Privacy Policy

TEA Global Media Content Dashboard (“the App”) is an internal software tool operated by TEA Global Media (“we”, “us”, “our”). We are committed to protecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This Privacy Policy explains how we collect, use, store, and protect personal data when you use the App, including data obtained through integrations with Meta Platforms (Facebook and Instagram).

TEA Global Media acts as the data controller for the personal data processed through this App, on behalf of TEA Global Media and its associated entities. If you have any questions about this Policy or your data, you may contact us at: editor@teaglobalmedia.com

When you connect Facebook Pages or Instagram Business accounts via Meta OAuth, we may collect and process the following data: Facebook Page names and Page IDs, Instagram Business Account IDs linked to connected Pages, access tokens (including long-lived tokens), published posts, captions, media content, and associated metadata, engagement metrics (including likes, comments, impressions, reach, and related performance data), and account connection status and authentication data. We do not intentionally collect any special category (sensitive) personal data.

We process the above data for the following purposes: to display analytics and performance insights within the dashboard, to synchronise and manage published social media content internally, to support AI-assisted caption generation for social media posts, to monitor integration status and maintain secure authentication connections, and to operate and improve the functionality of the App.

We rely on the following lawful bases under UK GDPR: contractual necessity to provide access to and operate the App services, legitimate interests to manage, improve, and secure internal media workflows, and consent where required by Meta Platform permissions or where explicitly obtained. Where consent is used as a lawful basis, you may withdraw it at any time.

We do not sell, rent, or trade your personal data. We do not share Meta Platform data with third parties except where required to comply with legal obligations, respond to lawful requests from public authorities, or ensure system security and prevent misuse. All data remains strictly within TEA Global Media and its associated entities.

Data is stored in a secure PostgreSQL database hosted within controlled infrastructure. We implement appropriate technical and organisational measures to protect data, including restricted access controls, encryption of sensitive credentials where applicable, secure storage of access tokens, and monitoring for unauthorised access or misuse. Access tokens and authentication credentials are never publicly exposed.

We retain personal data only for as long as necessary to fulfil the purposes outlined in this Policy. Data linked to Meta integrations is retained while the account remains connected to the App. When an account is disconnected, associated access tokens are deleted promptly from our systems. Historical analytics data may be retained in anonymised or aggregated form for operational reporting.

We process data obtained via Meta Platforms (Facebook and Instagram APIs) in accordance with Meta Platform Terms, Meta Developer Policies, and applicable data protection laws. We do not use Meta Platform data for advertising, profiling for advertising, or unrelated commercial resale purposes. We do not permit third-party access to Meta-sourced data.

Under UK GDPR, you have the following rights: the right to access your personal data, the right to request correction of inaccurate data, the right to request deletion of your data, the right to restrict or object to processing, and the right to data portability where applicable. You may exercise these rights by contacting us at the email below. You may also disconnect your Facebook or Instagram accounts at any time within the App, which will remove associated authentication tokens.

Upon request or account disconnection, access tokens are deleted immediately, connected account data is removed from active systems, and where applicable backups will be overwritten or deleted in accordance with retention schedules.

Where data is processed or stored outside the UK, we ensure appropriate safeguards are in place in accordance with UK GDPR requirements, including standard contractual clauses or equivalent protections where necessary.

We may update this Privacy Policy from time to time. Updates will be posted within the App and reflected by the “Last updated” date above.

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact: editor@teaglobalmedia.com