Privacy Policy

Last updated: February 2026

1. Introduction

TubeCMS ("we", "our", or "us") operates a hosted website platform for YouTube creators at tubecms.app. When you sign up, we provide you with a fully managed website at {yourname}.tubecms.app that automatically syncs with your YouTube channel.

This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our platform. Because TubeCMS is a hosted service (Software as a Service), we store and process your data on our infrastructure (hosted on Microsoft Azure) — unlike self-hosted software, your information is managed by us.

By creating an account or using our platform, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use our services.

2. Information We Collect

2.1 Account Information

When you sign up for TubeCMS, we collect:

  • Email address — used for authentication, transactional emails, and account recovery
  • Authentication — we use passwordless magic links sent to your email; no passwords are stored
  • Site slug — your chosen subdomain (e.g., yourname.tubecms.app)
  • Plan selection — your current subscription plan (Trial, Starter, or Pro)

2.2 YouTube Data

When you connect your YouTube channel via Google OAuth, we access and store:

  • OAuth tokens — access and refresh tokens that allow us to communicate with the YouTube API on your behalf
  • Channel identifier — your YouTube channel ID, used to associate your channel connection with your TubeCMS site
  • Channel information — your channel name, description, subscriber count, and profile image
  • Video metadata — titles, descriptions, thumbnails, tags, publication dates, view counts, and other video metadata returned by the YouTube API for your channel (we only publish public videos)

We access your YouTube data solely to populate and keep your TubeCMS site up to date. The YouTube API may return metadata for all videos on your channel, including private and unlisted videos; however, we do not store or display private or unlisted videos. Any non-public video metadata returned by the API is not imported into your site and is not retained beyond transient processing required to perform the sync. We do not log OAuth tokens or store raw API responses longer than necessary to complete the sync. We do not access your revenue data or any information beyond what is necessary to operate the service.

Refresh tokens are encrypted at rest and access is restricted to the TubeCMS service.

You can disconnect your YouTube channel at any time from your admin panel. When you disconnect — or if you revoke TubeCMS's access via your Google account settings — we delete YouTube API data from our active systems, including cached video metadata, thumbnails, view counts, and OAuth tokens. Any custom video annotations, tags, and featured video selections you created are also deleted, as they are associated with the YouTube data. Residual copies may remain in encrypted backups for up to 30 days and in CDN caches for a limited period before expiring.

Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

2.2.1 Sharing, transfer, and disclosure of Google user data

We do not sell, share, transfer, or disclose Google user data to any third parties, except in the following limited circumstances:

  • Displaying your content — video metadata (titles, descriptions, thumbnails, view counts) obtained from the YouTube API may be displayed publicly on your TubeCMS site only for videos you choose to display (e.g., videos not marked as hidden in your admin settings). This is the core purpose of the service you have authorised. This means visitors to your site (and search engines) may view that published content.
  • Infrastructure providers — Google user data may be processed by our hosting provider (Microsoft Azure) and CDN (Cloudflare) solely as part of operating the service. These providers act as data processors and do not have independent access to or use of your Google data.
  • Legal requirements — we may disclose Google user data if required to do so by law, court order, or governmental authority.

We do not use Google user data for advertising, analytics, determining creditworthiness, lending, or any purpose unrelated to providing and operating your TubeCMS site. OAuth tokens are stored only in your isolated tenant database and are used exclusively to communicate with the YouTube API on your behalf.

TubeCMS staff do not read your Google user data unless (a) you have given us explicit permission (e.g., when requesting support), (b) it is necessary for security purposes such as investigating abuse, or (c) we are required to do so by law.

2.3 Fourthwall Data

If you connect a Fourthwall merch store to your TubeCMS site via OAuth, we access and store:

  • OAuth tokens — access and refresh tokens that allow us to communicate with the Fourthwall API on your behalf
  • Shop name — your Fourthwall shop name, used to display your merch page

Product data (titles, images, prices, availability) is fetched live from the Fourthwall API when visitors view your merch page and is not permanently stored on our servers.

You can disconnect your Fourthwall store at any time from your admin panel. When you disconnect, we permanently delete your stored OAuth tokens and shop name.

2.4 Site Content

Content you create and manage through your TubeCMS admin panel is stored on our platform, including:

  • Blog posts, updates, and CMS pages
  • Uploaded media (images, favicons)
  • Site settings and customisation preferences (theme, colours, SEO metadata)

2.5 Analytics Data

TubeCMS includes built-in, first-party analytics. We collect the following data for all plans (the level of detail shown in your dashboard varies by plan):

  • Page views — which pages on your site are visited
  • Referrer information — the website or source that directed a visitor to your site
  • Browser and device type — generalised user agent information
  • Country — derived from your IP address at the time of your visit; the IP address itself is not stored

We do not store visitor IP addresses in TubeCMS Analytics reports; however, IP addresses may be processed and retained in our own platform security logs (e.g., login attempts, account deletion records) and by our infrastructure providers (Cloudflare and Azure Application Insights) for security, fraud prevention, and abuse detection.

We do not use any third-party tracking scripts, advertising pixels, or cross-site trackers. Analytics data is stored per-tenant and is only visible to the site owner.

2.6 Contact Form Submissions

If a visitor submits a message through the contact form on your TubeCMS site, we store:

  • The visitor's name and email address (as provided by them)
  • The message content

This data is stored within your tenant database and is accessible only to you as the site owner. A notification email is sent to you via Resend when a new submission is received.

2.7 Payment Information

If you subscribe to a paid plan (Starter or Pro), payment is processed by Stripe. We store a Stripe customer identifier to manage your subscription, but we do not store your credit card number, CVV, or full card details on our servers. All payment data is handled directly by Stripe in accordance with PCI DSS standards.

3. How We Use Your Information

We use the information we collect to:

  • Provide and operate the service — create your site, sync your YouTube channel, serve your content to visitors
  • Authenticate you — verify your identity when you sign in to your admin panel
  • Send transactional emails — magic link sign-in emails, welcome emails, and important account notifications
  • Process payments — manage your subscription and billing through Stripe
  • Provide analytics — show you first-party visitor statistics for your site
  • Improve the platform — understand usage patterns to fix bugs and develop new features
  • Ensure security — detect and prevent abuse, fraud, and unauthorised access
  • Comply with legal obligations — respond to lawful requests from authorities where required

We will never sell your personal information to third parties. We do not use your data for advertising or profiling purposes.

Lawful bases

Under the UK GDPR and EU GDPR, we process personal data on the following legal bases: (a) contract — to perform our contract with you (providing the Service, processing payments, sending transactional emails); (b) legal obligation — to comply with applicable laws (e.g., financial record-keeping); and (c) legitimate interests — for security, fraud prevention, service reliability, and first-party analytics, where those interests are not overridden by your rights. Where consent is required, we will request it explicitly and you may withdraw it at any time.

Controller and processor roles

TubeCMS is the data controller for Account data and platform operations. For content you publish on your Site and contact form submissions from your Visitors, you are the controller and TubeCMS acts as your processor, processing that data only to host and operate your Site and provide the Service.

4. Third-Party Services

We use the following third-party services to operate TubeCMS. Each has its own privacy policy governing their handling of your data:

4.1 Cloudflare

We use Cloudflare for content delivery (CDN), DDoS protection, and security. Cloudflare processes request data (IP addresses, headers) to route and protect traffic to our platform. We also use Cloudflare Turnstile for bot protection on signup, login, and contact forms. Turnstile may process browser signals to verify that visitors are human; it does not use tracking cookies or advertising identifiers.

On our marketing website (tubecms.app), we use Cloudflare Web Analytics to collect anonymous usage statistics such as page views, referrers, and browser information. Cloudflare Web Analytics does not use cookies, does not collect personal data, and does not track visitors across websites.

Cloudflare Privacy Policy

4.2 Google OAuth (YouTube API)

We use Google OAuth to allow you to connect your YouTube channel. When you authorise TubeCMS, Google shares an access token and, where applicable, a refresh token along with basic channel information. We request the youtube.readonly scope to read your channel and video data. This scope may return metadata for all videos, including private and unlisted; we only store and display public videos (see Section 2.2). If you revoke TubeCMS's access from your Google account settings, we delete stored tokens and cached YouTube data when we detect the revocation (typically on the next sync attempt). See Section 2.2 for full details.

Google Privacy Policy

4.3 Resend

We use Resend to send transactional emails, including magic link sign-in emails, welcome emails, and contact form notifications. Resend processes recipient email addresses and message content to deliver these emails on our behalf.

Resend Privacy Policy

4.4 Fourthwall

If you connect a Fourthwall merch store, we use the Fourthwall API to fetch your product catalogue and display it on your site. We store OAuth tokens in your isolated tenant database and fetch product data live on each page view. No visitor data is shared with Fourthwall through this integration.

Fourthwall Privacy Policy

4.5 Microsoft Azure

TubeCMS is hosted on Microsoft Azure. Azure provides the compute, storage, and networking infrastructure that runs the platform. We also use Azure Application Insights to collect server-side diagnostic data (such as request URLs, response times, errors, and IP addresses) to monitor performance and reliability. No client-side tracking scripts are used.

Microsoft Privacy Statement

4.6 Stripe

We use Stripe to process subscription payments for paid plans (Starter and Pro). When you enter payment details, they are sent directly to Stripe and are never transmitted to or stored on our servers.

Stripe Privacy Policy

International transfers

Our infrastructure providers may process personal data outside the UK and EEA. Where this occurs, we rely on appropriate safeguards (such as standard contractual clauses and/or adequacy decisions) to protect personal data in accordance with applicable data protection law.

5. Data Storage and Security

We take the security of your data seriously and implement appropriate technical and organisational measures to protect it:

  • Tenant isolation — each TubeCMS site has its own isolated database. Your data is never co-mingled with other tenants' data.
  • Encryption in transit — all connections to TubeCMS are encrypted via HTTPS/TLS. We enforce HSTS with a one-year maximum age.
  • Passwordless authentication — we use magic links sent via email instead of passwords, eliminating the risk of password theft or credential stuffing.
  • OAuth token storage — YouTube and Fourthwall OAuth tokens are stored in your isolated tenant database and are used only to communicate with their respective APIs.
  • Upload security — uploaded files are validated by magic bytes and extension allowlist, SVG files are sanitised to remove scripts and event handlers, and file sizes are enforced per plan.
  • Content Security Policy — we enforce a strict CSP header to mitigate cross-site scripting attacks.
  • Rate limiting — login, signup, and contact form endpoints are rate-limited to prevent abuse.

While we strive to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security, but we are committed to promptly addressing any vulnerabilities or breaches.

6. Your Rights

Depending on your location, you may have the following rights under applicable data protection laws, including the General Data Protection Regulation (GDPR):

  • Right of access — request a copy of the personal data we hold about you
  • Right to rectification — request correction of inaccurate or incomplete personal data
  • Right to erasure — request deletion of your personal data (see also Section 8 on data retention)
  • Right to restrict processing — request that we limit how we use your data in certain circumstances
  • Right to data portability — request your data in a structured, commonly used, machine-readable format
  • Right to object — object to our processing of your personal data for certain purposes
  • Right to withdraw consent — where processing is based on consent, you may withdraw it at any time

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days. If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority. For UK users, this is the Information Commissioner’s Office (ICO).

You can also take the following actions directly from your TubeCMS admin panel:

  • Disconnect your YouTube channel — revokes OAuth access and deletes stored tokens and video metadata
  • Disconnect your Fourthwall store — deletes stored OAuth tokens and shop name
  • Delete your account — permanently removes your tenant, database, uploaded files, and all associated content (see Section 8 for details on minimal records we retain)

7. Cookies

TubeCMS uses only essential cookies that are strictly necessary for the platform to function. We do not use tracking cookies, advertising cookies, or any third-party cookie-based analytics.

The cookies we set include:

  • Authentication cookie — keeps you signed in to your admin panel. This is a session cookie set when you log in and removed when you log out or it expires.
  • Anti-forgery token (CSRF) — protects form submissions against cross-site request forgery attacks. This is a security cookie required by the framework.

Cloudflare and Cloudflare Turnstile may also set strictly necessary security cookies or signals to distinguish genuine visitors from bots. These do not track users across websites.

Because all cookies used on the platform are strictly necessary for the operation or security of the service and do not track users across websites, they do not require consent under GDPR or the ePrivacy Directive. No cookie banner is necessary.

8. Data Retention

We retain your data for as long as your account is active and as needed to provide you with our services:

  • Account data — retained for the lifetime of your account. When you delete your account, all associated data is removed from our active systems, including your database, uploaded files, and tenant directory.
  • YouTube data — retained while your channel is connected. If you disconnect your channel or revoke access, we delete OAuth tokens and all cached YouTube data (video metadata, thumbnails, view counts, and any custom annotations or tags) from our active systems. Residual copies may remain in encrypted backups for up to 30 days.
  • Fourthwall data — OAuth tokens and shop name are retained while your store is connected. If you disconnect your Fourthwall store, tokens and shop name are deleted immediately. Product data is fetched live and is not stored.
  • Analytics data — retained for the lifetime of your account. Raw page view records (which do not contain IP addresses) are automatically deleted after 30 days. Aggregated daily statistics are kept indefinitely.
  • Contact form submissions — retained within your tenant database until you delete them or delete your account.
  • Payment records — Stripe customer identifiers are retained for as long as needed to manage your subscription and comply with financial record-keeping obligations. Stripe retains payment data in accordance with its own retention policies.
  • Deleted accounts — when an account is deleted (whether by you or by automated trial expiry), we remove all tenant data (database, uploads, configuration) from our infrastructure. We retain a minimal audit record of the deletion event itself — including your email address, plan, account creation date, IP address, and the date of deletion — for security, fraud prevention, and legal compliance purposes. This record does not include any of your site content, uploaded files, or visitor data. Some data may also persist in encrypted backups for a limited period before expiring.

Where an account is suspended or expires (e.g., trial expiry, cancellation, failed payment), retention and deletion timelines follow the Terms of Service Section 11 (Data Retention, Export and Deletion).

9. Children's Privacy

TubeCMS is not directed at individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at [email protected] and we will promptly delete that information.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make changes:

  • We will update the "Last updated" date at the top of this page
  • For material changes, we will notify you by email or through a notice on the platform
  • Continued use of TubeCMS after changes take effect constitutes acceptance of the updated policy

We encourage you to review this policy periodically.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: