← Back to Cadence

Privacy Policy

Last updated: March 6, 2026

1. Introduction

Cadence ("we," "us," or "our") operates the Cadence web application (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. By accessing or using the Service, you agree to this Privacy Policy. If you do not agree, do not use the Service.

2. Information We Collect

2.1 Information You Provide

  • Account information: When you sign up, we collect your email address and authenticate via your X (Twitter) account using OAuth 2.0.
  • X (Twitter) profile data: With your explicit authorization, we access your X display name, username, profile image URL, and publicly available tweets to build your writing persona.
  • Content you create: Tweets you generate, edit, approve, or schedule through the Service, including your writing persona configuration (tone, style, topics).
  • Payment information: Billing is processed by Lemon Squeezy. We do not store credit card numbers, bank account details, or other payment instrument data on our servers. We receive only subscription status, plan type, and customer identifiers from Lemon Squeezy.

2.2 Information Collected Automatically

  • Usage data: Pages visited, features used, tweet generation counts, and posting activity within the Service.
  • Device and browser data: Browser type, operating system, screen resolution, and language preference.
  • Cookies and local storage: We use essential cookies for authentication sessions and local storage for UI preferences (e.g., notification settings, theme). We do not use third-party advertising cookies.

2.3 Information From Third Parties

  • X (Twitter): Publicly available tweet text, public engagement metrics, and trending topics, accessed via the X API v2 under their terms of service.
  • Lemon Squeezy: Subscription status, plan changes, and billing events via webhook.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service, including AI-powered tweet generation and scheduling.
  • Build and refine your writing persona based on your publicly available tweets and stated preferences.
  • Post content to X on your behalf, only when you explicitly approve or schedule it.
  • Process payments, manage subscriptions, and enforce usage limits.
  • Send transactional communications (account verification, subscription changes, security alerts).
  • Monitor usage to prevent abuse, enforce rate limits, and maintain system integrity.
  • Improve the Service through aggregated, anonymized analytics.

We do not:

  • Sell, rent, or trade your personal information to third parties.
  • Use your data to train AI models beyond your individual persona (your data is siloed to your account).
  • Post to your X account without your explicit approval (manual post, autopilot approval, or pre-configured autopilot schedule).
  • Access your X direct messages, followers lists, or private account data.

4. X (Twitter) API Data

  • We access the X API solely to: (a) read your recent public tweets for persona building, (b) post approved content on your behalf, (c) fetch publicly available trending topics, and (d) retrieve public engagement metrics for tweets posted through the Service.
  • X API data is stored only as necessary to provide the Service and is subject to X's Developer Agreement and Policy.
  • OAuth 2.0 access tokens and refresh tokens are stored encrypted at rest in our database. Tokens are refreshed automatically and the prior token is discarded.
  • You may revoke Cadence's access to your X account at any time through X's Settings > Security > Apps and sessions.

5. AI-Generated Content

  • Content generated by the Service is produced by Anthropic's Claude AI based on your persona settings and publicly available data.
  • Your persona data and generated content are not shared with other users or used to train external AI models.
  • We do not guarantee the accuracy, appropriateness, or compliance of AI-generated content. You are solely responsible for reviewing and approving all content before it is posted to your X account.

6. Data Sharing and Disclosure

We share your information only in these limited circumstances:

  • Service providers: Supabase (database hosting), Vercel (application hosting), Anthropic (AI generation), Lemon Squeezy (payments), and X/Twitter (social posting). Each provider processes data solely to deliver their service to us.
  • Legal obligations: If required by law, regulation, subpoena, or court order, or to protect the rights, property, or safety of Cadence, our users, or the public.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, your data may be transferred. We will notify you of any such change.

We do not share your data with advertisers or data brokers.

7. Data Retention

  • Account data is retained for as long as your account is active.
  • Generated tweets, persona data, and posting history are retained until you delete your account.
  • Upon account deletion, all your data (profile, persona, tweets, notification preferences, streak history, autopilot configuration, and affiliate records) is permanently deleted within 30 days. This includes removal from backups.
  • Anonymized, aggregated analytics data (which cannot identify you) may be retained indefinitely.

8. Data Security

We implement industry-standard security measures including:

  • Encryption in transit (TLS/HTTPS) and at rest for sensitive data.
  • Row-level security policies on all database tables ensuring users can only access their own data.
  • OAuth 2.0 PKCE flow for X authentication (no client secrets exposed to the browser).
  • Cron job authentication via secret bearer tokens.
  • Regular dependency updates and security patching.

No system is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. You use the Service at your own risk.

9. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access: Request a copy of the personal data we hold about you. You can export your tweet data as CSV at any time from Settings.
  • Correction: Update your persona and account settings directly within the Service.
  • Deletion: Delete your account and all associated data from Settings > Danger Zone.
  • Portability: Export your data in a machine-readable format (CSV).
  • Objection/Restriction: Opt out of non-essential data processing via Privacy & Data toggles in Settings.
  • Revoke X access: Disconnect Cadence from your X account at any time.

To exercise any rights not available through the Service interface, contact us at the email below.

10. Children's Privacy

The Service is not intended for anyone under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 18, we will delete it promptly.

11. International Data Transfers

Your data may be processed in the United States and other countries where our service providers operate. By using the Service, you consent to the transfer of your data to these jurisdictions, which may have different data protection laws than your country of residence.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy with a new "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the revised policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Email: cadenceapplication@gmail.com