Elara

Privacy Policy

Effective date: April 9, 2026

Elara (“we”, “us”, or “our”) operates the use-elara.com platform (the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. Please read it carefully.

1. Information We Collect

a. Account Information

When you register, we collect your name, email address, and password (stored as a secure hash). If you sign in via Google or GitHub OAuth, we receive your name, email, and profile photo from that provider.

b. Connected Platform Data

When you connect a Facebook Page, Instagram account, or WhatsApp Business number, we store the access tokens and page/account identifiers needed to operate the Service on your behalf. We receive and store:

  • Inbound messages sent to your connected pages and accounts
  • Sender names and platform identifiers (e.g. Facebook user IDs)
  • Your outbound replies, including AI-generated replies
  • Basic page metadata (page name, page ID)

We do not access your personal Facebook/Instagram timeline, friend lists, photos, or any content outside of your business pages and their direct message threads.

c. Usage Data

We collect log data such as IP addresses, browser type, pages visited, and timestamps to operate and improve the Service.

2. How We Use Your Information

  • To provide, operate, and maintain the Service
  • To generate AI-powered replies to incoming messages on your behalf (only when you enable auto-reply)
  • To display your conversation history inside your Elara dashboard
  • To send you transactional emails (account verification, billing receipts)
  • To detect and prevent abuse, fraud, or security incidents
  • To comply with legal obligations

We do not sell your data or your customers' messages to third parties. We do not use your message content to train AI models.

3. Meta Platform Data

Our Service integrates with Meta's platforms (Facebook, Instagram, WhatsApp) via their official APIs. By connecting your Meta accounts you agree to:

We request only the minimum permissions necessary:

  • pages_show_list — to let you choose which Page to connect
  • pages_messaging — to receive and send Facebook Messenger messages
  • pages_manage_metadata — to subscribe to webhook message events
  • instagram_manage_messages — to receive and reply to Instagram DMs
  • instagram_basic — to identify your connected Instagram account

You can revoke access at any time from your Elara dashboard (Support Agent → Disconnect) or directly from your Facebook App Settings.

4. Data Sharing

We share your data only with:

  • Supabase — our database and authentication provider (data stored in the EU/US)
  • Anthropic — processes message content solely to generate AI replies; Anthropic does not retain this data for training purposes under our API agreement
  • Stripe — payment processing; we never store card details
  • Vercel — hosting infrastructure
  • Law enforcement — only when required by applicable law

5. Data Retention

We retain your account data and message history for as long as your account is active. If you delete your account, we permanently delete your data within 30 days, except where retention is required by law. You may request deletion at any time by emailing privacy@use-elara.com.

6. Security

We implement industry-standard security measures including TLS encryption in transit, AES-256 encryption at rest, row-level security policies, and regular access audits. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access a copy of the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data
  • Object to or restrict processing
  • Data portability

To exercise any of these rights, email privacy@use-elara.com.

8. Cookies

We use only functional cookies necessary to authenticate your session. We do not use advertising or tracking cookies.

9. Children's Privacy

The Service is not directed at children under 13. We do not knowingly collect data from children. If we become aware that a child has provided personal information, we will delete it immediately.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes via email or a notice on the Service. Continued use after changes constitutes acceptance.

11. Contact

For privacy-related questions or requests:

Elara
Email: privacy@use-elara.com
Website: https://use-elara.com

← Back to homeTerms of Service →