Privacy Policy

Tamagrow is operated by Aditya Gupta ("we", "us", "our"). We provide a service that turns Shopify product catalogs into YouTube Shorts automatically. You can reach us at hello@tamagrow.app.

We collect and store only what is necessary to provide the service:

• Email address and account credentials (via Supabase Auth)
• Shopify store domain and OAuth access token (encrypted at rest with AES-256-GCM)
• YouTube channel ID and OAuth tokens (encrypted at rest), used solely to post videos you have approved
• Product catalog data synced from your Shopify store (titles, descriptions, images, prices)
• Videos we generate on your behalf, their scripts, compliance notes, and posting history
• Brand settings you configure (tone, audience, posting schedule)
• Audit log of approval, rejection, and posting events

Tamagrow uses the YouTube Data API v3 to post approved videos to your YouTube channel. By connecting your YouTube account you also agree to YouTube's Terms of Service and acknowledge that Google's privacy policy at policies.google.com/privacy applies to your YouTube data.

We access the following YouTube OAuth scopes:

• youtube.upload — to upload approved Shorts to your channel
• youtube.readonly — to read your channel ID and confirm successful uploads

We do not read, store, or analyze your existing YouTube content, subscriber data, or analytics beyond confirming that an upload succeeded.

You can revoke Tamagrow's access to your YouTube account at any time from your Google Account permissions page. Revoking access stops future uploads immediately. You can also disconnect from within Tamagrow at Settings → YouTube.

We use your data exclusively to operate the service:

• Generate video scripts and metadata from your product catalog using AI (Anthropic Claude)
• Produce video files via Argil (AI avatar video generation)
• Post approved videos to your YouTube channel on your configured schedule
• Enforce your compliance rules and banned claims
• Send email notifications about video status (when enabled)

We do not sell your data, use it for advertising, or share it with third parties except the sub-processors listed below who are necessary to operate the service.

We rely on the following third-party services to operate Tamagrow:

• Supabase — database and authentication
• Vercel — hosting and serverless functions
• Anthropic — AI script and metadata generation
• Argil — AI avatar video production
• Replicate — AI portrait generation for avatars
• Resend — transactional email
• PostHog — anonymous pageview analytics
• YouTube Data API v3 — video upload and channel verification

Each sub-processor is bound by their own privacy policy and data processing terms. We share only the minimum data required for each service to function.

We retain your data for as long as your account is active. You can request full deletion of your account and all associated data at any time from Settings → Account, or by emailing hello@tamagrow.app.

On deletion we permanently remove: your account credentials, Shopify and YouTube tokens, product catalog, generated videos and scripts, brand config, audit log, and any uploaded avatar images from our storage. We also revoke your Shopify access token via the Shopify API.

Anonymized aggregated statistics (e.g. total videos generated) may be retained for internal reporting and are not linked to your identity.

We use a session cookie issued by Supabase Auth to keep you logged in. We use PostHog for anonymous pageview analytics — no personal identifiers are attached to these events. We do not use advertising cookies or cross-site tracking.

All OAuth tokens (Shopify and YouTube) are encrypted at rest using AES-256-GCM before being written to the database. All data is transmitted over HTTPS. We apply Row Level Security policies in our database so that API routes can only read or write data belonging to the authenticated user.

Depending on your jurisdiction you may have rights to access, correct, export, or delete your personal data. To exercise any of these rights, email hello@tamagrow.app and we will respond within 30 days.

We may update this policy as the service evolves. We will notify active users by email for material changes. The effective date at the top of this page always reflects the current version.

Questions? Email us at hello@tamagrow.app.