Privacy Policy

B Scanned Inc. ("BSCANNED", "we", "us", or "our") operates the website bscanned.com and related services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

1. Information We Collect

Information You Provide

• Contact Information: Name, email address, phone number, business name, and mailing address when you fill out forms, request quotes, or sign up for our services.
• Account Information: Login credentials when you create an account on our platform.
• Business Information: Industry, target audience, brand colors, social media accounts, website URLs, and other business details provided for service delivery.
• Payment Information: Billing details processed through our third-party payment processors (Stripe). We do not store credit card numbers on our servers.
• Communications: Messages, chat transcripts, and correspondence sent through our platform or via email.
• Content: Images, logos, text, videos, and other materials you upload or provide for design and marketing services.

Information Collected Automatically

• Usage Data: Pages visited, features used, time spent on pages, and interaction patterns within our platform.
• Device Information: Browser type, operating system, device type, and screen resolution.
• Log Data: IP address, access times, and referring URLs.
• Cookies: We use cookies and similar technologies to maintain sessions, remember preferences, and improve user experience.

Information from Third Parties

• Social Media Platforms: When you authorize us to manage your social media accounts (Facebook, Instagram, LinkedIn, TikTok), we receive page access tokens, page IDs, and posting permissions as authorized through OAuth.
• Lead Generation Forms: Lead data from LinkedIn Lead Gen Forms, Facebook Lead Ads, and other advertising platforms, as authorized by you.
• Google: Authentication information when you sign in using Google OAuth.

2. How We Use Your Information

• To provide, maintain, and improve our services including web development, mobile apps, AI automation, social media management, and marketing.
• To create and manage your account on our platform.
• To process transactions and send billing-related communications.
• To generate and publish social media content on your behalf, as authorized.
• To generate AI-powered designs, videos, and marketing materials using your provided business information.
• To sync and manage leads from connected advertising platforms into our CRM system.
• To send notifications about new leads, project updates, and service communications.
• To respond to your inquiries and provide customer support.
• To analyze usage patterns and improve our platform's features and performance.
• To comply with legal obligations and protect our rights.

3. How We Share Your Information

We do not sell your personal information. We may share information in the following circumstances:

• Service Providers: We use third-party services to operate our platform, including Supabase (database), Netlify (hosting), Anthropic Claude (AI), fal.ai (image generation), Stripe (payments), and n8n (workflow automation). These providers only access data necessary to perform their functions.
• Social Media Platforms: When you authorize us to post on your behalf, we transmit content to Facebook, Instagram, LinkedIn, and TikTok through their official APIs.
• Team Members: Your business information may be accessed by our team members (Brandon Thomas, Brieanna Thomas, Dajae Williams) as necessary to deliver services.
• Legal Requirements: We may disclose information if required by law, court order, or governmental regulation.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.

4. Data Storage and Security

Your data is stored on secure cloud infrastructure provided by Supabase (hosted in North America) and Netlify. We implement appropriate technical and organizational measures to protect your information, including:

• Encryption in transit (HTTPS/TLS) and at rest.
• Role-based access controls for team members.
• Row Level Security (RLS) policies on our database.
• Secure API key management through server-side proxy functions.
• Regular security reviews and updates.

5. Social Media Account Authorization

When you connect your Facebook, Instagram, or other social media accounts to our platform:

• We use OAuth 2.0 authorization to obtain access tokens with only the permissions necessary for our services (posting, page management, analytics).
• We store access tokens securely in our encrypted database.
• We never access your personal social media accounts — only the business pages you explicitly authorize.
• You can revoke access at any time through the social media platform's settings or through our admin portal.
• Access tokens are used solely for the purpose of creating and publishing content on your behalf, as directed by you.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide services. Upon termination of services:

• Account data is retained for 90 days to allow for reactivation.
• Social media access tokens are revoked immediately upon request.
• Client files and generated content are available for download for 30 days after service termination.
• We may retain anonymized usage data for analytics purposes.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Deletion: Request deletion of your personal data, subject to legal retention requirements.
• Portability: Request your data in a structured, machine-readable format.
• Opt-Out: Opt out of marketing communications at any time.
• Revoke Consent: Withdraw consent for social media account access or data processing.

To exercise any of these rights, contact us at brandon.thomas@bscanned.com.

8. Cookies

We use cookies for:

• Essential Cookies: Session management, authentication, and security.
• Functional Cookies: Remembering preferences and settings.
• Analytics Cookies: Understanding how users interact with our platform.

You can control cookies through your browser settings. Disabling cookies may affect the functionality of our platform.

9. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.

10. Canadian Privacy Compliance

As a Canadian company based in Alberta, we comply with the Personal Information Protection Act (PIPA) of Alberta and the Personal Information Protection and Electronic Documents Act (PIPEDA). Your personal information is primarily stored and processed in Canada.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last Updated" date. Your continued use of our services after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Email: brandon.thomas@bscanned.com
• Phone: (825) 900-9944
• Address: Calgary, Alberta, Canada
• Website: bscanned.com