Privacy Policy
Last updated 10 July 2026
A plain-language summary of what youreel collects, why, and the rights you have over your data.
Who runs this service
youreel is run by Mark Mazurov, an individual based in Sweden. We are the data controller for the personal data described here. You can reach us any time at hello@youreel.app.
What we collect
We keep this short. Here is everything:
- Your account details — the email address you sign in with, and your subscription status.
- Your Instagram data — when you connect your Instagram professional account, we read it through Meta's official Graph API. That means your profile, your posts, reels and stories, and their performance numbers. We only ever read your own account.
- Usage data — basic product analytics so we can see what works and fix what doesn't. Enabled when PostHog is turned on; not collected today.
We do not ask for anything we don't need, and we never buy or sell your data.
The Instagram permissions we ask for
When you connect Instagram, Meta asks you to approve two permissions. That's all we request:
- instagram_business_basic — lets us read your profile details and your list of posts, reels, and stories.
- instagram_business_manage_insights — lets us read the performance numbers for your account and your content (reach, views, and similar insights).
We use this only to build the analytics you see inside youreel. Your data is shown to you, and no one else.
Why we’re allowed to use it
Under the GDPR we rely on two legal bases. We process your account and Instagram data to provide the service you signed up for (performing our contract with you). We process limited usage data on the basis of our legitimate interest in keeping the product working and improving it — and only when analytics is enabled.
Where your data lives
Your data is stored in the European Union. We use a small set of trusted providers to run youreel:
- Supabase (EU region) — our database and authentication.
- Vercel — hosting the application.
- Stripe — payments and subscriptions. When billing is enabled.
- PostHog — product analytics. When enabled.
Each of these acts as our processor under a standard data-processing agreement, and we prefer EU regions wherever they're offered.
How long we keep it
We keep your data for as long as you have an account. If you disconnect Instagram, we delete your stored access token straight away, so we can no longer reach your account — the analytics we already gathered stay in your account until you delete it. When you delete your account, we erase your personal data. See Data deletion for the exact steps.
Your rights
The GDPR gives you rights over your data, and we honour all of them. You can:
- ask for a copy of the data we hold about you (access);
- ask us to correct anything that's wrong (rectification);
- ask us to delete your data (erasure);
- ask for your data in a portable format to take elsewhere (portability).
Email us at hello@youreel.app and we'll take care of it. You also have the right to complain to your data protection authority — in Sweden that's Integritetsskyddsmyndigheten (IMY).
Changes to this policy
If we change how we handle your data, we'll update this page and the date at the top. For anything that materially affects you, we'll let you know directly.