Privacy Policy

Rebrandly AI ("we", "our", "us") is committed to protecting the personal data of users who access or use the platform available at rebrandly.ai (the "Service"). This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data.

By using the Service, you agree to the practices described in this policy. If you do not agree, you must not use the Service.

Account data: When you register, we collect your email address and a hashed version of your password. We do not store plaintext passwords.

Usage data: We log the number of analyses performed per day, export actions, and feature interactions for rate-limiting and plan enforcement. We do not log the full content of scraped URLs.

Analysis inputs: Store URLs or keywords you submit are processed in real time. We do not permanently store raw input URLs beyond your saved history, which you can delete at any time.

Payment data: Payments are processed by Stripe. We receive only a subscription status token and customer ID. No card numbers or bank details are stored on our servers.

Technical data: IP address, browser type, and request timestamps are retained in server logs for up to 30 days for security and abuse prevention purposes.

We use collected data solely to operate and improve the Service:

• Authenticate your account and enforce plan limits
• Process AI requests via third-party inference APIs (Groq, Google Gemini)
• Send transactional emails (account creation, password reset, billing)
• Detect and prevent abuse, fraud, and security incidents
• Improve feature reliability based on aggregated, anonymised usage patterns

We do not sell your data to third parties. We do not use your data for advertising.

The Service integrates with the following third-party processors. Each has its own privacy practices:

• Groq, Inc. — LLM inference for content rewriting (your product data is sent to Groq APIs)
• Google LLC (Gemini) — AI-assisted product analysis on the free tier
• Stripe, Inc. — Payment processing
• Vercel, Inc. — Hosting and CDN infrastructure

When you use the scraper, the Service makes outbound requests to publicly accessible third-party Shopify store endpoints. We are not affiliated with Shopify Inc.

Free plan analysis history is retained for 7 days. Pro plan history is retained indefinitely until deleted by you. You may delete all your data at any time from the Settings page. Upon account deletion, all personal data is purged within 30 days.

Depending on your jurisdiction, you may have the right to access, correct, export, or delete your personal data. To exercise these rights, contact us at privacy@rebrandly.ai. We will respond within 30 days.

We use HTTPS/TLS for all data in transit. Passwords are hashed using bcrypt. API keys stored in settings are encrypted at rest. We conduct periodic security reviews of infrastructure and dependencies.

The Service is not directed at individuals under 18 years of age. We do not knowingly collect data from minors. If we learn that data from a minor has been submitted, we will delete it promptly.

We may update this Privacy Policy from time to time. Material changes will be communicated via email or a notice on the platform. Continued use after notice constitutes acceptance of the updated policy.

Questions about this policy should be directed to: privacy@rebrandly.ai