RReppyLoop

Privacy

Privacy Policy

How ReppyLoop handles business data, customer contact data, provider data, and opt-outs.

Last updated: June 16, 2026

Information we collect

  • Account information such as owner email, login details handled by Supabase Auth, and account identifiers.
  • Business information such as business name, booking link, review link, reply-to email, service settings, plan status, and setup preferences.
  • Customer contact information uploaded or entered by businesses, such as name, email, phone, service type, last visit date, return interval, and opt-in status.
  • Usage and analytics-style information such as page activity, message activity, clicks, imports, booking requests, and report metrics.

Customer data controlled by businesses

ReppyLoop processes customer contact data on behalf of the business owner. Businesses decide what customer data to upload and are responsible for having permission or another lawful basis to use that data.

ReppyLoop uses customer data to send follow-ups, track booking and review clicks, manage opt-outs, calculate due dates, and show reports.

How we use information

  • Provide login, dashboards, customer management, CSV import, templates, campaigns, tracking, and reports.
  • Send permitted email and SMS follow-ups when the business has the required plan, provider setup, and customer permission.
  • Manage SMS opt-ins and opt-outs, including STOP replies.
  • Process billing, subscriptions, support requests, security, troubleshooting, and service improvements.

How we share information

ReppyLoop does not sell customer lists. We share information with service providers only as needed to operate ReppyLoop, process payments, deliver messages, host data, or support the product.

Third-party providers

  • Supabase provides authentication, database, and related backend services.
  • Stripe processes payment information. Payment data is processed by Stripe and is not stored directly by ReppyLoop.
  • Resend provides email delivery.
  • Twilio provides SMS delivery when SMS is configured.

Data retention

ReppyLoop keeps business, customer, message, click, import, billing, and report records as needed to provide the service, comply with obligations, resolve disputes, and maintain audit history. Businesses can request deletion or export of account data by contacting support.

Data security

ReppyLoop uses reasonable technical and organizational safeguards for a beta SaaS product, including server-side provider keys and business-scoped access patterns. No system can promise perfect security.

Opt-out rights

Customers can opt out of SMS by replying STOP. Businesses should honor email unsubscribe or stop-contact requests and can mark customers replied, paused, opted out, or no longer eligible inside ReppyLoop.

Cookies and analytics

ReppyLoop uses essential cookies for authentication and service operation. If analytics tools or additional cookies are added later, this policy and the Cookie Policy should be updated.

Children's privacy

ReppyLoop is intended for business use and is not directed to children. Businesses should not upload data about children unless they have confirmed it is lawful and necessary for their own operations.

U.S. users and state privacy note

ReppyLoop is currently written for a U.S.-focused beta. Additional state-specific disclosures, consumer rights, or processor terms may be needed before broader commercial launch.

Contact

For privacy questions, deletion requests, or export requests, contact support@thereppy.com.