Data Usage Disclosure
Last updated: April 8, 2026 Β· FlexServe is a product of Nexint Technology Solutions
This page explains exactly what data FlexServe requests from each third-party platform when you connect your account, and how we use it. Required by Meta, Google, and TikTok app review policies. FlexServe is a product of Nexint Technology Solutions.
Meta (Facebook + Instagram + WhatsApp Business)
Scopes requested: public_profile, email, pages_show_list, pages_read_engagement, pages_manage_metadata, instagram_basic, instagram_manage_insights, business_management
What we do with the data
We display profile info (name, photo, bio, follower count) on your FlexServe dashboard. With your opt-in, we embed your recent Instagram posts as a feed section on your FlexServe-generated website. We use your Instagram bio to pre-fill your site tagline during onboarding.
What we never do
We never request publish_actions or any write scope. We never post on your behalf. We never message users on your behalf. We never transfer your data to any third party.
Google (Business Profile + YouTube)
Scopes requested: business.manage (sensitive), youtube.readonly, openid, email, profile
What we do with the data
Google Business reviews and ratings are displayed on your site as social proof. Hours, address, phone are pre-filled into your FlexServe site. YouTube videos may be embedded on your site if enabled.
What we never do
We never use business.manage to write or modify your listing. We never publish YouTube videos. We never request advertising scopes.
TikTok (Login Kit + Display API)
Scopes requested: user.info.basic, user.info.profile, user.info.stats, video.list
What we do with the data
Display connection status, follower count, and bio on your dashboard. Optionally embed your recent TikTok videos on your FlexServe site.
What we never do
We never publish videos to TikTok. We never use the data for ad targeting.
Storage and Retention
OAuth access and refresh tokens are encrypted at rest using AES-256-GCM with a 32-byte key held in AWS Secrets Manager. Data is deleted within 30 days of account closure or immediately on disconnect.
User Control
Users can disconnect any platform at any time from Dashboard > Connections. On disconnect, we immediately delete the stored tokens, stop all background jobs, and remove any displayed content from your site within 5 minutes.