Privacy

Privacy Policy

Last updated: July 2, 2026

This policy explains what Vega collects, how we use it, and the choices you have. We write it in plain language because that's how trust works.

The short version. Vega only holds what you connect to it. We do not sell your data. We never infer sensitive attributes (political, religious, health, sexual orientation) about anyone. AI runs on your own key — model providers see your data, not us.

1. Who we are

Vega ("we", "us") operates the product available at vega.social. You can reach us at hello@vega.social.

2. What we collect

2.1 Account you create

2.2 Social accounts you connect

When you connect Instagram, Facebook, LinkedIn, X, or another platform:

2.3 What we do NOT collect

2.4 AI provider keys

If you use AI features, your provider API key (for example, Anthropic) is encrypted at rest with AES-256-GCM. When you send a request, we decrypt in memory, call the provider, and forget the plain-text key. The model provider — not Vega — sees your prompts.

2.5 Technical logs

Standard web-server logs (IP, user agent, timestamp) for security and debugging. Kept 30 days.

3. How we use it

We do not sell your data. We do not use it to train models.

4. Signals, not verdicts

Every AI-produced insight in Vega is framed as a signal with a confidence level. We never present model output as fact, and we explicitly refuse requests that ask the model to infer sensitive attributes about people. See our principles page for the details.

5. Sharing with third parties

Vega uses these processors on your behalf:

We do not sell data, and we do not share it for advertising.

6. Retention

7. Your rights

Under GDPR/KVKK and similar frameworks you have the right to:

Email hello@vega.social and we'll act on any of these within 30 days.

8. Security

Passwords are hashed with scrypt. OAuth tokens and AI keys are encrypted at rest with AES-256-GCM using a key you generate at deploy time. Sessions are stored server-side with httpOnly cookies. HTTPS is required everywhere.

9. Children

Vega is not directed at children under 16. If you believe a child has provided data to us, contact us and we'll delete it.

10. Changes

We may update this policy. Material changes will be announced in-app and via email. The date at the top always reflects the current version.

11. Contact

Questions or requests: hello@vega.social.