Privacy Policy

What We Collect

• •Your X username — to personalize replies
• •Tweet IDs — to fetch tweet content and generate context-aware replies
• •Usage data — number of replies generated and API costs (for billing)
• •Authentication token — stored locally to keep you logged in
• •Preferences — AI on/off toggle and tone settings

What We Don't Collect

• ×Your X password
• ×Your direct messages
• ×Profile stats, followers, or following lists
• ×Tweets you compose but don't post
• ×Browsing activity outside X.com

How We Use Your Data

• •Generate AI reply suggestions via OpenRouter
• •Maintain your authenticated session
• •Track usage for subscription management
• •Improve service performance

What XFastr Cannot Do

• ×Post, like, retweet, or follow on your behalf
• ×Access your profile analytics or stats
• ×Read your DMs or private data
• ×Modify your X account in any way

XFastr only suggests replies. You always decide what gets posted.

Third-Party Services

• •OpenRouter — tweet content sent to generate replies (subject to their privacy policy)
• •Twitter/X API — to fetch public tweet content
• •Convex — our database provider for user accounts

We do not sell your data.

Data Security

• •All data transmitted via HTTPS encryption
• •Authentication tokens expire after 24 hours
• •Tokens stored securely in browser extension storage
• •No sensitive information sent to our servers

Your Rights

• •Disable the extension anytime using the toggle button
• •Delete local data by clearing browser storage or uninstalling
• •Contact us to request data deletion

Contact

For questions or data deletion requests: