Frequently Asked Questions

How does Inflowave connect to Instagram?

Inflowave connects through the official Instagram Graph API. You authorize access via Meta's OAuth flow, which happens on Meta's own pages. We never ask for or store your Instagram password.

Are you an official Meta / Instagram partner?

Inflowave uses the official Instagram Graph API and related Meta APIs under Meta's Platform Terms. Where relevant, we can provide up-to-date information about our app review status and permissions in your due diligence process, and you can always revoke access directly from your Meta account.

Do you store my Instagram login credentials?

No. Authentication is handled entirely through Meta's OAuth authorization. We receive scoped access tokens from Meta, store them encrypted, and you can revoke them at any time from your Meta account settings.

Can using Inflowave get my Instagram account banned?

Our goal is to keep your accounts safe. Inflowave works only with Meta-approved APIs and respects published rate limits. We do not perform browser emulation, password-based logins, or actions that are explicitly prohibited in Meta's Platform Terms.

Where is my data stored?

Inflowave uses encrypted databases hosted on Amazon Web Services (AWS) and our managed database providers. Primary storage and backups are in regions that support strong privacy protections, including the EU and Canada, as described in our Privacy Policy.

How is user and client data protected?

We apply multiple layers of technical and organizational security controls:

• TLS 1.2+ encryption for all data in transit
• AES-256 encryption at rest for databases and backups
• Role-based access controls and least-privilege access for staff
• Row-Level Security (RLS) to isolate tenant data where applicable
• Encrypted secret management and regular key rotation

You can find a deeper technical overview on our Security page.

Is Inflowave GDPR compliant?

Yes. Inflowave is operated by AIAGS Ltd in the United Kingdom and is designed to comply with the General Data Protection Regulation (GDPR) and UK GDPR. We provide a Data Processing Agreement (DPA) that defines our role as a processor and your role as controller.

Do you support CCPA and other privacy laws?

Our Privacy Policy and related notices are written to align with CCPA/CPRA and other major privacy regimes. We do not sell personal data and provide mechanisms for access, deletion, and opt-out where applicable.

Where can I review your legal documents?

Our core policies are published publicly and can be reviewed at any time:

• Privacy Policy
• Terms of Service
• Compliance overview
• Data Processing Agreement (DPA)

Who is the legal entity behind Inflowave?

Inflowave is operated by AIAGS Ltd, a company registered in the United Kingdom. You can verify the company details in the UK Companies House register and use this information as part of your vendor due diligence.

How do subscriptions, renewals, and cancellations work?

Payments are processed securely via Stripe. Subscriptions renew automatically at the end of each billing cycle unless cancelled from your account or via support. You can cancel at any time; future renewals will be stopped, and our Refund & Billing Policy explains eligibility for refunds in more detail.

What happens to my data if I cancel?

You can export important data before cancellation where supported in the app. We retain limited records only as long as necessary for legal, accounting, and fraud prevention purposes, as described in our Privacy Policy. Operational data is progressively deleted or anonymized according to our retention schedules.