The AI App Labs Limited

Sorted Socials

Sorted Socials (“we”, “us”, “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store and share personal data when you use the Sorted Socials application and related services (the “Service”).

We comply with the UK General Data Protection Regulation (“UK GDPR”) and the Data Protection Act 2018.

1. Who we are

Sorted Socials is operated by The AI App Labs Limited (“we”, “us”, “our”).

The AI App Labs Limited is the data controller for the personal data processed through the Sorted Socials application and services.

Sorted Socials is a software platform that helps businesses plan, generate and review social media content using AI.

If you have any questions about this policy or your data, you can contact us at:

Email: contact@theaiapplabs.com

2. Personal data we collect

We collect and process the following categories of personal data:

a) Account and identity data
  • Name
  • Email address
  • Phone number
  • User ID and authentication identifiers
b) Client and content data
  • Business name and location
  • Social media post content created or reviewed in the app
  • Comments, edit requests and approvals
  • Brand voice and planning preferences
c) Uploaded assets
  • Images and videos you upload
  • Metadata related to those files (file type, size, upload time)
d) Technical and usage data
  • Log data and timestamps
  • Error logs and performance data

We do not knowingly collect special category data unless you choose to include it in content you upload or generate.

3. How we use your data

We use your personal data to:

  • Provide and operate the Sorted Socials Service
  • Authenticate users and manage access
  • Generate, plan and revise social media content
  • Store and display uploaded assets
  • Allow users to approve or request changes to posts
  • Monitor usage, performance and security
  • Improve the Service and develop new features

4. Legal bases for processing

Under UK GDPR, we rely on the following lawful bases:

  • Contract: processing is necessary to provide the Service you signed up for
  • Legitimate interests: improving, securing and maintaining the Service
  • Consent: where required, such as optional AI features or future communications
  • Legal obligation: where we must comply with applicable law

5. AI and automated processing

Sorted Socials uses third-party AI services to help analyse assets and generate draft content.

  • Uploaded images may be analysed to generate internal descriptions only
  • Token usage and request data may be logged for billing and monitoring

We do not use automated decision-making that produces legal or similarly significant effects on users.

6. Sharing your data

We only share personal data where necessary, including with:

  • Cloud infrastructure providers (e.g. hosting, storage, databases)
  • AI service providers for content generation and analysis
  • Authentication providers for secure login

All third parties are required to protect your data and use it only for agreed purposes.

We do not sell your personal data.

7. International transfers

Some service providers may process data outside the UK. Where this happens, we ensure appropriate safeguards are in place, such as:

  • UK adequacy regulations
  • Standard contractual clauses
  • Equivalent legal protections

8. Data retention

We retain personal data only for as long as necessary to:

  • Provide the Service
  • Meet legal or accounting obligations
  • Resolve disputes and enforce agreements

When data is no longer required, it is securely deleted or anonymised.

9. Your rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your data
  • Restrict or object to processing
  • Request data portability
  • Withdraw consent where applicable

You can exercise these rights by contacting us at the email above.

You also have the right to complain to the Information Commissioner’s Office (ICO).

10. Security

We use appropriate technical and organisational measures to protect personal data, including:

  • Secure authentication
  • Encrypted connections
  • Access controls
  • Monitoring and logging

11. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify users through the Service or by email.