Privacy Policy

Last updated: June 10, 2026

This Policy explains what data tehspec (website tehspec.tech, “we”, “the Service”) processes when you use the tehspec Carousel Publisher application, which publishes content to Pinterest through the official Pinterest API.

Data controller: tehspec. Privacy and data-deletion contact: info@tehspec.tech.

1. What data we process

• Data you provide: titles, descriptions and images you upload to publish carousels.
• Technical data: IP address, browser type, access logs — for operating and securing the service.
• Data received from Pinterest (only if you connect an account) — see Section 2.

2. Pinterest API data processing

The application uses the Pinterest API v5 with OAuth 2.0 authorization. We never ask for or store your Pinterest login or password — authentication happens on Pinterest’s side, and we only receive an access token.

Data we receive from Pinterest:

• an access token and a refresh token;
• public account data: your username and account type;
• the list of your boards (board id, names) so you can choose where to publish;
• the ids of pins created by your action.

Requested scopes: boards:read, boards:write, pins:write, user_accounts:read.

How we use this data: solely to publish, upon your explicit action, a carousel pin to your own Pinterest account. We never publish anything without you clicking the button.

How we store data:

• The Pinterest access token is stored only in a signed (tamper-proof) session cookie in your browser, sent over HTTPS, and lives no longer than the session (up to 8 hours), after which it is discarded. We do not persist tokens in any database.
• Uploaded images are processed in memory only to publish them and are not stored on our server.
• Data in transit is protected with TLS (HTTPS).

What we do NOT do: we do not share your Pinterest account data with third parties; we do not sell data or use it for advertising or profiling; we do not access your private messages, follows, or other people’s accounts.

Use of the Pinterest API is subject to the Pinterest Developer Terms and the Pinterest Privacy Policy.

3. Revoking access and deleting data

You can revoke the application’s access at any time in your Pinterest account settings: Settings → Security → Apps. To request deletion of all data related to you, email info@tehspec.tech. We will delete the data within 30 days of the request.

4. Retention

• Tokens — only for the duration of the session (up to 8 hours).
• Uploaded images — not stored (processed in memory).
• Technical logs — no longer than required for security and law.

5. Your rights

You may request access to, correction or deletion of your data, and withdraw consent to processing, by emailing info@tehspec.tech.

6. Changes to this Policy

We may update this Policy. The current version is always available at this URL with the date of the latest change.