1. Introduction
ReplyRight ("we," "our," or "us") operates the website getreplyright.net and provides AI-powered review response services for local businesses. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.
By using ReplyRight, you agree to the collection and use of information in accordance with this policy.
2. Information We Collect
Information You Provide Directly
- Account information: Your name, business name, email address, business type, and contact details when you sign up
- Business profile: Your Google Business Profile URL, Yelp URL, Facebook URL, and other review platform links
- Review content: Customer reviews you submit through our dashboard for response generation
- Brand preferences: Your preferred response tone, sign-off name, and brand voice description
- Payment information: Processed securely by Stripe. We do not store credit card numbers.
Information from Third-Party Services
- Google Business Profile: When you connect your Google account, we access your business location data and reviews via the Google Business Profile API. We store OAuth tokens to act on your behalf.
- Stripe: Subscription status, plan type, and billing history
Information Collected Automatically
- Browser type and version
- Pages visited and time spent
- IP address and general location
- Referring website
3. How We Use Your Information
We use the information we collect to:
- Provide and operate the ReplyRight service
- Generate AI-powered responses to your customer reviews
- Post responses to Google Business Profile on your behalf (Concierge and Agency plans)
- Send you email notifications about new reviews and completed responses
- Process payments and manage your subscription
- Communicate with you about your account and our services
- Improve our AI response quality
- Comply with legal obligations
4. Google API Data Usage
ReplyRight's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Specifically:
- We only request access to Google Business Profile data necessary to provide the review response service
- We do not sell Google user data to third parties
- We do not use Google data for advertising purposes
- We do not allow humans to read your Google data except to provide the service, with your permission, or as required by law
- You can revoke our access at any time by disconnecting your Google account in your dashboard or through your Google account settings at myaccount.google.com/permissions
5. Data Storage and Security
Your data is stored securely using Supabase, a PostgreSQL-based database service with enterprise-grade security. We implement appropriate technical and organizational measures including:
- Encrypted connections (HTTPS/TLS) for all data transmission
- Row-level security policies in our database
- Secure storage of OAuth tokens
- Regular security reviews
No method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.
6. Data Sharing and Disclosure
We do not sell, trade, or rent your personal information. We may share your information only in these circumstances:
- Service providers: Supabase (database), Stripe (payments), Resend (email), Anthropic (AI responses), Netlify (hosting), Google (Business Profile API)
- Legal requirements: If required by law or to protect the rights and safety of our users
- Business transfer: In the event of a merger or acquisition, with notice to affected users
7. Data Retention
We retain your data for as long as your account is active or as needed to provide services. When you cancel your subscription:
- Your account data is retained for 30 days to allow reactivation
- After 30 days, your personal data is deleted from our systems
- Google OAuth tokens are revoked immediately upon account deletion
- Anonymized usage data may be retained for service improvement
8. Your Rights
You have the right to:
- Access: Request a copy of the data we hold about you
- Correction: Update or correct inaccurate data
- Deletion: Request deletion of your account and associated data
- Portability: Receive your data in a portable format
- Revoke access: Disconnect your Google account at any time
- Opt out: Unsubscribe from marketing emails at any time
To exercise any of these rights, email us at sean@getreplyright.net.
9. Cookies
We use minimal cookies and browser storage for authentication purposes only (storing your login session). We do not use tracking cookies or third-party advertising cookies.
10. Children's Privacy
ReplyRight is not intended for use by children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us immediately.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by posting a prominent notice on our website. Continued use of ReplyRight after changes constitutes acceptance of the updated policy.
12. Contact Us
If you have questions about this Privacy Policy or how we handle your data, please contact us:
Get in touch
We typically respond within 1 business day.
sean@getreplyright.netReplyRight · getreplyright.net · Sellersburg, IN