Privacy Policy

Last updated: June 17, 2026

1. Information We Collect

We collect the following types of information:

  • Account information: Name, email address, and password when you register.
  • Business information: Business name, address, phone number, and booking link provided during onboarding.
  • Contact data: Names, phone numbers, and email addresses of your customers or patients that you upload or add to the platform.
  • Usage data: Log data, IP addresses, browser type, pages visited, and actions taken within the platform.
  • Payment information: Handled directly by Stripe. We do not store credit card numbers.
  • SMS logs: Records of messages sent through the platform, including message content, status, and timestamps.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and improve the ReachBack service
  • Send automated SMS messages on your behalf to your contacts
  • Process payments and manage subscriptions
  • Communicate with you about your account, updates, and support
  • Comply with legal obligations
  • Detect and prevent fraud or abuse

3. Contact Data and SMS Messaging

The names and phone numbers of your customers or patients ("contact data") are stored solely to power the SMS automation features you have configured. We do not sell, share, or use this contact data for any purpose other than providing the Service to your business. You are responsible for obtaining proper consent from your contacts before sending them SMS messages through ReachBack.

4. Information Sharing

We do not sell your personal information. We share information only with:

  • Twilio: To deliver SMS messages. Twilio receives the phone numbers and message content necessary to send messages.
  • Stripe: To process payments securely.
  • Service providers: Third-party vendors that assist us in operating the platform, subject to confidentiality obligations.
  • Legal requirements: When required by law, court order, or governmental authority.

5. Data Security

We implement industry-standard security measures including encrypted data storage, HTTPS for all connections, and access controls to protect your information. Twilio API credentials are stored encrypted. However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your account and business data for as long as your account is active or as needed to provide the Service. SMS logs are retained for 12 months. Contact data is retained until you delete it or close your account. Upon account termination, we will delete your data within 30 days, except where retention is required by law.

7. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict our processing of your data
  • Data portability

To exercise any of these rights, contact us at support@reachback.app.

8. Cookies

We use essential cookies to maintain your session and authentication state. We do not use third-party advertising or tracking cookies.

9. Children's Privacy

ReachBack is intended for use by businesses and is not directed at children under 13. We do not knowingly collect personal information from children under 13.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or a notice within the platform. Your continued use of the Service after the changes take effect constitutes your acceptance of the updated policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at support@reachback.app.