasonably necessary to provide the App, support the connected Page, resolve technical issues, meet legal obligations, or comply with platform requirements. If access to a Page is removed, we will stop using that Page's access token for publishing.

User Controls and Data Deletion

You may disconnect the App from your Facebook account or Page at any time through Facebook settings or Business integrations. You may also request deletion of data associated with your connected Page by contacting us using the contact information below. After a valid deletion request, we will delete or de-identify the relevant data unless retention is required for legal, security, or platform compliance reasons.

Children's Privacy

The App is intended for business or Page administration use and is not directed to children under 13. We do not knowingly collect information from children.

International Processing

Information may be processed in countries where we or our service providers operate. By using the App, you understand that information may be processed outside your country of residence, subject to applicable law.

Changes to This Policy

We may update this Privacy Policy from time to time. When we make changes, we will update the "Last updated" date above. Continued use of the App after an update means the updated policy applies.

Contact

If you have questions about this Privacy Policy or want to request access, correction, or deletion of data, please contact the App owner or administrator responsible for the connected Facebook Page.