AutoReplyrAutoReplyr
Start Free Trial

Privacy Policy

Last Updated: January 9, 2026

1. Introduction

AutoReplyr Inc. ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our automated messenger response service ("Service").

By using the Service, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use the Service.

This policy should be read together with our Terms of Service.

2. Data We Collect

We collect different types of information to provide and improve our Service:

Account Information

  • Email address
  • Full name
  • Profile picture (optional)
  • Password (stored in encrypted form)

Messaging Data

  • Conversation content processed through the Service
  • Message metadata (timestamps, sender/recipient identifiers)
  • Attachments and media files you process through the Service
  • Auto-response configurations and rules you create

Technical Data

  • IP address
  • Device type and operating system
  • Browser type and version
  • Usage patterns and feature interactions
  • Error logs and performance data

Payment Information

Payment information (credit card numbers, billing addresses) is collected and processed directly by Stripe. We do not store your full payment card details on our servers.

3. How We Use Your Data

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Process your transactions and manage your subscription
  • Send you technical notices and support messages
  • Respond to your comments and questions
  • Detect, investigate, and prevent fraudulent or unauthorized activity
  • Analyze usage patterns to improve user experience and performance
  • Comply with legal obligations and protect our rights

We do not sell your personal information to third parties. We do not use your message content for advertising purposes.

4. Data Storage and Security

Your data is stored on servers provided by Supabase, our backend-as-a-service provider. Supabase uses PostgreSQL databases with encryption at rest and in transit.

Security Measures

  • All data is encrypted in transit using TLS 1.3
  • Data at rest is encrypted using AES-256 encryption
  • Row Level Security (RLS) policies ensure users can only access their own data
  • Regular security audits and vulnerability assessments
  • Access to production systems is restricted and logged

While we implement industry-standard security measures, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

5. Payment Processing

We use Stripe as our payment processor. When you provide payment information, it is transmitted directly to Stripe using their secure infrastructure.

Stripe's handling of your payment data is governed by:

We receive from Stripe only limited information such as the last four digits of your card, card type, and billing address for record-keeping and customer support purposes.

6. Cookies and Tracking

We use cookies and similar tracking technologies to maintain your session and improve your experience.

Essential Cookies

Required for the Service to function. These include session cookies for authentication and security tokens.

Analytics Cookies

Help us understand how users interact with the Service. We use this data to improve features and performance. These cookies collect anonymized data.

Managing Cookies

You can control cookies through your browser settings. Disabling essential cookies may prevent you from using certain features of the Service.

7. Third-Party Services

We work with third-party service providers to operate and improve the Service:

  • Supabase - Database hosting, authentication, and file storage
  • Stripe - Payment processing and subscription management
  • Vercel - Website hosting and content delivery

These providers are contractually obligated to protect your data and may only use it to provide services to us.

8. Data Retention

We retain your data as follows:

  • Account data: Retained while your account is active and for 30 days after deletion request
  • Message data: Retained while your account is active; deleted upon account termination
  • Attachments: Retained while your account is active; deleted upon account termination
  • Billing records: Retained for 7 years for legal and tax compliance
  • Audit logs: Retained for 1 year for security purposes

You may request deletion of your data at any time by contacting us or using the account settings in the Service.

9. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Request correction of inaccurate or incomplete data
  • Erasure: Request deletion of your personal data
  • Portability: Request a copy of your data in a machine-readable format
  • Restriction: Request that we limit how we use your data
  • Objection: Object to certain types of processing
  • Withdraw consent: Withdraw any previously given consent

To exercise these rights, please contact us using the information provided below.

10. GDPR Compliance

For users in the European Economic Area (EEA), we process personal data in accordance with the General Data Protection Regulation (GDPR).

Legal Basis for Processing

  • Contract performance: Processing necessary to provide the Service you requested
  • Legitimate interests: Improving the Service, preventing fraud, ensuring security
  • Consent: Where you have given explicit consent (e.g., marketing communications)
  • Legal obligation: Where required by law (e.g., tax records)

International Data Transfers

Your data may be transferred to and processed in countries outside the EEA. When this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

Data Protection Officer

For GDPR-related inquiries, you may contact our Data Protection Officer at dpo@autoreplyr.app.

11. CCPA Compliance

For California residents, we comply with the California Consumer Privacy Act (CCPA).

Your CCPA Rights

  • Right to Know: You may request information about the categories and specific pieces of personal information we collect
  • Right to Delete: You may request deletion of your personal information
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights
  • Right to Opt-Out: We do not sell personal information, so no opt-out is required

Categories of Information Collected

In the past 12 months, we have collected identifiers (email, name), commercial information (subscription history), internet activity (usage data), and inferences (user preferences).

To exercise your CCPA rights, contact us at privacy@autoreplyr.app or call us at 1-800-AUTOREPLYR.

12. Children's Privacy

The Service is not intended for children under the age of 16. We do not knowingly collect personal information from children under 16.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we discover that a child under 16 has provided us with personal information, we will delete it promptly.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.

For significant changes, we will provide more prominent notice, such as an email notification. We encourage you to review this Privacy Policy periodically.

Your continued use of the Service after any changes indicates your acceptance of the updated policy.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

AutoReplyr Inc.
123 Tech Street
San Francisco, CA 94105
United States

Back to top