Privacy Policy

Last updated: April 27, 2026

1. Overview

NetEra ("we", "our", "us") operates the Instagram Direct Message auto-reply service for business accounts listed under our Meta Developer App (App ID: 857098626221672). This policy describes how we handle data when users interact with our service through Instagram messaging.

2. Data We Receive

When a user sends a Direct Message to one of our connected Instagram business accounts, we receive the following data from the Meta Graph API:

• Sender ID — the unique Instagram-scoped identifier of the message sender
• Message text — the content of the inbound message
• Timestamp — when the message was sent

We do not access, collect, or store the sender's Instagram profile, email address, phone number, or any other personal information beyond what is necessary to process the message.

3. How We Use Data

Inbound messages are processed in real time to:

• Classify the message intent using keyword matching (e.g., reservation, location, pricing, hours, dress code)
• Select and send a single predefined, static reply relevant to the classified intent

We do not:

• Use AI, machine learning, or natural language generation to compose responses
• Send bulk messages or broadcast messages to any user
• Message users who have not first messaged our business account (inbound-only)
• Send more than one automated reply per inbound message

4. Data Storage and Retention

Message data is processed in real time and is not stored long-term. Inbound message content and sender IDs are held in server memory only for the duration of processing (typically under 5 seconds) and are not written to any database, log file, or persistent storage.

Reply confirmation metadata (message send status) may be retained for up to 7 days for error monitoring and debugging, after which it is automatically purged.

5. Data Sharing

We do not sell, rent, share, or transfer any message data or personal information to any third party. Data is processed solely within our own infrastructure.

6. Data Security

All data transmission between our service and Meta uses HTTPS/TLS encryption. Our processing servers are access-controlled and monitored. We follow industry-standard security practices to protect any data in transit.

7. User Rights

Users who have interacted with our service may:

• Request information about what data was processed
• Request deletion of any retained data
• Opt out of automated responses by indicating they no longer wish to receive them

To exercise any of these rights, contact us at: me@michaelemil.com

8. Third-Party Services

Our service integrates with the Meta Graph API and Instagram platform. These services have their own privacy policies:

• Meta Privacy Policy
• Instagram Privacy Policy

9. Facebook and Instagram Platform Compliance

This application complies with the Meta Platform Terms and Developer Policies. Specifically:

• We only use permissions we have been granted through App Review
• We only process data necessary for the stated functionality
• We do not transfer Platform Data to any ad network, data broker, or other advertising-related tool
• We do not use Platform Data for surveillance or to provide government entities with intelligence

10. Data Deletion

If a user requests deletion of their data, we will delete any retained processing records within 30 days. Since we do not store message content long-term, most data is already purged within seconds of processing.

11. Changes to This Policy

We may update this policy from time to time. Any changes will be posted on this page with an updated revision date. Continued use of our messaging service after changes constitutes acceptance of the updated policy.

12. Contact

For privacy inquiries or data requests, contact:

NetEra
me@michaelemil.com