POSTZAM™

Policies and Procedures

Last Updated: April 2026

Power Med LLC    U.S. Based    Founded 2014

This document describes PostZam’s operational, security, and customer-protection practices. It applies to our website, applications, systems, personnel, vendors, and all users of the Service.

1. How PostZam Operates

PostZam is a software service that helps users publish video content to multiple social platforms from a single upload. PostZam does not provide legal, financial, or advertising advice and does not guarantee outcomes such as reach, engagement, or platform approval.

PostZam collects payment only for its own software services. PostZam is not a marketplace, escrow service, or pass-through payment processor.

2. Accountability

Responsibility for trust, safety, and compliance is assigned to designated personnel covering:

       Security and Privacy

       Platform Compliance

       Billing and Risk

       Incident Response

Policies are reviewed periodically and updated to reflect changes in law, platform rules, processor requirements, and product functionality.

3. Account Security

       Users must provide accurate registration information and maintain secure credentials.

       PostZam uses 6-digit email verification to authenticate new users and sign-in sessions.

       PostZam may apply account-level controls including rate limits, step-up verification, or temporary holds where abuse or fraud risk is detected.

       Administrative actions including suspensions and reinstatements are logged for accountability.

4. Platform Compliance

PostZam uses only authorized integrations and officially supported APIs for all six supported platforms: TikTok, YouTube, Facebook, Instagram, LinkedIn, and X.

PostZam does not scrape platforms, bypass safeguards, simulate user behavior, or enable prohibited automation.

AutoPost applies platform-specific safe timing windows and delivery rules to prevent excessive posting, reduce spam risk, and protect user accounts in line with each platform’s posting guidelines.

The AI Caption Engine is designed to enforce each platform’s content and formatting rules at the time of caption generation, including character limits, permitted content categories, and platform-specific formatting.

If a platform changes its policies or API access, PostZam may modify features or disable affected integrations to maintain compliance. Platform-specific posting functions are isolated so a change in one platform does not affect the others.

Facebook API Limitation: PostZam can only post to Facebook Business Pages due to Facebook’s API policies. Posting to personal profiles is a permanent API limitation and is disclosed to all users.

5. AI Features and User Responsibility

PostZam provides AI-generated captions, hashtags, and thumbnails as tools to assist users. The AI Caption Engine is designed to generate content grounded in the user’s uploaded video, any link the user supplies through AutoLink, and the user’s literal written instructions.

AI Enhanced mode is the default. Users may switch to User Created mode with one tap at any time to write their own captions manually.

Users must review, edit, and approve all AI-generated content before posting. PostZam makes no warranty that AI-generated content will be accurate, appropriate, or compliant with platform policies or applicable law. Users retain full responsibility for everything posted under their accounts.

6. Content Safety

PostZam does not proactively review all user content. Users are solely responsible for content legality and platform compliance.

PostZam scans uploaded and recorded content for safety compliance using automated systems and industry-standard reference databases. Scanning is designed to detect content prohibited by law or platform rules.

Prohibited Content

PostZam does not permit the following:

       Illegal content of any kind

       Child sexual abuse material — zero tolerance, mandatory reporting to law enforcement under 18 U.S.C. § 2258A

       Terrorism or violent extremism content

       Adult or sexually explicit content

       Gambling content

       Financial schemes or fraudulent content

       Illegal or regulated goods

       Hate speech, extremist material, or content inciting violence

       Harassment with identifiable victims

       Non-consensual intimate imagery

Enforcement

Enforcement actions may include warnings, feature restrictions, throttling, removal of access to specific integrations, account suspension, or termination.

For content identified as potentially illegal, PostZam preserves evidence as required by law and cooperates with authorized law enforcement requests.

7. Security Program Overview

PostZam maintains administrative, technical, and physical safeguards designed to protect the confidentiality, integrity, and availability of systems and data. Controls include:

       Least-privilege access to all production systems

       Encryption in transit (TLS) and encryption at rest for sensitive data

       Encrypted storage of all social media authorization tokens — never exposed in logs or user interfaces

       Automated EXIF and technical metadata stripping from all uploaded and recorded videos

       6-digit email verification for sign-in

       Vulnerability management and secure development practices

       Monitoring, logging, and alerting on security events

8. Access Control

Access to production systems is restricted to authorized personnel on a need-to-know basis, governed by the principle of least privilege. Privileged access is logged, reviewed, and removed promptly upon role change or termination of personnel or contractors.

9. Data Handling

PostZam collects and processes data necessary to provide the Service, including account information, platform authorization tokens, credit transaction records, and usage metadata.

Sensitive secrets including API keys and authorization tokens are stored using secure encryption and are not exposed in client-side code, logs, error messages, or any user-facing interface.

PostZam does not sell personal data.

10. Payment Security

Payments are processed by Authorize.net, a PCI-compliant payment processor, through PostZam’s direct merchant account with Chase. PostZam does not store full payment card numbers, CVV codes, or magnetic stripe data. All card data is tokenized and handled exclusively by Authorize.net.

Billing events, credit purchase records, and transaction identifiers are retained for accounting, reconciliation, dispute management, and audit purposes.

Charges appear on user statements under: Power Med dba Post Zam, PostZam, or Power Med LLC.

11. Customer Transparency Controls

PostZam provides the following controls to help users avoid billing surprises and disputes:

       Credit cost displayed before every action — users always know what they are spending

       Credit balance visible on every screen at all times

       Low credit alert notification

       Billing statement names disclosed at checkout and in Terms

       Automated billing receipts via email

       Direct billing resolution path via billing@postzam.com before any bank dispute

       4-hour response target for billing inquiries

       Self-service account management

       AI Enhanced and User Created toggle — user control over AI use

       Clear post-by-post status on the results screen — success, failure with plain-English reason, or option to retry

12. Refunds and Disputes

PostZam’s approach to billing disputes is transparent pricing, clear descriptors, and direct resolution before any bank chargeback. Chargebacks and disputes are tracked and responded to with supporting documentation including credit purchase logs, access logs, posting activity logs, and Terms acceptance records.

PostZam intercepts potential disputes through direct email contact at billing@postzam.com before users contact their bank. Refunds are administered case by case in accordance with card network guidelines and applicable law. All credit purchases are generally non-refundable as disclosed in the Terms of Service.

13. Logging and Auditability

PostZam maintains operational logs sufficient to support security monitoring, troubleshooting, fraud detection, and dispute resolution. Logs may include authentication events, authorization changes, publishing attempts and results, platform API responses, credit deduction events, billing events, and administrative actions.

Every post attempt is logged with user identifier, platform, timestamp, credit amount deducted, and error codes where applicable.

Log access is restricted to authorized personnel.

14. Development and Vulnerability Management

PostZam follows secure development practices including code review, dependency management, and environment separation where practicable. Security issues are prioritized and remediated based on risk. High-risk vulnerabilities may require immediate mitigation, patching, or feature limitation.

All code is version-controlled in a private repository with access restricted to authorized developers.

15. Incident Response

PostZam maintains an incident response process designed to contain and mitigate impact, assess scope and root cause, restore service, notify affected parties where required, and document corrective actions. Incidents may include security events, data exposure risks, platform compliance issues, fraud events, or major service outages.

16. Business Continuity

PostZam performs automated backups and maintains reasonable recovery procedures. Infrastructure auto-scales during high usage periods and reduces capacity during low demand to prevent service degradation and billing instability.

While PostZam aims for high availability, uninterrupted service is not guaranteed. Planned maintenance may occur with advance notice where practicable.

17. Record Retention

PostZam retains records necessary for legal compliance, security, accounting, and dispute handling:

       Billing and transaction records: minimum 7 years

       Account and consent records: while active plus reasonable post-closure period

       Security and access logs: minimum 12 months

       Platform authorization records: while account is active

       Incident documentation: minimum 3 years

       Content safety evidence: preserved as required by law until released

Where users request deletion of personal data, PostZam processes the request subject to legal obligations, security needs, and legitimate business requirements.

18. Vendors and Service Providers

PostZam uses vetted service providers who are contractually required to protect data and use it only to provide services to PostZam. Primary categories include:

       Payment processing and merchant banking

       Transactional email delivery

       Cloud infrastructure and hosting

       AI caption and content safety analysis

       Child safety and counter-terrorism hash-matching services

       URL reputation screening

Vendor access is limited to necessary scope and is reviewed periodically.

19. Future PostZam App Add-Ons

PostZam may introduce future app add-ons as separate subscriptions or one-time purchases. Availability, pricing, and feature details for any future add-ons will be published on postzam.com and covered by the same Terms and Privacy Policy that govern the core Service.

20. Legal Requests

PostZam may respond to lawful requests from regulators, courts, law enforcement, payment processors, banks, and platform partners consistent with applicable law. Where permitted, PostZam may provide notice to affected users before disclosing information. For content identified as child sexual abuse material, disclosure to the National Center for Missing and Exploited Children and law enforcement is mandatory under federal law.

21. Copyright Complaints

PostZam responds to valid copyright notices. Repeat infringer accounts may be suspended or terminated. Copyright complaints should be submitted to admin@postzam.com with identification of the copyrighted work, identification of the infringing material, your contact information, and a statement of good-faith belief.

22. Updates to These Policies

PostZam may update these Policies and Procedures from time to time. Material changes may be communicated via the Service or email. Continued use of the Service after updates constitutes acceptance of the updated policies where permitted by law.

23. Contact

       Compliance and Trust — admin@postzam.com

       Security — admin@postzam.com

       Legal — admin@postzam.com

       Billing — billing@postzam.com

       Support — support@postzam.com

       Enterprise — sales@postzam.com

PostZam — Where Time Comes Back.

Power Med LLC    2020 Seven Springs Blvd, New Port Richey, FL 34655

U.S. Based    Founded 2014    postzam.com

PostZam™ Policies and Procedures  |  April 2026  |  admin@postzam.com