OAuth, not passwords
Connecting a social account uses that platform's own OAuth login screen. SocioPilots never sees or stores your social media password.
Tokens encrypted at rest
Access and refresh tokens for every connected account are encrypted before they're stored, using a dedicated encryption key separate from the database credentials.
Disconnect anytime
You can disconnect a connected account at any time from your Accounts page. Disconnecting immediately removes SocioPilots' ability to post on that account's behalf.
Scoped access
SocioPilots only requests the OAuth permissions it needs to publish posts and comments — not broad account management access.