GDPR Compliance
We are committed to transparency and the protection of your personal data in accordance with the General Data Protection Regulation (EU).
December 19, 2025
1. Data Controller & Processor
Tareno acts as both a Data Controller and a Data Processor depending on the context:
- Controller: For account information, billing details, and direct communications
- Processor: For social media content, analytics data, and media files you upload
2. Data We Collect
To provide our services, we collect:
- Account Data: Name, email, password (hashed), billing info
- Social Data: OAuth tokens for connected platforms, profile names, avatars
- Content Data: Images, videos, captions for scheduling
- Usage Data: Dashboard interaction logs for performance and security
3. Your Rights
Under GDPR, you have the following rights:
- Right to Access:
- Right to Erasure (Right to be Forgotten):
- Right to Rectification:
- Right to Portability:
- Right to Object:
4. Data Storage & Security
Your data is stored on servers in the EU or countries with adequacy decisions. We use AES-256 encryption at rest and TLS 1.3 in transit.
5. Subprocessors
We use trusted third-party services bound by Data Processing Agreements:
- Vercel: Hosting and Edge Network
- Supabase: Database and Authentication
- Stripe: Payment processing
- Google/Meta/TikTok: API interactions (only when explicitly connected)
Contact Our Data Protection Officer
For questions or to exercise your rights, contact our DPO at: privacy@tareno.co
privacy@tareno.co