Data deletionYour data, on your terms

Two paths to deletion. Both honored within seven days.

Palanor only collects what it needs to do its job for you. When you want any of it removed — in whole or in part — this page tells you how.

001What we holdFor connected social accounts

When you connect a social platform to Palanor (Facebook Page, Instagram Business account, Threads, LinkedIn, X, or Bluesky), Palanor stores only what it needs to post on your behalf and remember which posts it made:

OAuth tokens— the access credentials the platform issued when you authorized Palanor. These let Palanor post; nothing else.
Account identifiers— your platform-specific user/page ID (for example, a LinkedIn member URN or a Facebook Page ID), used to direct posts to the right destination.
Post drafts and audit records— the text and media of posts you created or approved through Palanor, plus the platform's URL and identifier for each post once published.

Palanor does not collect or store posts from other users, follower lists, direct messages, or engagement data beyond what is necessary to confirm a post landed. Palanor does not sell or share connected-account data with third parties. Ever.

002Path 1 · Revoke at the platformInstant · you control

Revoke Palanor’s access in the platform’s own settings.

Every platform exposes a list of authorized third-party apps and a revoke button. Revoking there invalidates Palanor’s token immediately. Palanor cannot post or refresh; the next attempt will fail. We treat that as a withdrawal of consent.

Meta (Facebook · Instagram · Threads)

Facebook → Settings → Business Integrations→

LinkedIn → Settings → Data privacy → Permitted services→

X (formerly Twitter)

X → Settings → Security → Apps and sessions → Connected apps→

Bluesky

Bluesky → Settings → App passwords → revoke→

Revocation at the platform is instant on the platform’s side. To also remove the stored token row + audit records from Palanor’s systems, send a deletion request (Path 2 below).

003Path 2 · Request deletion from Palanor7-day SLA

Email us. We delete within seven days.

For removal of anything Palanor holds — whether or not you also revoke at the source — send an email and we’ll confirm when it’s done.

Send to

privacy@palanor.com

Include in your message:

The email address tied to your Palanor account (if any)
The platform handle(s) you want disconnected (for example, facebook.com/palanorinc, @palanorinc on Threads)
Whether you want everything removed or only the connected-account integration (post drafts and audit records can be kept or removed separately if you say so)

We confirm deletion within seven days, usually within one or two. Confirmation comes from privacy@palanor.com.

004What deletion coversAnd what survives

Deletion removes everything — with two narrow exceptions.

A successful deletion request removes:

All OAuth tokens and refresh tokens for the named platform(s)
Account identifiers (URNs, page IDs, user IDs)
Post drafts and audit records, if requested
All ancillary metadata (IP hashes, user agents, timestamps)

Two narrow exceptions, both required by law:

Public posts that were published.Palanor cannot delete a public post we made on your behalf — that lives on the platform itself, and only the platform can remove it. Use the platform’s own delete or revoke flow.
Records retained for legal compliance. Where US or applicable state law requires retention (for example, financial records, tax records, or records subject to a litigation hold), those records remain for the required retention period and are then destroyed.

Privacy posture

Connected-account data is not used for marketing, not used to train models, and not shared with third parties. See the Privacy Policy for the full data-handling commitment.

← Back to Palanor