GDPR & CCPA ReadyLast Updated: October 18, 2025

Privacy Policy

Your privacy matters to us. This policy explains how Replyo collects, uses, and protects your information.

Talk with our teamJump to the policy

Security first

Encryption, access controls, and EU-hosted infrastructure keep your data protected.

No data selling

We only use data to deliver and improve Replyo experiences—never to sell or rent it.

Your choices matter

Clear options to access, delete, and opt out of marketing, aligned with GDPR and CCPA.

IntroductionInformation We CollectHow We Use Your InformationData Sharing and DisclosureData SecurityYour RightsInternational Data TransfersData RetentionCookies and TrackingThird-Party ServicesChanges to This PolicyContact Us
Last Updated: October 18, 2025

Introduction

Welcome to Replyo’s Privacy Policy. Replyo (“we,” “us,” or “our”) is committed to protecting your privacy and safeguarding your personal information. This policy describes how we collect, use, store, share, and secure data from users who interact with our business automation solutions, including chatbots and integrations that work with tools you already use, such as WhatsApp embedded chats and other customer engagement systems.

Works with the tools you already use. Our platform integrates seamlessly into your existing ecosystem while fully respecting your privacy obligations.

We comply with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant regulations. Our services enhance customer support, lead generation, and personalized marketing — all while respecting your privacy rights.

Information We Collect

Personal Information

We may collect personal information such as:

  • Name, email address, phone number, and company details provided through contact forms or service sign-ups.
  • Chat data — including messages, timestamps, and user identifiers — from integrations that work with tools you already use, such as WhatsApp embedded chats.
  • Message logs and automated reply interactions for customer support and lead generation.
  • Usage data such as IP addresses, browser types, and device information for analytics and service improvements.

Data from Integrations

When you interact with our embedded tools:

  • Messaging Integrations: We collect chat messages, metadata, and conversation history from tools you already use to support automation and personalized responses.
  • WhatsApp Embedded Chats: This includes message content, delivery status, and user profile details to ensure smooth communication and lead generation.
  • n8n Workflows: Data related to workflow automation, triggers, and process executions to optimize operations and integrations.
  • Other Embedded Tools: Similar data is collected for CRM integrations, automation pipelines, and marketing personalization.

This data is processed to provide our services and enhance user experience.

How We Use Your Information

We use the data we collect for the following purposes:

  • Service Delivery: Operating and maintaining our automation tools, chatbots, and integrations.
  • Customer Support: Responding to inquiries, enabling automated replies, and resolving issues via chat.
  • Lead Generation & Marketing: Analyzing interactions to identify potential leads and send personalized marketing communications (with consent where required).
  • Analytics & Improvement: Monitoring usage patterns to improve performance and develop new features.
  • Legal Compliance: Fulfilling legal obligations and protecting against fraud or misuse.

We do not sell your personal information. Any data sharing is limited to service delivery or legal requirements.

Data Sharing and Disclosure

We do not sell or rent your personal information. We may share data in these circumstances:

  • Service Providers: With trusted third-party partners (e.g., hosting providers such as AWS and Hetzner Cloud) who assist in delivering our services under strict confidentiality agreements.
  • Legal Requirements: When required by law, legal process, or to protect our rights and the safety of others.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, provided users are notified.

Data from integrations (e.g., WhatsApp chats) is processed securely and shared only when necessary to support service functionality.

Data Security

We implement strong security measures to protect your information:

  • Encryption: Data in transit and at rest is encrypted with industry-standard protocols.
  • Access Controls: Personal data is accessible only to authorized personnel on a need-to-know basis.
  • Server Infrastructure: Data is stored on secure servers in AWS EU-Central-1 and Hetzner Cloud EU regions, compliant with EU data protection standards.
  • Regular Audits: We perform ongoing security reviews and updates to prevent unauthorized access.

While we take extensive measures to protect your data, no system is entirely risk-free. We encourage users to report any suspected breaches.

Your Rights

Depending on your location and applicable laws, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request corrections to inaccurate or incomplete information.
  • Erasure: Request deletion of your data (subject to legal exceptions).
  • Portability: Receive your data in a structured, machine-readable format.
  • Opt-Out: Withdraw consent for marketing or certain types of processing (under CCPA/GDPR).
  • Objection: Object to processing based on legitimate interests.

To exercise your rights, contact us using the details below. We respond within 30 days, as required by law.

International Data Transfers

Your data may be transferred to and processed in countries outside your own. We ensure all transfers comply with GDPR standards, using mechanisms such as Standard Contractual Clauses. Data is primarily stored in EU regions (AWS EU-Central-1 and Hetzner Cloud EU) to minimize cross-border transfers.

Data Retention

We retain personal data only as long as necessary for the purposes described in this policy:

  • Chat logs and conversation data: Retained for up to 2 years for support and analytics unless a longer period is required by law.
  • Account data: Stored while your account is active and for a reasonable period afterward for legal or business purposes.
  • Data is securely deleted or anonymized when no longer required.

Cookies and Tracking

We use cookies and similar technologies to enhance your experience:

  • Essential Cookies: Required for core website functionality and security.
  • Analytics Cookies: Used to understand usage patterns (e.g., Google Analytics).
  • Marketing Cookies: Used to deliver personalized content, with your consent.

You may manage cookie preferences through your browser settings.

Third-Party Services

Our integrations work with the tools you already use (e.g., WhatsApp) and may involve third-party providers. We encourage you to review their privacy policies. While we are not responsible for their practices, we ensure our use of their services complies with applicable laws.

Changes to This Policy

We may update this policy periodically. Significant changes will be communicated via email or website notices. Continued use of our services constitutes acceptance of the updated policy.

Contact Us

For privacy inquiries, data requests, or questions about this policy:

Email:

Address: Belgrade, Serbia

We aim to respond within 7–10 business days.