Legal
Privacy Policy
Last updated: April 2026
1. Who we are
SoloGrow is operated by Äctvli Responsible Consulting, a Belgian company. We are the data controller for personal data processed through the SoloGrow platform.
Contact: reachout@actvli.com
2. What data we collect
- →Account data: Your email address and name, provided during signup or via your Google / GitHub auth provider.
- →Company data: Business name and website URL you enter during onboarding.
- →AI-generated content: Social posts, email sequences, landing page copy, and articles generated for your account and stored in your review queue.
- →Encrypted OAuth tokens: Access tokens for social platforms you connect (Twitter/X, LinkedIn, Facebook, Threads). Stored encrypted with AES-256-GCM. We never store them in plain text.
- →Chat messages: Messages you send to the AI strategist chatbot, along with AI responses. Used to provide conversation context.
- →Usage data: Job logs, publishing history, pipeline status — used to show you the state of your account.
- →Payment data: Processed entirely by Stripe. We store only your subscription status and Stripe customer ID — not card numbers or payment details.
3. Legal basis for processing (GDPR)
- →Performance of contract (Art. 6(1)(b)): Processing your data is necessary to provide the SoloGrow service you subscribed to — generating content, connecting accounts, sending emails on your behalf.
- →Legitimate interests (Art. 6(1)(f)): We process usage data to keep the platform secure, detect abuse, and improve the product.
- →Legal obligation (Art. 6(1)(c)): Payment records are retained for 7 years as required by EU accounting law.
4. Third-party processors
We share data with the following sub-processors to operate the service:
| Processor | Purpose | Data shared |
|---|---|---|
| Supabase | Database and authentication | All account and content data |
| Anthropic | AI content generation and chat | Website content, persona data, chat messages |
| Firecrawl | Website scraping | Your website URL |
| Stripe | Payment processing | Email, billing details |
| Resend | Email sending | Prospect email addresses, email content |
| Trigger.dev | Background job processing | Job parameters (company ID, URLs) |
| Vercel | Hosting and edge compute | Request logs |
| Twitter/X, LinkedIn, Meta | Social publishing | Post content, OAuth tokens |
5. Data retention
- →Active accounts: Data is retained for the duration of your subscription.
- →After cancellation: Your account data and generated content are deleted 30 days after your subscription ends.
- →Payment records: Kept for 7 years as required by Belgian accounting law.
- →OAuth tokens: Deleted immediately when you disconnect a social account.
6. Your rights under GDPR
If you are based in the EU or EEA, you have the following rights:
- →Right of access — request a copy of your data
- →Right to rectification — correct inaccurate data
- →Right to erasure — request deletion of your account and data
- →Right to data portability — export your content at any time from the dashboard
- →Right to restriction — limit how we process your data
- →Right to object — object to processing based on legitimate interests
- →Right to lodge a complaint — with your national data protection authority
To exercise any of these rights, email reachout@actvli.com. We will respond within 30 days.
7. International data transfers
Some of our sub-processors (Anthropic, Vercel, Trigger.dev) operate in the United States. Where required, data transfers are governed by the EU Standard Contractual Clauses (SCCs) adopted by the European Commission.
8. Cookies
SoloGrow uses only technically necessary cookies. No advertising or tracking cookies are set. See our Cookie Policy for the full list.
9. Changes to this policy
We may update this policy when we add new features or processors. Material changes will be communicated by email. The “last updated” date at the top reflects the most recent revision.