GDPR

Effective Date: June 6, 2026
Last Updated: June 6, 2026

This GDPR / Data Protection Policy explains how NextPost Pro, available at https://nextpost.pro, handles personal data in connection with our SaaS platform, website, software, modules, services, billing, support, and related digital products.

This policy is intended to help users, customers, and visitors understand how personal data may be collected, used, stored, shared, and protected when using NextPost Pro.

By accessing or using NextPost Pro, you acknowledge that you have read and understood this GDPR / Data Protection Policy.

1. Who We Are

NextPost Pro is a SaaS platform that provides access to software, modules, tools, documentation, updates, support, and related digital services.

For data protection questions, you may contact us at:

NextPost Pro
Website: https://nextpost.pro
Contact Page: https://nextpost.pro/contacts
Email: [email protected]

2. Our Role Under GDPR

Depending on how NextPost Pro is used, we may act either as a data controller or as a data processor.

We act as a data controller when we determine the purposes and means of processing personal data, such as when we process account registration data, billing information, website analytics, customer support requests, security logs, and business communications.

We may act as a data processor when we process personal data on behalf of a customer through the platform, based on the customer’s instructions. In such cases, the customer is usually the data controller, and we process the data only as necessary to provide NextPost Pro and related services.

If a separate Data Processing Agreement is required, it must be agreed in writing.

3. Personal Data We May Collect

We may collect and process the following categories of personal data.

3.1 Account and Registration Data

This may include:

• name;
• email address;
• username;
• password or authentication data;
• company name;
• account settings;
• subscription plan;
• user role and access permissions.

3.2 Billing and Payment Data

This may include:

• billing name;
• billing email;
• billing address;
• invoice details;
• tax information;
• payment status;
• subscription history;
• transaction identifiers.

Payment card or payment method details may be processed by third-party payment providers. We do not necessarily store full card details directly on our servers.

3.3 Technical and Usage Data

This may include:

• IP address;
• browser type;
• device type;
• operating system;
• login history;
• session data;
• access logs;
• error logs;
• feature usage;
• security events;
• timestamps;
• approximate location based on IP address.

3.4 Support and Communication Data

This may include:

• support requests;
• email communications;
• contact form submissions;
• screenshots;
• logs;
• error descriptions;
• files or information you voluntarily provide when requesting help.

3.5 Customer Content and Connected Account Data

Depending on how you use NextPost Pro, you may upload, connect, or process data related to third-party accounts, campaigns, media, posts, messages, analytics, automation settings, API keys, tokens, cookies, sessions, proxies, or similar technical data.

You are responsible for ensuring that you have the legal right and authority to upload, connect, process, or use such data with NextPost Pro.

4. How We Use Personal Data

We may use personal data for the following purposes:

• to provide access to NextPost Pro;
• to create and manage user accounts;
• to process payments, subscriptions, invoices, renewals, and refunds;
• to provide customer support;
• to maintain, secure, and improve the platform;
• to monitor platform performance and detect technical issues;
• to prevent fraud, abuse, unauthorized access, and security incidents;
• to enforce our License Agreement, Refund Policy, and other terms;
• to communicate important service, billing, security, or legal notices;
• to comply with legal, tax, accounting, and regulatory obligations;
• to analyze usage and improve product functionality;
• to protect our rights, users, infrastructure, and business interests.

5. Legal Bases for Processing

Where GDPR applies, we process personal data based on one or more of the following legal bases:

5.1 Performance of a Contract

We process personal data when it is necessary to provide NextPost Pro, manage your account, deliver paid services, process subscriptions, provide support, and perform our contractual obligations.

5.2 Legitimate Interests

We may process personal data based on our legitimate interests, including platform security, fraud prevention, service improvement, business operations, abuse prevention, analytics, customer communication, and enforcement of our terms.

5.3 Legal Obligation

We may process personal data when necessary to comply with legal, tax, accounting, regulatory, security, or law enforcement obligations.

5.4 Consent

We may process personal data based on your consent where required, such as for certain cookies, marketing communications, or optional features.

You may withdraw your consent at any time where processing is based on consent.

6. Cookies and Similar Technologies

NextPost Pro may use cookies, local storage, tracking pixels, analytics tools, and similar technologies to operate the website, manage sessions, remember preferences, improve performance, analyze usage, and support security.

Cookies may be used for:

• authentication;
• session management;
• security;
• analytics;
• preferences;
• billing or checkout functionality;
• fraud prevention;
• service improvement.

Where required by law, we will ask for your consent before using non-essential cookies.

You can control or disable cookies through your browser settings. However, disabling certain cookies may affect the functionality of NextPost Pro.

7. Data Sharing and Third Parties

We may share personal data with trusted third parties only when necessary for business, technical, legal, or service-related purposes.

Such third parties may include:

• hosting providers;
• cloud infrastructure providers;
• payment processors;
• analytics providers;
• email delivery providers;
• customer support tools;
• security and fraud prevention services;
• error monitoring and logging services;
• tax, accounting, legal, or compliance providers;
• third-party platforms connected by the user;
• contractors or service providers working on our behalf.

We do not sell personal data.

We require service providers to process personal data only as necessary to provide their services to us and to protect such data appropriately.

8. Third-Party Platforms Connected by Users

NextPost Pro may allow users to connect third-party accounts, platforms, APIs, credentials, tokens, cookies, sessions, proxies, or similar technical access data.

When you connect third-party services to NextPost Pro, you are responsible for ensuring that:

• you have the legal right to connect and use those accounts or credentials;
• your use complies with applicable laws;
• your use complies with the third-party platform’s terms and policies;
• you have obtained any required consent from affected individuals;
• you do not upload or process personal data unlawfully.

We are not responsible for the privacy practices, security, or decisions of third-party platforms that are not controlled by us.

9. International Data Transfers

Personal data may be processed in countries other than the country where you are located.

Where GDPR applies and personal data is transferred outside the European Economic Area, we will use appropriate safeguards where required, such as:

• adequacy decisions;
• Standard Contractual Clauses;
• contractual data protection obligations;
• technical and organizational security measures;
• other legally recognized transfer mechanisms.

10. Data Retention

We retain personal data only for as long as reasonably necessary for the purposes described in this policy, unless a longer retention period is required or permitted by law.

Retention periods may depend on:

• account status;
• subscription status;
• legal and tax obligations;
• security requirements;
• fraud prevention;
• dispute resolution;
• backup cycles;
• support history;
• contractual obligations;
• technical requirements.

When personal data is no longer needed, we will delete, anonymize, or restrict it where appropriate.

11. Security Measures

We take reasonable technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration, disclosure, or destruction.

These measures may include:

• access controls;
• authentication mechanisms;
• encryption where appropriate;
• secure infrastructure;
• logging and monitoring;
• backup procedures;
• security reviews;
• limited access to personal data;
• internal confidentiality obligations.

However, no online service, software platform, hosting provider, or transmission method can be guaranteed to be completely secure.

You are responsible for keeping your account credentials, server, hosting, connected accounts, API keys, tokens, cookies, sessions, proxies, and devices secure.

12. Your GDPR Rights

Where GDPR applies, you may have the following rights regarding your personal data:

• the right to access your personal data;
• the right to correct inaccurate or incomplete data;
• the right to request deletion of your personal data;
• the right to restrict processing;
• the right to object to processing;
• the right to data portability;
• the right to withdraw consent where processing is based on consent;
• the right to lodge a complaint with a supervisory authority.

Some rights may be limited depending on the legal basis for processing, contractual obligations, security requirements, fraud prevention, technical feasibility, or legal retention obligations.

13. How to Exercise Your Rights

To exercise your data protection rights, contact us at:

Email: [email protected]
Contact Page: https://nextpost.pro/contacts

Subject: GDPR Request — [Your Account Email]

Please include:

• your full name or company name;
• your account email;
• the right you want to exercise;
• a clear description of your request;
• any information needed to verify your identity and locate your account.

We may need to verify your identity before processing your request.

We will respond within the time required by applicable law.

14. Data Deletion Requests

You may request deletion of your personal data by contacting us at [email protected].

Please note that deletion may not be possible immediately or completely where we need to retain certain information for:

• legal obligations;
• tax and accounting records;
• fraud prevention;
• security logs;
• dispute resolution;
• enforcement of agreements;
• backup retention;
• legitimate business purposes.

If your account is deleted, you may lose access to your subscription, license, settings, data, connected accounts, modules, support history, and related services.

15. Marketing Communications

We may send service-related emails, billing notices, security alerts, product updates, and important account communications.

Where permitted, we may also send marketing communications about NextPost Pro, new features, offers, or related services.

You may unsubscribe from marketing emails at any time by using the unsubscribe link or contacting us at [email protected].

You may still receive transactional, legal, billing, security, or service-related messages even if you unsubscribe from marketing communications.

16. Children’s Data

NextPost Pro is not intended for children.

We do not knowingly collect personal data from children under the age required by applicable law.

If you believe that a child has provided personal data to us, please contact us at [email protected], and we will take appropriate steps to delete such data where required.

17. Data Processing Agreement

If you use NextPost Pro to process personal data on behalf of your own customers, users, clients, employees, contractors, or other individuals, you may be considered a data controller under GDPR.

In such cases, you are responsible for:

• providing required privacy notices;
• obtaining required consents or legal bases;
• responding to data subject requests;
• ensuring lawful processing;
• using NextPost Pro in compliance with GDPR and other applicable privacy laws;
• entering into a Data Processing Agreement with us where required.

To request a Data Processing Agreement, contact us at [email protected].

18. Data Breach Notification

If we become aware of a personal data breach affecting data for which we are responsible, we will take reasonable steps to investigate, mitigate, and notify affected parties where required by applicable law.

If we process personal data on behalf of a customer as a processor, we will notify the relevant customer where required so that the customer can meet its own legal obligations.

19. Automated Decision-Making

We do not intentionally use personal data for automated decision-making that produces legal or similarly significant effects on individuals, unless expressly stated in a separate notice or required for fraud prevention, security, or compliance purposes.

20. Changes to This Policy

We may update this GDPR / Data Protection Policy from time to time.

The updated version will be posted on this page with a revised “Last Updated” date.

Your continued use of NextPost Pro after the updated policy becomes effective means you acknowledge the updated policy.

21. Contact Us

For questions about this GDPR / Data Protection Policy, privacy, personal data, data processing, or your rights, please contact us:

NextPost Pro
Website: https://nextpost.pro
Contact Page: https://nextpost.pro/contacts
Email: [email protected]