Privacy Policy
JirexAI LinkedIn Content Management Application ·
Effective 2026-04-18 · Version 1.0
1. Who we are
This application (the "Application") is operated by Jirexai, Inc.
("we", "us", "our"). Contact point for any privacy matter:
josue@jirexai.com.
The Application connects to LinkedIn using the Community Management API
and publishes content only to the JirexAI LinkedIn company page that
Jirexai, Inc. owns and administers. It is strictly a single-tenant,
first-party integration — it is not offered as a service to third
parties.
2. Scope of this policy
This policy covers:
- Data the Application receives from LinkedIn under the OAuth scopes
the administrator authorizes.
- Data the Application stores on its servers in order to operate.
- Data visitors to this website (
linkedin.jirex.ai) may
interact with.
This policy does not cover your use of LinkedIn itself,
which is governed by LinkedIn's own
Privacy
Policy.
3. Data we collect and why
3.1 From the authenticated administrator
When an authorized administrator of the JirexAI LinkedIn Page grants the
Application access via LinkedIn OAuth 2.0, we receive:
- An access token (valid for up to 60 days) and a
refresh token (valid for up to 365 days) — used to
call the LinkedIn API on the Page's behalf.
- The administrator's LinkedIn member identifier, name,
and email address — used to bind tokens to the correct identity
and to confirm that the same administrator still holds the
ADMINISTRATOR role on the Page.
- The organization URN of the JirexAI Page
(
urn:li:organization:<id>) — used as the
author field on outbound posts.
We do not receive, request, or store the administrator's
LinkedIn password.
3.2 From the LinkedIn API, on behalf of the JirexAI Page
- Posts authored by the JirexAI Page (identifiers, commentary, timestamps,
lifecycle state) — used for editing, analytics, and audit trail.
- Aggregate engagement metrics on those posts (likes, comments, shares,
impressions) — used to inform future content authoring.
We do not collect, store, or process data belonging to
LinkedIn members other than the authenticated administrator. We do not
scrape profiles, build contact lists, or enrich third-party data.
3.3 From visitors to this website
linkedin.jirex.ai serves only static HTML. It does not set
cookies, does not run analytics or tag managers, and does not load
third-party scripts or fonts. The TLS terminator (maqor) keeps
standard access logs for operational and security purposes only; these
logs contain timestamps, request paths, status codes, and source IP
addresses, and are rotated regularly.
4. How we store and protect data
- OAuth tokens are stored encrypted at rest on servers operated by
Jirexai, Inc.
- Tokens are never written to logs, commit history, or public endpoints.
- Access to the token store is restricted to the operating system user
that runs the Application's daemon.
- We apply the principle of least privilege — the Application only
requests the OAuth scopes it actually uses.
5. Retention
- Access tokens: deleted as soon as they expire or are replaced.
- Refresh tokens: retained only while the integration is active and the
administrator still holds a qualifying role on the JirexAI Page.
- Post identifiers and engagement metrics: retained for as long as the
corresponding post exists on LinkedIn, plus a short archival window for
audit purposes.
- Server access logs: retained for up to 90 days, then deleted.
6. Sharing
We do not sell or share your data. The only external party that receives
data from the Application is LinkedIn itself, through its
official API, and only the data needed to execute a requested action
(e.g., create a post authored by the JirexAI Page).
7. Your rights
- You may revoke the Application's access at any time from
LinkedIn's permitted services settings. Once
revoked, the Application cannot call the API on the Page's behalf.
- You may request a copy or deletion of any data the Application holds
about you by emailing
josue@jirexai.com. We will
respond within 30 days.
- If you believe we have mishandled your data, you may raise a complaint
directly with us at the address above.
8. Children
The Application is not directed at children under 16 and does not
knowingly collect data from them.
9. International transfers
Servers operated by Jirexai, Inc. are located in the European Union.
LinkedIn may process data in other jurisdictions under its own policy.
10. Changes to this policy
If we change this policy, we will update the version number and effective
date at the top of this page. Material changes will be announced on the
JirexAI LinkedIn Page before they take effect.
11. Governing law
This policy is governed by the laws of the jurisdiction of incorporation
of Jirexai, Inc., without regard to conflict of law principles.