Privacy Policy - TaskFlux

Last Updated: January 15, 2025

Introduction

This privacy policy describes how TaskFlux ("we", "our", or "us") handles user data across our services, including the TaskFlux Automation Platform and the Selector Extension. We are committed to protecting your privacy and being transparent about our data practices.

Services Covered

This privacy policy covers:

  • TaskFlux Automation Platform: Web-based automation service for Pinterest, Facebook, WordPress, and content generation
  • Selector Extension: Browser extension for content selection and saving

TaskFlux Automation Platform

User Accounts and Authentication

  • TaskFlux requires user accounts to store your configurations and API keys securely
  • Account information (email, encrypted password) is stored on our servers
  • Each user's data is isolated and accessible only by that user
  • You can delete your account and all associated data at any time

Data We Store on Our Servers

When you use TaskFlux Automation Platform, we store the following data on our servers:

  • Account Information: Email address, encrypted password hash
  • Configuration Data: API keys, credentials, and settings you configure:
    • WordPress credentials (username, app password, base URL)
    • Google Sheets configuration (OAuth tokens, sheet IDs)
    • Facebook Page credentials (page ID, access tokens)
    • AI provider API keys (OpenAI, Gemini, Groq)
    • Image generation service keys (Recraft, Fal, Midjourney)
    • Domain profiles and custom prompts
    • Template configurations and design settings
  • Processing Data: Temporary data during automation runs:
    • Recipe data from Google Sheets (titles, ingredients, instructions)
    • Generated content (articles, pin descriptions, metadata)
    • Image URLs and processing status
    • Automation logs and status information

Note: Processing data is temporary and used only during automation execution. We do not retain recipe content or generated articles after processing completes.

Third-Party Service Integrations

Google Sheets

  • TaskFlux reads recipe data from your Google Sheets and writes results back
  • We use Google OAuth 2.0 for authentication
  • OAuth tokens are stored securely on our servers (encrypted)
  • Data is transmitted directly between TaskFlux and your Google Sheets
  • You can revoke access at any time through your Google Account settings

WordPress

  • TaskFlux can upload articles and images to your WordPress sites
  • WordPress credentials (username, app password) are stored encrypted on our servers
  • Content is sent directly to your WordPress site via WordPress REST API
  • We do not access or store your WordPress content beyond what's necessary for upload

Facebook

  • TaskFlux can post content to your Facebook Pages via Facebook Graph API
  • Facebook Page access tokens are stored encrypted on our servers
  • Posts are sent directly to Facebook on your behalf
  • You can revoke access at any time through Facebook Business Manager

AI Providers (OpenAI, Google Gemini, Groq)

  • TaskFlux uses AI services to generate articles, descriptions, and content
  • Your API keys are stored encrypted on our servers
  • Recipe data and prompts are sent to AI providers to generate content
  • Generated content is returned to TaskFlux and then sent to your WordPress/Google Sheets
  • AI providers may log API requests per their own privacy policies

Image Generation Services (Recraft, Fal, Midjourney)

  • TaskFlux uses image generation services to create images for pins and posts
  • Your API keys are stored encrypted on our servers
  • Image prompts and parameters are sent to these services
  • Generated images are downloaded and processed by TaskFlux
  • Image generation services may log requests per their own privacy policies

Automation Features and Data Processing

TaskFlux provides the following automation features:

  • Pinterest Automation: Generates pins, creates articles, uploads to WordPress
  • Facebook Automation: Creates content, generates template images, schedules posts
  • Content Generation: Uses AI to generate articles, descriptions, and metadata
  • Image Processing: Downloads, processes, and uploads images

During automation, your data (recipes, configurations) is processed on our servers. Processing is done in real-time and data is not retained after completion unless explicitly saved by you.

Data Security for Automation Platform

  • All stored credentials and API keys are encrypted at rest
  • Data transmission uses HTTPS/TLS encryption
  • User accounts are isolated - users cannot access other users' data
  • Access to servers is restricted and monitored
  • Regular security audits and updates are performed

Data Retention

  • Account information and configurations are retained as long as your account is active
  • Processing data (recipes, generated content) is temporary and not retained after automation completes
  • You can delete your account and all associated data at any time
  • Upon account deletion, all stored data is permanently removed within 30 days

Selector Extension

The Selector Extension operates differently from the Automation Platform - it is a client-side browser extension.

Data Collection and Storage for Extension

Local Storage Only

  • All data collected by this extension (recipes, images, text selections) is stored locally on your device using Chrome's local storage API
  • We do not collect, transmit, or store any data on our servers
  • All data remains on your device and is never sent to us

What Data is Stored Locally

  • Text selections (titles, ingredients, recipes)
  • Image URLs or base64-encoded images
  • Extension settings and preferences
  • Google Sheets configuration (if you choose to use auto-save feature)

Third-Party Services for Extension

Google Sheets Integration (Optional)

If you enable the Google Sheets auto-save feature, the extension will:

  • Use Google OAuth 2.0 for authentication (handled by Google)
  • Send data directly to your Google Sheet (not to us)
  • Store your Google OAuth token locally on your device

We do not have access to your Google account or Google Sheets data. All Google authentication is handled through Google's official OAuth flow. You can revoke access at any time through your Google Account settings.

WordPress Upload (Optional)

If you configure WordPress image upload, the extension will:

  • Send cropped images to your WordPress site
  • Use credentials you provide (stored locally on your device)
  • We do not have access to your WordPress credentials or site

Permissions Explained for Extension

Required Permissions

  • contextMenus: To add right-click menu options for saving content
  • storage: To store your selections locally on your device
  • activeTab: To access content on the current tab when you use context menus
  • scripting: To extract text content from web pages
  • identity: To authenticate with Google (only if you use Google Sheets feature)

Host Permissions

  • https://accounts.google.com/*: For Google OAuth authentication (only if you use Google Sheets)
  • https://www.googleapis.com/*: For Google Sheets API access (only if you use Google Sheets)

Data Security for Extension

  • All data is stored locally using Chrome's secure storage API
  • Credentials (Google OAuth tokens, WordPress passwords) are stored locally and encrypted by Chrome
  • We do not transmit any data over the internet except:
    • To Google Sheets (if you enable auto-save) - sent directly to your sheet
    • To your WordPress site (if you configure it) - sent directly to your site

Data Sharing

We do not share, sell, or transmit your data to any third parties except as necessary to provide our services.

Data transmission occurs only when:

  1. TaskFlux Automation Platform:
    • To Google Sheets - to read recipes and write results (direct connection to your sheets)
    • To WordPress - to upload articles and images (direct connection to your sites)
    • To Facebook - to post content (direct connection via Facebook API)
    • To AI providers - to generate content (using your API keys)
    • To image generation services - to create images (using your API keys)
  2. Selector Extension:
    • To Google Sheets (if you enable auto-save) - sent directly to your sheet
    • To your WordPress site (if you configure it) - sent directly to your site

User Control

TaskFlux Automation Platform

  • You can view and edit all configurations through the web interface
  • You can delete your account and all associated data at any time
  • You can revoke third-party access (Google, Facebook) through their respective settings
  • You can disable or remove API keys at any time

Selector Extension

  • You can view all stored data through the extension popup
  • You can delete all data using the "Clear All" button
  • You can disable auto-save features at any time
  • You can revoke Google OAuth access through your Google Account settings

Children's Privacy

TaskFlux services are not intended for users under 13 years of age. We do not knowingly collect data from children.

Changes to This Policy

We may update this privacy policy from time to time. Changes will be reflected in the extension's version and this document.

Contact

If you have questions about this privacy policy, please contact us at: support@taskflux.io

Compliance

TaskFlux complies with:

  • Chrome Web Store Developer Program Policies (for Selector Extension)
  • General Data Protection Regulation (GDPR)
  • California Consumer Privacy Act (CCPA)

Important Notes

  • TaskFlux Automation Platform: Processes data on our servers. Your credentials and API keys are stored encrypted. Processing data is temporary and not retained after automation completes.
  • Selector Extension: Operates entirely client-side. All data processing happens on your device, and we have no servers that receive or store your data.
← Back to Home