Privacy Policy

Last Updated: October 24, 2025

Our Privacy Commitment

At LinkedIn Insights, privacy isn't an afterthought—it's our foundation. This service was built specifically to give you analytics insights without compromising your data.

Zero Data Storage: Your LinkedIn data never touches our servers. Ever.

What We Collect

What We DO Collect and Store:

  • LinkedIn Profile Data: When you connect your LinkedIn account, we collect and store your email address, first name, last name, and LinkedIn ID. This is used solely for account authentication, access control, and subscription management.
  • Subscription Status: We store your plan tier (Free/Pro/Agency) and Stripe customer ID (if you upgrade) to manage your subscription and unlock features.
  • Usage Metrics: We track how you use the service (dashboard views, feature usage) to enforce usage limits for different plan tiers and improve the product.

We DO NOT Collect or Store:

  • Your LinkedIn posts or content
  • Your connections or network data
  • Your analytics data (processed in browser only)
  • Your access tokens (stored in browser sessionStorage only, cleared when you close the tab)
  • Passwords (we use LinkedIn OAuth, we never see your password)

What We Process (Temporarily):

  • OAuth Authorization: We process your LinkedIn OAuth code to obtain an access token. This happens in a serverless function.
  • AI Insights (Pro/Agency Plans Only): If you have a paid plan and use AI insights, we send anonymized analytics summaries to Anthropic's Claude API. This includes only aggregate metrics (like engagement rates, post counts) but NO personal data, NO post content, and NO identifying information.
  • Technical Logs: Netlify (our hosting provider) maintains standard server logs (IP addresses, timestamps) for up to 30 days for security and debugging purposes.

How Your Data is Processed

The Privacy-First Architecture:

  1. You authenticate with LinkedIn using OAuth 2.0
  2. LinkedIn provides a temporary access token
  3. Your browser stores the token in sessionStorage (NOT localStorage)
  4. Your browser makes direct API calls to LinkedIn (not through our servers)
  5. All analytics calculations happen in your browser
  6. When you close the tab, everything is deleted

What this means: Your data flows directly from LinkedIn to your browser. We never see it, store it, or have access to it. Our servers only help exchange the OAuth authorization code for a token—a standard security practice.

Third-Party Services

LinkedIn API

We use LinkedIn's official OAuth 2.0 API to access your data. Your use of LinkedIn's services is governed by LinkedIn's Privacy Policy.

Anthropic Claude API (Optional)

If you use the AI insights feature, we send anonymized analytics summaries to Anthropic's Claude API. This data includes:

  • Number of posts
  • Average engagement rate
  • Total impressions (aggregated)
  • Engagement trends (anonymized)

We do NOT send: your name, profile data, actual post content, or any identifying information. Anthropic's data handling is governed by Anthropic's Privacy Policy.

Netlify (Hosting)

Our site is hosted on Netlify. They maintain standard server logs (IP addresses, request timestamps) for security and performance monitoring. See Netlify's Privacy Policy.

Cookies and Tracking

We do NOT use:

  • Tracking cookies
  • Analytics cookies (no Google Analytics, no tracking pixels)
  • Advertising cookies
  • Third-party tracking scripts

We DO use:

  • sessionStorage: To temporarily store your OAuth access token while you use the dashboard. This is automatically cleared when you close the tab.
  • State parameter: A random token stored in sessionStorage for CSRF protection during OAuth. Also cleared when you close the tab.

Your Rights

Because we don't collect or store your data, you automatically have complete control:

  • Right to Access: Your data never leaves your browser, so you always have access to it
  • Right to Delete: Close the tab and everything is deleted automatically
  • Right to Data Portability: Your data stays with you—it never leaves your control
  • Right to Opt-Out: You can revoke our LinkedIn access at any time via LinkedIn Settings

Data Security

While we don't store your data, we take security seriously:

  • HTTPS Everywhere: All connections are encrypted with SSL/TLS
  • CSRF Protection: State parameter validation prevents cross-site request forgery
  • No Data Persistence: Access tokens stored in sessionStorage only (never localStorage or cookies)
  • Minimal Permissions: We only request the LinkedIn permissions necessary for analytics
  • Serverless Architecture: No databases, no persistent storage, no attack surface

Children's Privacy

Our service is not intended for users under 16 years of age. We do not knowingly collect information from children. LinkedIn's terms of service require users to be at least 16 years old.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this Privacy Policy periodically.

If we make material changes, we'll notify users via a prominent notice on our homepage.

Contact Us

If you have questions about this Privacy Policy or our privacy practices:

ResilientMind LLC / ResilientMindAI LLC

Operator: Joseph C. McGinty Jr.

Website: resilientmindai.com

Email: support@resilientmindai.com

Issues: GitHub Issues

The Bottom Line

We built this tool because we believe you deserve analytics insights without sacrificing privacy. Your data is yours. We never see it, store it, sell it, or share it. When you close the tab, it's gone. That's not just our policy—that's our architecture.