Legal · Privacy

Privacy Policy

Group Posting is built local-first. Your Facebook account and the groups you post in stay on your computer — they never touch our servers. Here's exactly what that means, and the few things we do handle.

Last updated: 7 July 2026
The short version

The engine runs entirely in your browser. Your Facebook login, session, groups, contacts and the posts you write stay on your device — we never receive or store them. The main things that leave your computer are the text you ask our AI to write and your email & payment details at checkout — plus, only if you switch on optional cloud backup, a copy of your templates & campaigns. We don't sell your data. (Our marketing website uses standard analytics and advertising cookies — Google and Meta — but the extension itself never tracks you.)

1. Local-first by design

Most tools like this route your Facebook activity through a cloud server. Group Posting doesn't. The engine runs inside your own Chrome or Edge browser, on your computer, using your own logged-in session. That means the sensitive parts — your Facebook credentials, your session, the groups you're in and the people in them — never leave your device and are never uploaded to us. It's the core reason we can say your data stays yours.

2. Who we are

Group Posting is operated by Global Charity Solutions Kft., a company registered in Hungary (registered office: Vajda János utca 25., 2120 Dunakeszi; company reg. 13-09-212415; EU VAT HU29210727), which acts as the data controller for the limited processing described below. Group Posting is made in the EU and built to be GDPR-friendly. You can reach us anytime at hello@groupposting.com.

3. What stays on your device

The following never leave your browser, and we can't see them:

Your Facebook login, password and session — we never receive them.
The groups you belong to and the people in them.
Your templates, campaigns and posting history — stored locally in your browser (backed up to the cloud only if you switch on optional backup; see below).

4. What we process, and who helps us

To run the website, deliver the AI features, take payment and measure our marketing, a few carefully chosen providers process limited data on our behalf. The engine that touches your Facebook data stays on your device (see section 1) — the providers below only ever see what's described here.

Cloudflare

Hosts the website and backend at the edge. Processes standard technical data (such as IP address in security logs) needed to deliver and protect the Service. If you switch on optional cloud backup, your templates & campaigns are stored as an encrypted blob in Cloudflare R2 so you can restore them — it's off by default and never includes your Facebook data.

LemonSqueezy

Our merchant of record for paid plans. When you buy Pro or Lifetime, LemonSqueezy handles your email, payment details and invoicing (including VAT). We never see your full card details.

Anthropic (Claude)

Powers part of the AI content engine. Only the prompt text you choose to generate or improve a post is sent — never your Facebook data, groups or contacts.

DeepSeek

Also powers AI content generation, used the same way as above: it receives only the post text you ask it to write or rewrite, and nothing about your account or audience.

Google (Analytics & Ads)

On our marketing website only, we use Google Tag Manager, Google Analytics and Google Ads (via cookies) to measure traffic and the performance of our ads. This never applies inside the extension or to your Facebook data.

Meta (Pixel)

Our marketing website uses the Meta Pixel to measure and optimise our advertising. It applies to website visits only — never to the extension. You can opt out via your browser or cookie settings.

5. Cookies

Group Posting uses a small first-party cookie to run the free trial and keep the Service working. Our marketing website also uses analytics and advertising cookies from Google (Analytics & Ads) and Meta (Pixel) so we can understand traffic and measure our ads — these apply to the website only, never inside the extension. Where required (for example in the EU/EEA) they load subject to your consent, and you can manage or block them any time via your browser settings.

6. Your rights

Under the GDPR you have the right to access, correct, delete, export or restrict the limited personal data we process (mainly the email tied to a purchase), and to object to processing. Email hello@groupposting.com and we'll help. You also have the right to lodge a complaint with your local data protection authority — in Hungary, that's the NAIH.

7. Retention & changes

We keep personal data only as long as needed for the purpose it was collected — for example, payment and invoice records are retained by our payment provider for as long as tax and accounting law requires. Data stored locally in your browser stays until you clear it or uninstall the extension.

If we change this policy we'll update the "last updated" date above and, for material changes, flag it where practical. Group Posting is an independent product and is not affiliated with, endorsed by, or sponsored by Meta Platforms, Inc.

Looking for the rules of the road? Read our Terms of Service